Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json)
Hash identifier: YPEJHExEHq0tbm3fX7aL+5PJwSiPBMk5vGXMREqcizQ=
Subject key identifier: A8:E2:0D:2D:EA:EF:5E:BA:24:29:AA:AC:7D:E3:5B:E5:36:CD:72:D9
Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Certificate serial: 019DA41D2854E3D3A54412B04A1D3EFF0622
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
Manifest number: 0F98
Signing time: Sun 19 Apr 2026 05:01:07 +0000
Manifest this update: Sun 19 Apr 2026 05:01:07 +0000
Manifest next update: Mon 20 Apr 2026 05:01:07 +0000
Files and hashes: 1: 1y-vwZVrMYSQ5PEHPoi2QvehQzI.roa (hash: cYggAnbxJcT3dfayKBFM1pT3DCCSeOQKuJH//n4lQos=)
2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: m+IMHplfUweiyQOi6EP9yo+yfv1ITi5+V24ONlbog0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:28:54:e3:d3:a5:44:12:b0:4a:1d:3e:ff:06:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Validity
Not Before: Apr 19 05:01:07 2026 GMT
Not After : Apr 20 05:01:07 2026 GMT
Subject: CN=a8e20d2deaef5eba2429aaac7de35be536cd72d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f8:ac:5c:a8:53:a1:08:88:c8:9b:98:0a:ec:
1d:b5:01:a7:f4:49:f9:27:7e:38:32:ab:55:be:35:
41:ed:9f:5a:1b:da:52:10:19:82:c6:37:d5:16:94:
93:fa:f1:ae:62:a5:a6:01:c5:5b:b0:80:9c:4e:07:
bc:df:49:6d:35:e9:a4:8f:dc:aa:ad:4e:7a:5e:c9:
7d:7a:52:33:2b:b3:92:f1:77:4f:c3:33:a4:a2:86:
f2:95:d5:16:04:49:ff:49:6e:60:e1:ec:b2:c9:a8:
94:a7:ac:20:c2:45:77:df:99:64:aa:ee:83:df:71:
52:5f:e9:6e:ba:c5:6f:6d:db:cd:1c:5b:47:83:7c:
5a:0b:ce:88:e1:f1:ad:65:94:74:f7:5d:a4:82:99:
0e:9b:fb:1d:51:a3:bc:ff:e8:37:81:c8:14:68:42:
3e:02:35:de:66:c4:c7:3d:5a:92:ae:66:02:66:64:
0a:36:39:3b:42:af:70:5e:a6:0a:3b:94:f5:86:14:
78:f2:f5:4c:38:86:dd:88:8b:20:0b:6e:00:54:0e:
f9:ad:67:e0:4b:80:2e:43:91:53:41:af:04:e4:8f:
f6:08:47:b8:9e:c3:0d:b7:57:6d:9d:e6:23:65:0c:
d4:be:98:f8:c2:53:4c:d1:d4:70:6c:18:fc:ec:8e:
1b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E2:0D:2D:EA:EF:5E:BA:24:29:AA:AC:7D:E3:5B:E5:36:CD:72:D9
X509v3 Authority Key Identifier:
keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:04:21:a4:54:de:14:1f:85:da:5c:c3:6d:a7:bc:cf:6f:bb:
a5:cb:d5:35:0c:89:76:1c:c8:0a:7d:89:e5:d0:6b:01:d9:64:
04:c1:6b:34:1e:c3:2e:09:21:c6:76:f5:8f:0c:0c:d4:b5:ea:
95:d8:c9:ac:5e:0c:3e:d4:92:c3:ed:5f:e8:6c:54:8e:1b:57:
cb:ee:35:db:ec:fb:1a:ca:69:83:8b:e8:f1:a8:ae:64:c2:f5:
aa:42:fb:ab:a8:10:e7:32:3f:56:35:b4:69:93:c5:69:c4:af:
97:ed:ee:fb:58:a6:e4:82:71:9c:df:59:3f:b2:81:30:44:50:
aa:cf:2e:ce:e9:e3:55:65:65:88:0a:1c:39:3b:9a:c0:1e:09:
3b:4f:5d:39:43:20:e4:a5:9c:98:5c:37:4f:d2:ea:02:e8:d6:
4a:7f:d4:09:d4:26:42:87:de:26:9b:84:ba:e2:5a:96:1e:4d:
a2:3a:92:a6:00:38:b4:4a:4f:20:30:b2:ad:3e:61:e0:fe:4a:
9a:b1:ff:d5:9c:1c:87:99:8d:c2:8c:e5:ee:7b:10:20:03:70:
fb:ea:b3:82:23:66:6b:09:5d:be:dd:e9:b1:87:b5:44:44:1b:
10:0c:3b:11:91:99:11:d1:15:d3:20:8c:6a:d1:58:7e:33:d8:
c3:ab:b3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:39:03 2026 by rpki-client