Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
File: rMMoWMzalYbG2WceMQ1RwoJoxFk.mft (raw, json)
Hash identifier: 2wjnuhYjBO5yS3hoM0YHuRwVoPvtIZ/5G1xMpbASnkw=
Subject key identifier: BC:E4:31:35:58:87:1D:01:EE:7B:EB:CF:79:0A:73:3C:8F:74:F3:D4
Authority key identifier: AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
Certificate issuer: /CN=acc32858ccda9586c6d9671e310d51c28268c459
Certificate serial: 019D9B19EB14AEB98F1D6DE699C4009308BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
Manifest number: 185F
Signing time: Fri 17 Apr 2026 11:01:00 +0000
Manifest this update: Fri 17 Apr 2026 11:01:00 +0000
Manifest next update: Sat 18 Apr 2026 11:01:00 +0000
Files and hashes: 1: NZ4KU7XjOTlJfpxZEeYBOqiocLc.roa (hash: 1hvoqCoD4N6W+G9hGoZfjVl3mm68AnZJdnlCiI2tn30=)
2: rMMoWMzalYbG2WceMQ1RwoJoxFk.crl (hash: +FqHT4GWYzjEZyUkui9v8npngqX47kSkpiv3ehXYnxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:eb:14:ae:b9:8f:1d:6d:e6:99:c4:00:93:08:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc32858ccda9586c6d9671e310d51c28268c459
Validity
Not Before: Apr 17 11:01:00 2026 GMT
Not After : Apr 18 11:01:00 2026 GMT
Subject: CN=bce4313558871d01ee7bebcf790a733c8f74f3d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4e:e8:00:68:fa:25:81:80:b3:29:5a:4d:59:
d7:91:6d:ac:f7:7b:2c:5b:4e:47:2e:56:d0:36:6c:
01:cd:a9:6c:29:97:2b:39:cd:29:bf:68:bc:cd:06:
e7:d2:c6:62:f3:5b:ec:4e:1f:aa:4c:5c:b7:6d:1b:
cc:1c:d6:a2:5f:09:d4:38:b1:cc:a2:85:57:a3:2a:
c1:0d:2e:d1:df:b6:c2:3f:5c:e3:b5:33:3b:66:07:
00:5c:f2:cf:49:b8:b9:fc:01:fc:bb:5b:23:dd:27:
3f:0f:60:69:41:a8:7d:2e:5d:df:50:59:91:5c:2e:
ab:1a:87:61:82:2f:cf:51:83:0c:85:58:92:88:57:
26:57:10:6d:79:a1:d5:c0:55:68:99:10:09:34:9f:
80:fa:51:10:65:92:fb:b8:ae:b7:dd:be:b2:f9:61:
48:83:e3:13:b5:38:a3:35:fc:b1:3e:9e:0a:e2:b5:
b8:7d:1e:90:96:23:97:b2:2e:5d:23:d0:ac:ff:31:
f0:a3:78:63:a1:93:2d:3b:0c:c1:29:56:b1:48:a8:
14:ba:a4:20:23:8d:64:c4:ad:47:03:bd:08:46:c2:
7c:a0:51:95:06:43:f6:28:6c:aa:e3:66:e4:4c:a9:
c4:05:35:02:e3:66:31:c1:9f:e9:97:c6:c3:e4:b4:
2d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E4:31:35:58:87:1D:01:EE:7B:EB:CF:79:0A:73:3C:8F:74:F3:D4
X509v3 Authority Key Identifier:
keyid:AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9d:50:1f:12:81:b3:40:38:8b:80:79:af:04:d0:5a:1e:9b:
35:58:c5:05:af:16:08:b3:0b:d0:ff:00:0d:35:7e:65:29:7c:
a9:57:f1:cf:fb:c4:7e:14:82:ac:d4:14:e4:5a:f1:85:ae:b7:
04:5f:ed:64:dd:6b:4e:67:d4:0e:fe:e4:fb:24:11:86:f4:1b:
02:f5:0b:04:61:3d:0a:3b:6f:20:9f:30:fb:4d:a2:a8:6d:6c:
6f:2e:98:44:97:6e:7b:73:e1:58:b1:31:10:4a:a7:81:2f:1b:
b3:76:88:3f:81:b3:81:e8:32:61:8d:56:6b:cb:75:5e:5e:70:
78:02:01:31:3f:4e:73:ee:e4:a9:75:32:f7:a3:88:75:67:a2:
cd:8a:8b:c6:00:5e:79:f3:d4:ce:3f:5c:a0:59:99:e7:68:6d:
1f:0d:e8:42:11:80:c4:7e:2a:78:ac:b5:8e:b8:e7:98:84:c8:
9b:cb:f7:78:33:bf:3c:91:52:e7:32:f7:bd:45:60:75:25:a0:
c3:74:61:dd:ee:03:38:80:5d:0c:95:6b:61:23:3f:30:ac:1a:
83:dc:ae:c0:92:b3:4b:10:6e:ad:7d:36:5b:a3:81:f7:08:03:
54:1b:6d:ba:b3:40:24:0f:0f:ac:aa:d0:fe:79:e2:f1:4a:6f:
83:72:54:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:59:53 2026 by rpki-client