Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: k3exjE8J6VQOIqKOPps4zCTwkGeLn0UQY5iZte8ztdU=
Subject key identifier: EC:A0:CB:28:9D:2E:88:B7:B5:3A:13:38:B9:B0:05:AC:B2:09:97:0B
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 019D992B5BAFD15C71299E204A838FA29660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 09B9
Signing time: Fri 17 Apr 2026 02:00:48 +0000
Manifest this update: Fri 17 Apr 2026 02:00:48 +0000
Manifest next update: Sat 18 Apr 2026 02:00:48 +0000
Files and hashes: 1: 3lc1Iu7hC-zHLMQkZNtii7oqg5M.roa (hash: AzZG+4D5GxDUpzfM6ZHMgxfiWGvCIzXIyJrcYsz9Als=)
2: _WqApLTSHnn-QALIm4js6GY_w-E.roa (hash: vRro0DgNa75sk/Unt/zDQwG9CVSw25Sr8T6Yt4LIK54=)
3: e7Z2PR7xiMg2qO87UOgZBfNHWVA.roa (hash: 2MJbHB4+HtGJ4wxkgZ0Dl95e/tJehFc1YChaP86nwFM=)
4: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: OPXaJaNF4//sVTU5z1x5XDlNfzB0Us+2uvBNxQUEsmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:5b:af:d1:5c:71:29:9e:20:4a:83:8f:a2:96:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Apr 17 02:00:48 2026 GMT
Not After : Apr 18 02:00:48 2026 GMT
Subject: CN=eca0cb289d2e88b7b53a1338b9b005acb209970b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0c:55:f7:e8:99:01:d0:16:a7:48:56:8c:c7:
af:90:69:a6:c9:4e:3a:ba:e4:79:61:9b:1a:29:66:
b2:a0:ac:c5:ec:81:93:d3:dc:9d:93:6a:d6:3a:0f:
c0:46:1c:cd:16:33:89:d7:9c:71:6b:3f:b2:42:62:
06:ac:e2:87:44:2f:c1:7d:83:b2:3d:61:7a:9b:7f:
09:f6:1f:77:7d:6e:35:37:0b:46:5a:e4:b6:57:41:
20:d3:26:a5:04:d7:34:fe:1a:13:6a:58:63:99:ae:
b5:c7:46:d4:9f:79:82:f7:bb:8b:88:71:ad:1f:d8:
a4:cd:4e:8f:08:60:05:ac:72:61:71:e6:c4:f1:1a:
6b:fc:77:09:41:05:73:45:e0:66:76:a6:bd:aa:8b:
d2:e6:7b:0a:dc:9d:b1:cc:8e:00:5e:9a:a2:c5:02:
e5:46:0a:39:7e:ca:12:f5:96:d9:c1:de:5d:a8:31:
c0:ef:1e:fa:4a:8a:df:22:3b:a4:f4:54:f8:59:4f:
81:46:35:91:e6:fb:14:3f:89:5c:fe:6c:e7:04:62:
52:2b:41:2a:c3:85:d2:dc:36:9c:b7:95:30:fc:5d:
2d:78:c9:06:1a:31:7a:55:fe:27:72:02:57:f1:b2:
e0:57:e4:0b:7b:e6:59:d8:1e:9c:c3:78:78:bf:ce:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A0:CB:28:9D:2E:88:B7:B5:3A:13:38:B9:B0:05:AC:B2:09:97:0B
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:96:81:99:e1:b5:19:0d:1b:6c:0b:f6:6a:a0:5a:04:fc:50:
a0:2a:4d:03:9a:eb:63:f2:f3:c6:9c:bc:76:78:50:06:be:e1:
68:39:0d:85:b4:56:e7:c9:6f:b3:cb:ad:95:72:c9:c8:2f:37:
27:df:15:4c:95:ae:27:36:82:b6:b1:41:99:39:59:f1:cf:ec:
0c:eb:03:b3:5b:05:c6:ca:83:d3:5b:26:fe:9c:15:c7:3e:f6:
46:7d:09:cc:8c:7f:15:d8:a9:b4:34:19:19:38:55:07:e7:17:
d6:4a:22:ee:aa:6f:6e:23:28:58:bc:1d:5a:a5:eb:f3:a0:00:
16:95:89:f2:bf:3c:fe:07:30:80:26:f1:ac:95:bc:46:28:ec:
27:5f:b2:2b:94:17:da:a4:4f:08:b2:67:41:f4:6f:95:ef:8b:
63:50:56:a5:bd:d1:1b:8f:6b:5b:8a:1f:56:53:f4:1e:2f:c0:
1a:71:34:9d:6e:3f:d9:be:29:87:81:d2:27:70:4a:65:1d:a7:
e5:5d:85:a9:d3:a3:f5:7b:9e:66:6e:44:1c:c8:f7:63:c1:52:
1c:1d:68:80:cb:05:36:7f:e5:7b:31:f2:ad:3f:a8:c1:8a:07:
9c:e9:49:24:25:6f:74:cf:6a:1c:cb:04:6b:00:5b:1d:96:35:
59:f8:d9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:05:50 2026 by rpki-client