Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
File: imgZHKtu8GsyKwsSSHhdSEpFJPM.mft (raw, json)
Hash identifier: cBttqGxg4scytyjNl2gyLXtSsval1YUTgqJXX9hhYGM=
Subject key identifier: 85:69:0E:9D:7B:C1:54:64:5F:73:D1:1F:D0:E2:0B:9D:04:F1:9C:27
Authority key identifier: 8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
Certificate issuer: /CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Certificate serial: 019D9850837AF146B73596E89C22B9D8E0A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
Manifest number: 1310
Signing time: Thu 16 Apr 2026 22:01:46 +0000
Manifest this update: Thu 16 Apr 2026 22:01:46 +0000
Manifest next update: Fri 17 Apr 2026 22:01:46 +0000
Files and hashes: 1: YyRSnlrY6ZL2BY7kWgNKQn7ZABQ.roa (hash: XGF2A8hVRY8awHWUJiWHAMyAA173IB6zQJ6kuXsZFy4=)
2: imgZHKtu8GsyKwsSSHhdSEpFJPM.crl (hash: vxpDrkxZrmzDr9CpTXqVO7GzminuE5t7HmipBnCtoJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:83:7a:f1:46:b7:35:96:e8:9c:22:b9:d8:e0:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a68191cab6ef06b322b0b1248785d484a4524f3
Validity
Not Before: Apr 16 22:01:46 2026 GMT
Not After : Apr 17 22:01:46 2026 GMT
Subject: CN=85690e9d7bc154645f73d11fd0e20b9d04f19c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:de:39:17:d6:ce:11:af:d0:3c:ab:cc:1d:57:
6b:89:a5:4e:76:ce:16:0e:e7:71:01:35:06:30:30:
2c:8d:fe:50:51:47:d3:bf:89:1e:43:98:86:6c:01:
11:f6:e1:9b:be:4d:5a:a6:1d:5f:10:d7:86:0a:87:
5f:7f:15:db:44:ca:88:7d:42:27:8d:63:43:5b:1a:
d9:cb:2b:d3:57:51:6b:21:3a:a7:25:0b:09:36:b1:
e9:7e:69:5a:6f:89:9e:fa:ab:ca:aa:3e:a9:ca:86:
5c:e3:d9:84:1e:72:48:3d:ac:b2:84:26:19:84:ba:
d0:c2:16:e3:9d:57:5d:82:8e:db:d7:7a:1e:41:5d:
f0:f6:02:ef:4b:67:39:0a:2c:ee:e1:a7:13:52:b5:
97:bc:2a:b3:81:b2:79:7b:7a:4c:00:56:a3:88:e8:
9b:65:ec:e3:0d:6a:18:1e:98:fd:0a:55:8e:cc:ad:
55:f4:58:d1:e4:5c:d9:c7:f4:b6:ad:37:f0:de:b1:
fb:fe:27:7f:86:0a:85:82:70:14:3c:0f:df:6f:48:
20:a9:af:7a:56:c3:08:8b:69:bc:10:f3:51:02:76:
db:ef:8c:5e:6f:9f:1d:55:ad:34:75:8b:e8:7f:62:
44:f8:af:89:46:fb:a2:38:f4:67:3a:fb:fe:ed:4e:
50:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:69:0E:9D:7B:C1:54:64:5F:73:D1:1F:D0:E2:0B:9D:04:F1:9C:27
X509v3 Authority Key Identifier:
keyid:8A:68:19:1C:AB:6E:F0:6B:32:2B:0B:12:48:78:5D:48:4A:45:24:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imgZHKtu8GsyKwsSSHhdSEpFJPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e3ee8d-e459-4f47-b75d-97117eeb4891/1/imgZHKtu8GsyKwsSSHhdSEpFJPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:17:cb:ed:69:86:44:f3:da:63:47:47:d6:c8:72:85:2b:f4:
44:81:4d:f2:a7:3a:4f:4d:f2:76:92:1a:d4:29:a9:a0:9e:4b:
c2:a5:c6:6f:44:fa:3e:a6:0b:31:73:7e:42:13:58:bb:62:7b:
05:40:2d:d9:9b:e5:89:61:3d:6f:d3:e9:58:c6:f9:56:84:c7:
cc:a6:f4:be:5b:f0:5b:7a:c9:74:b6:fd:59:d3:c4:6f:2a:8d:
7b:9c:dc:67:99:20:32:c4:b3:be:3f:dc:96:5b:1a:47:9f:9d:
95:ea:af:fb:4b:1b:c6:3f:2d:3a:b9:a7:f6:0c:13:16:cf:f1:
da:86:69:7f:e9:3d:99:e9:c9:e1:48:01:57:5d:68:83:6b:b0:
57:14:8e:79:b0:bd:f6:3d:ec:ac:d7:59:57:bf:e2:ed:f6:98:
85:0a:e3:75:fc:b1:e4:30:a6:6b:e2:75:60:dc:42:ec:ca:80:
e4:8e:5e:9f:8f:c1:eb:63:9a:8e:27:41:68:8f:a9:de:b7:bc:
a5:29:50:0b:e6:4c:48:42:08:0e:3e:9f:87:70:55:05:3a:6d:
5f:5b:d7:72:2e:db:81:65:a9:01:08:1f:3d:75:9a:5f:96:d8:
47:e7:fc:7c:36:40:b7:9b:b3:f9:81:1b:27:43:38:ca:56:2d:
5e:ce:54:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:49:33 2026 by rpki-client