Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: +C9hnKCPR0Y9vv/qQ8FjY6GvLqsllkZ4/4rk9G6/7DE=
Subject key identifier: EC:91:AC:41:BE:02:A3:1F:DD:18:45:67:70:10:D8:2B:41:5B:F0:BD
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019D9A3E8B4B5F07E04E799A64C53461745B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 07:01:23 +0000
Manifest this update: Fri 17 Apr 2026 07:01:23 +0000
Manifest next update: Sat 18 Apr 2026 07:01:23 +0000
Files and hashes: 1: KGRZtAAx-sknvQQcwhztrA8NJos.roa (hash: uYCNY8bnQOpiSbQHGpcKZAraJm0QfOSnQkHdbbBpb7U=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: k3+ph7BEfZpwf148eQOWZ9jKEPoLIpNcypZLTJHyvso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:8b:4b:5f:07:e0:4e:79:9a:64:c5:34:61:74:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Apr 17 07:01:23 2026 GMT
Not After : Apr 18 07:01:23 2026 GMT
Subject: CN=ec91ac41be02a31fdd1845677010d82b415bf0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:17:64:b6:25:82:58:07:bc:19:3d:38:d8:60:
ec:26:b0:48:26:30:c4:5c:f5:e5:4b:99:0a:ba:89:
f6:f8:85:80:44:8a:f1:d2:e0:06:e0:c2:20:85:b5:
de:f8:dc:99:67:22:b0:8a:e3:28:f8:bc:9a:60:10:
96:96:9e:6c:62:b7:cd:a8:57:bc:f7:ad:f9:88:e8:
8a:ac:b8:2a:be:11:f2:a7:25:91:f7:44:e4:40:1d:
92:36:f9:cc:92:43:63:a5:6b:56:c5:dc:ef:39:72:
7b:5d:5c:00:91:ce:fd:c3:39:18:66:9b:c3:c9:05:
2a:4c:af:ce:f8:15:38:f5:ce:7f:e7:31:9b:f1:24:
98:d5:e0:e3:e2:9b:a7:94:57:cc:24:7f:cf:30:77:
6a:86:10:59:bf:47:b5:f3:e5:6d:a8:07:17:c5:f7:
7c:bb:14:05:c9:d5:dc:dd:3d:fd:ff:58:ef:e1:80:
62:c1:81:00:45:50:8b:4a:4f:19:39:76:ff:b0:a2:
1a:8d:ac:1c:88:81:2c:e0:16:7b:ad:86:49:36:2a:
db:c0:6c:bf:a5:25:2a:a3:f4:78:39:37:48:25:4d:
58:42:97:a2:bd:f2:c1:6a:29:5a:5a:b2:dc:88:75:
48:7a:ad:8c:c1:4b:74:b6:7e:a9:27:73:cc:f9:ae:
63:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:91:AC:41:BE:02:A3:1F:DD:18:45:67:70:10:D8:2B:41:5B:F0:BD
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:a8:13:e2:d3:77:72:bb:5a:10:8c:c7:d7:55:bd:9c:18:d5:
b6:1f:6b:58:db:83:f5:9a:04:8d:c6:53:d4:25:62:2d:c5:79:
1d:1c:b5:0f:93:eb:25:b7:29:5f:f7:10:d9:0c:8e:ab:fb:83:
de:ee:44:a4:0e:3b:7b:25:57:0b:f0:76:89:79:d4:68:69:3a:
b6:ca:3d:3e:09:dc:23:d7:bf:5b:d8:bc:ee:65:af:23:67:5e:
19:23:10:31:d0:20:6f:35:f3:98:21:89:82:3b:3c:79:8b:70:
a5:4e:87:ce:95:ba:1c:cc:55:32:4d:0a:1b:6a:52:ec:d5:bc:
8a:a6:ca:0b:5e:52:44:53:7d:b5:8c:71:ba:f5:5b:2b:df:c2:
cd:5c:c9:10:f2:d4:e9:a4:72:f0:84:cd:62:ea:58:cb:2e:59:
04:c8:93:fa:6a:d8:19:82:c3:01:9d:e2:b4:e3:39:65:55:fc:
47:6d:f3:bc:d3:e1:ab:a1:15:88:61:cb:98:6b:39:94:4f:2f:
7d:80:66:88:85:db:97:be:72:86:ef:25:cc:bc:8d:f8:bd:65:
44:cb:6f:da:83:6c:13:de:0d:06:ac:c2:cd:96:2c:7d:cc:9f:
21:42:c8:f9:27:79:b3:7a:45:34:22:f4:fc:20:fc:f2:bf:7c:
52:55:e8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:05:07 2026 by rpki-client