Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: Q5jF+Glk3/m7JHB6tdODuslIC8nxwdEJBFpUhjKz6Oo=
Subject key identifier: A5:7B:43:29:A6:61:7C:CE:C5:77:3D:EA:F2:EA:F6:C9:AF:FC:8E:8E
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019DA3E6647D05B2CB13AA9DED99CEF29CA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 092B
Signing time: Sun 19 Apr 2026 04:01:18 +0000
Manifest this update: Sun 19 Apr 2026 04:01:18 +0000
Manifest next update: Mon 20 Apr 2026 04:01:18 +0000
Files and hashes: 1: COs54IVsv9bN1SyErw-G5fsb6yY.roa (hash: 9UNs6Dnf3rvvi5W/WKDmiw83fNTieB9/5O5ngxCvRno=)
2: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: bYvs3PEZXfHfuH0K+eQrPVn79A0KwCqEvSFK8sD4kJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:64:7d:05:b2:cb:13:aa:9d:ed:99:ce:f2:9c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Apr 19 04:01:18 2026 GMT
Not After : Apr 20 04:01:18 2026 GMT
Subject: CN=a57b4329a6617ccec5773deaf2eaf6c9affc8e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:57:78:af:d0:1e:fb:05:1d:33:c7:0e:05:
02:80:df:87:a4:2e:a4:68:12:c3:d9:32:45:73:42:
d8:3c:13:f8:b0:ab:1a:6c:ba:58:6e:d6:15:b7:3d:
5f:67:98:99:90:06:5e:88:d1:ae:c6:8a:b7:60:45:
17:a1:38:12:f7:5f:14:e4:3a:99:47:a6:40:44:2b:
69:c0:fa:61:4a:a7:f0:d8:78:50:c9:e9:94:e3:ae:
5c:4b:35:68:ce:1a:cf:04:7d:d7:41:5c:f3:38:2d:
02:d4:7c:53:81:bf:94:ca:9d:92:21:0c:a8:fc:ec:
88:73:11:02:d8:4d:8b:3e:27:d9:a4:91:ee:04:0e:
ab:19:6c:23:f5:45:10:01:d1:a7:dd:79:65:df:60:
c5:f1:fa:c0:c3:c1:59:0c:13:fa:aa:cd:b3:e2:d9:
51:e9:5e:3d:1e:22:8c:1e:34:40:24:14:31:5b:43:
4c:92:e5:2b:92:30:cf:bc:4b:37:f7:c9:36:35:42:
5b:09:16:e0:7e:45:5e:a0:27:f2:3c:fd:39:3e:22:
52:83:bf:eb:e3:6c:f3:d0:c7:93:15:76:ca:e5:97:
1e:2a:da:2d:2e:6a:ae:30:96:66:9e:e3:7e:13:09:
ed:c4:67:ea:96:91:5d:1b:7e:84:72:12:c1:a2:01:
f7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7B:43:29:A6:61:7C:CE:C5:77:3D:EA:F2:EA:F6:C9:AF:FC:8E:8E
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:d8:7a:6b:2b:86:68:f3:c1:3e:1d:a4:c6:e7:26:e2:65:bb:
cc:f6:67:04:28:00:a5:93:b1:dd:0a:73:f0:34:6e:c5:f1:fe:
2e:44:b3:21:a5:0f:b6:4e:65:67:78:ed:fe:dd:34:37:fe:c5:
cf:bf:29:89:4a:16:5f:2c:96:83:48:72:c2:a6:0f:47:53:15:
be:05:7d:d2:d3:8e:5a:c9:88:fe:86:ab:ee:9b:c9:68:32:d7:
8e:b0:1d:d7:9c:a3:6e:9e:c7:d7:13:ae:2c:97:96:47:55:68:
95:cc:0c:27:41:bc:e0:e5:6a:4e:96:ca:11:9b:d8:c2:49:02:
32:04:25:be:70:a6:bc:9b:53:4c:e7:38:58:64:3d:1e:da:1d:
a3:40:c3:47:9f:d7:ab:31:1f:b2:24:22:6d:6a:dc:4e:a2:2b:
77:4d:7b:72:4f:ff:db:45:48:c0:04:99:9d:df:06:c7:3b:df:
1f:0c:d8:c6:ca:ae:bf:0b:7a:ef:5e:7f:4a:3d:ab:f3:34:23:
df:de:9a:d0:56:f8:19:3d:4b:61:51:78:7a:ca:66:43:04:23:
fe:3d:43:c1:4d:d3:85:c6:6f:1a:55:81:94:5d:52:b2:69:f8:
df:e8:47:bb:87:fe:66:1b:64:05:97:aa:fb:9d:08:a9:72:5f:
67:9d:ae:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2j5mR9BbLLE6qd7ZnO8pyhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNmY1MWNhMjM5ODIxMDNmZmUzNGY5ODkwZDBiNzRlOGZh
NzgxYWYwHhcNMjYwNDE5MDQwMTE4WhcNMjYwNDIwMDQwMTE4WjAzMTEwLwYDVQQD
EyhhNTdiNDMyOWE2NjE3Y2NlYzU3NzNkZWFmMmVhZjZjOWFmZmM4ZThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxtXeK/QHvsFHTPHDgUCgN+HpC6k
aBLD2TJFc0LYPBP4sKsabLpYbtYVtz1fZ5iZkAZeiNGuxoq3YEUXoTgS918U5DqZ
R6ZARCtpwPphSqfw2HhQyemU465cSzVozhrPBH3XQVzzOC0C1HxTgb+Uyp2SIQyo
/OyIcxEC2E2LPifZpJHuBA6rGWwj9UUQAdGn3Xll32DF8frAw8FZDBP6qs2z4tlR
6V49HiKMHjRAJBQxW0NMkuUrkjDPvEs398k2NUJbCRbgfkVeoCfyPP05PiJSg7/r
42zz0MeTFXbK5ZceKtotLmquMJZmnuN+EwntxGfqlpFdG36EchLBogH3UwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKV7QymmYXzOxXc96vLq9smv/I6OMB8GA1UdIwQY
MBaAFDJvUcojmCED/+NPmJDQt06Pp4GvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYt
OTY2ZmE5NmJlZmYyLzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS80MGE5YjUtZTg5OS00YThhLWFjNGYtOTY2ZmE5NmJlZmYy
LzEvTW05UnlpT1lJUVBfNDAtWWtOQzNUby1uZ2E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg9h6ayuG
aPPBPh2kxucm4mW7zPZnBCgApZOx3Qpz8DRuxfH+LkSzIaUPtk5lZ3jt/t00N/7F
z78piUoWXyyWg0hywqYPR1MVvgV90tOOWsmI/oar7pvJaDLXjrAd15yjbp7H1xOu
LJeWR1VolcwMJ0G84OVqTpbKEZvYwkkCMgQlvnCmvJtTTOc4WGQ9Htodo0DDR5/X
qzEfsiQibWrcTqIrd017ck//20VIwASZnd8GxzvfHwzYxsquvwt6715/Sj2r8zQj
396a0Fb4GT1LYVF4espmQwQj/j1DwU3ThcZvGlWBlF1Ssmn43+hHu4f+ZhtkBZeq
+50IqXJfZ52uAg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:20:49 2026 by rpki-client