Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: DUmr7SBRazKtTeO0wEYgI6ZyclRgD5wi3raY1capqpk=
Subject key identifier: D2:1E:A5:90:79:6F:34:79:3E:28:57:09:4F:52:5B:FC:15:FE:E5:A1
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 019D984FBB0975F41E8C91F830C0C7B849F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 18DE
Signing time: Thu 16 Apr 2026 22:00:54 +0000
Manifest this update: Thu 16 Apr 2026 22:00:54 +0000
Manifest next update: Fri 17 Apr 2026 22:00:54 +0000
Files and hashes: 1: 8TXv8e4Zt8_eQ6NWirkqe9E0W_4.asa (hash: 4wwxHNIkgVcJLmHw8uy0TiaVWMubR0OMs0Q3hfAmuIk=)
2: Bq58wAV24LxCZfTqHikKpc1Pf90.roa (hash: Z38fRBPUaqDEJWZAtaIhWDjBuRq5J5FcYiFjJcjIdC4=)
3: g2mfEORB4KTxQPtrqS9KmJwGt60.roa (hash: ckCX/PTaFOHfPb57/FfMCnl07XdvXwOjflYamRZ+ttU=)
4: im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa (hash: Lno5hcnACQyBSV8jBaTu79StES2mMHGRUyHa5ifNUXg=)
5: kEa8o2UnqelmH_ygtilQKIay4-U.roa (hash: wdOm+SKzMVc+6qYyPwtZWi4vySs728OYrMlkH8naows=)
6: o2zKTEKdkma_CEqLLr3-nWa-bTg.roa (hash: K00xY1oGfH9hHVRaGcI7b3OeCoea9X65r82JQ/DAkQ4=)
7: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: WzQt6kKrOvv7wsOT5q8oLSmPMKZ8PJBucd52RZCpm8Y=)
8: wDyGi9jWmZMB8lYHVhIMXvPFj4Q.asa (hash: x1KdrUN6ejhw/k+dP4uf7xrYb09HG6a00Ztpj8NCQt8=)
9: yl_8RQWT42NWgczzOlDn0gK7u0w.roa (hash: AZgf7E7lVvGrL5j+ea4NwUOdqabLA6/5isp7lMtBrHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:bb:09:75:f4:1e:8c:91:f8:30:c0:c7:b8:49:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Apr 16 22:00:54 2026 GMT
Not After : Apr 17 22:00:54 2026 GMT
Subject: CN=d21ea590796f34793e2857094f525bfc15fee5a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:a4:72:bc:ac:01:f3:c6:aa:fc:69:6b:73:
27:40:cc:39:42:03:7a:b8:5f:33:5e:8c:27:cb:50:
f6:da:99:24:d8:5b:1e:3f:27:12:f0:0b:70:91:45:
ec:7e:ff:3b:90:34:e3:69:4a:5d:bd:4d:44:06:a9:
7a:7e:e6:c7:90:05:cd:b3:34:fb:48:dd:ea:94:ba:
51:23:24:13:16:36:99:6d:0b:1b:a2:9e:97:66:68:
45:57:fa:53:a2:f4:64:07:0a:0e:f4:45:e8:0d:31:
47:93:e4:6d:7b:0c:76:d1:67:f5:00:a1:0f:de:36:
e2:a2:c9:e7:28:2a:cb:80:d0:94:b5:99:85:6c:58:
a3:d3:cc:ba:bf:23:fb:d7:27:b4:68:4b:cf:86:32:
75:91:78:a0:e5:35:6b:2a:7c:69:2b:b4:26:d6:2d:
e0:4e:1a:ca:ed:cc:8c:8d:bd:46:48:3a:c2:d4:f7:
67:2b:ae:f3:d0:af:34:21:1c:b3:b4:d3:b3:05:e0:
c7:73:76:e1:bb:f2:79:69:c0:2c:e8:fa:28:3f:db:
6e:f9:ca:bb:f4:93:43:a1:d7:68:a6:ba:52:87:f7:
4c:5b:c8:ec:68:58:5e:26:56:66:97:22:3f:28:7f:
00:c0:af:ee:93:3a:ef:7f:7c:06:e4:50:01:c2:1b:
25:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1E:A5:90:79:6F:34:79:3E:28:57:09:4F:52:5B:FC:15:FE:E5:A1
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ee:ab:56:60:1a:83:20:bd:36:39:4e:56:8a:27:c2:c8:00:
36:32:88:8a:a1:d2:42:63:73:ac:93:69:86:03:d2:49:22:1c:
20:30:ea:dc:39:20:72:93:3b:1c:84:6e:9e:2c:0b:c8:65:bc:
b8:99:e9:ff:f9:e0:b9:fa:3d:2c:d1:a9:aa:ad:6a:1f:63:0e:
a9:06:d2:cd:d0:b7:9f:e1:0a:23:c7:67:d8:57:8e:43:eb:4c:
45:82:a3:a7:79:31:08:a4:d0:11:14:9e:69:77:96:f3:7a:56:
28:86:3a:26:8b:29:54:2a:59:22:4f:fc:1d:33:08:35:db:f4:
fa:fa:06:e1:67:d3:e9:e9:c1:3e:59:7d:55:65:66:ff:fd:17:
e9:a4:06:2f:ac:80:49:f0:9e:59:0a:93:ec:20:0f:8b:d8:2a:
aa:2e:80:b5:3f:82:ee:28:2d:1c:d6:83:25:1f:bb:97:c7:ca:
8c:62:c1:b8:32:c2:b1:ba:20:e2:86:5d:94:1e:90:e7:a5:69:
5b:93:20:4f:14:2c:ac:bc:1d:45:85:c6:60:84:63:f9:b8:31:
d0:7c:7b:b5:71:b5:32:d4:16:ea:5b:ab:5f:d5:24:b3:4a:06:
8d:dd:af:ca:2b:a7:b7:98:67:52:58:40:5e:31:08:55:bc:47:
10:d5:d4:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:00:25 2026 by rpki-client