Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
File: pMtQ54o6MeM3XPKquGXoRf8umcE.mft (raw, json)
Hash identifier: NCDGt1bLsUTooyc4D9arWgo6nUoG5CHM/vEgKnsX3gI=
Subject key identifier: 91:9D:3F:AA:A1:AE:EF:5F:F2:28:AA:A9:DD:69:5E:92:16:40:03:FB
Authority key identifier: A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
Certificate issuer: /CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Certificate serial: 019D992AF7EBED542D20F2401CFA44C573F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
Manifest number: 18D2
Signing time: Fri 17 Apr 2026 02:00:23 +0000
Manifest this update: Fri 17 Apr 2026 02:00:23 +0000
Manifest next update: Sat 18 Apr 2026 02:00:23 +0000
Files and hashes: 1: GNro08ls-pT206e9IMDTj-wSUvs.roa (hash: kclIH/rlbAN40ur+c1T1kwmNtPdYhK81dIGAMdeBKeg=)
2: KeBHh_EXoo6vxPcJVgCWPFy_Qck.roa (hash: Lb6JJsVM1wJrwKLdOhRrqdN+kt/BOWmpYchxNlLSv+A=)
3: RgbTxSuQRNXFVhZjHsG1yRfbDcY.roa (hash: QEQTGxs8uKOEp8JVm8z26NyHbZ3CIT8Ts2wlZUqrfqw=)
4: fc-z64p9INgXqSlpt0wgmjnDjcM.roa (hash: iAvsJsJGvYYjjk6ye/5/KN/cmvlNuk2vjqxHBnhTILY=)
5: pMtQ54o6MeM3XPKquGXoRf8umcE.crl (hash: lUwBgB4ZTw3Pc1LfdXHzPBWrmNdBGHJUHa7DPJjqvH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2a:f7:eb:ed:54:2d:20:f2:40:1c:fa:44:c5:73:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Validity
Not Before: Apr 17 02:00:23 2026 GMT
Not After : Apr 18 02:00:23 2026 GMT
Subject: CN=919d3faaa1aeef5ff228aaa9dd695e92164003fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:ee:99:16:44:2a:ee:d4:39:c5:19:08:a6:
20:1e:26:4a:68:50:cd:b6:be:96:6f:95:50:f2:21:
14:5b:44:f4:4b:6f:8a:64:26:30:33:cc:6e:cc:e8:
5f:fe:20:e6:4e:0e:4a:7a:8d:76:2a:ea:b8:c1:59:
e2:94:e8:fc:d0:8a:61:d2:95:17:50:3b:32:8e:15:
15:89:96:4b:be:76:e8:84:d7:85:84:95:21:d5:1a:
ca:0e:01:26:9e:18:d3:99:1c:b0:fe:aa:13:74:c9:
ee:0c:b2:e0:57:e6:a3:ff:fe:54:a2:f8:d2:2e:9e:
cb:ea:7a:7c:46:1d:da:e5:4f:eb:ba:82:ee:21:1d:
1d:c3:1f:c4:55:a0:51:58:ae:ca:5a:fb:5b:81:73:
2d:68:69:6c:88:2d:e0:a2:71:67:cc:c7:41:fd:80:
9f:0d:97:be:71:84:10:10:48:2a:00:6d:b0:b3:f4:
66:f8:3c:99:d7:3e:dd:d0:19:58:98:91:9f:3b:6f:
5d:67:0b:07:69:2d:de:a8:4a:a7:33:2e:31:7d:a5:
31:69:0b:e7:84:91:37:20:9f:fa:68:8f:53:98:34:
b0:3d:6d:31:9b:f9:3c:d4:6c:3b:dd:e3:7e:7e:be:
46:66:97:13:67:73:02:57:0f:33:d2:dd:c5:82:1d:
88:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9D:3F:AA:A1:AE:EF:5F:F2:28:AA:A9:DD:69:5E:92:16:40:03:FB
X509v3 Authority Key Identifier:
keyid:A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c1:ca:ec:cc:b5:24:1e:ba:9b:93:fa:ac:f3:be:23:88:6b:
5a:3c:9e:5e:5f:1a:72:1d:f3:6c:2d:73:60:89:3f:dc:7c:e5:
06:d6:c1:de:e5:34:41:ea:53:e3:99:dd:5b:33:dd:4f:ca:04:
6a:36:de:b1:06:29:75:49:63:72:fa:e9:65:98:12:e8:ac:13:
c6:52:7a:0b:84:0d:95:b2:92:a0:82:94:f2:a5:bd:2c:09:e2:
6e:25:51:81:55:14:21:18:f3:df:78:08:d4:89:ed:32:72:36:
69:87:54:47:82:ff:03:64:7e:8f:1f:4b:2e:6d:2f:46:1a:93:
f3:8e:f2:22:2b:79:58:14:ab:30:5e:0f:ff:d2:e5:1c:4c:45:
5d:ac:a2:51:4c:e9:70:64:bc:c8:95:ff:14:4f:b1:3b:a0:ec:
84:67:8f:91:d7:2a:53:e2:df:1a:e6:1f:9b:d5:82:1b:77:3b:
b1:44:a5:0d:ed:f3:98:1b:6d:ff:c5:33:bc:c4:5b:d0:9c:2a:
49:8c:aa:42:83:fb:20:88:7d:df:32:e0:49:a7:2d:85:3b:56:
2b:7f:e8:a8:df:f1:ae:3f:63:a4:cc:66:35:38:d6:da:a6:db:
2d:12:44:d2:66:a5:24:bf:88:a5:45:50:5a:23:45:a5:46:f4:
d9:87:5e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:36:51 2026 by rpki-client