Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: n9zF5LFkZAR0sUv6xQr7oBdiL59T4XkcxhOQY1v3TlM=
Subject key identifier: 25:51:18:DA:C7:1B:E5:CE:61:EB:4B:7E:9B:52:87:E5:5F:45:14:AE
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019D9A752D28FD47D602414DA4D563DE5294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 101E
Signing time: Fri 17 Apr 2026 08:01:03 +0000
Manifest this update: Fri 17 Apr 2026 08:01:03 +0000
Manifest next update: Sat 18 Apr 2026 08:01:03 +0000
Files and hashes: 1: 3xT874NnwQkkgc4z33baWzJf_xw.roa (hash: 0vrpkogPMBnepeiXnpaSIgsSChUa1yFutMzhwiTjs/0=)
2: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: QFn/TfxQAg3+ZVyCIzMyLO7QeArwTIAfJFOIStbEvPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:2d:28:fd:47:d6:02:41:4d:a4:d5:63:de:52:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Apr 17 08:01:03 2026 GMT
Not After : Apr 18 08:01:03 2026 GMT
Subject: CN=255118dac71be5ce61eb4b7e9b5287e55f4514ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:51:18:00:08:37:b1:90:9f:41:2f:b6:1f:
97:ee:8e:3c:49:41:d9:c1:19:d7:8d:ea:69:38:cb:
bb:8a:e0:88:0e:4f:9f:7a:73:81:4f:fe:d8:6e:88:
a2:bc:c0:ce:72:82:32:0a:b5:54:6a:c9:7f:a2:25:
87:10:97:57:bd:40:48:3b:c3:e6:4b:04:e6:2e:fc:
59:fc:2c:f5:d6:cd:07:d2:e6:d2:7d:99:59:2f:23:
4d:39:b1:82:e5:76:14:42:32:e0:38:14:fb:bd:b5:
73:91:29:43:92:f8:8d:70:86:33:7d:f7:27:76:8a:
08:76:d7:d3:dd:32:2f:42:5f:80:35:71:18:08:da:
f7:95:9d:20:f5:03:f9:13:d7:ce:ea:4c:ef:73:d1:
f5:a4:ad:85:7e:0d:e9:4d:39:be:c9:0e:dd:6a:c3:
66:77:38:10:f9:85:24:65:20:80:d1:a4:cf:2f:9a:
c0:ef:5c:30:1d:f6:dc:cf:1d:7f:41:18:d4:0b:01:
18:e0:0c:f8:e2:c8:19:54:e8:92:03:f4:04:16:e2:
a7:e3:b6:78:b0:b8:ba:eb:5d:03:5f:22:aa:0f:04:
94:1c:0a:f9:0c:e7:87:38:43:a4:72:fd:b1:20:b3:
d5:64:c5:a5:55:19:82:bf:e0:09:cd:cb:e0:a6:28:
b7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:51:18:DA:C7:1B:E5:CE:61:EB:4B:7E:9B:52:87:E5:5F:45:14:AE
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:06:6c:92:af:3b:d4:08:8b:a9:3b:d1:30:e5:3e:7e:97:df:
76:a4:99:98:8f:f7:37:3a:ef:42:f6:08:50:e8:19:5f:16:7f:
3e:89:91:1f:8a:d7:a1:e1:77:c7:c1:57:a7:4d:ad:fd:a2:d2:
da:91:81:60:9a:60:99:a8:78:b1:7e:d8:ca:0e:cd:1e:58:4b:
a1:e2:a4:c8:0e:61:92:b1:3d:00:4b:9a:d1:9e:3e:3a:b5:4e:
e4:ea:70:63:23:a2:c1:22:6d:9e:d3:70:ef:8d:5f:ab:b2:04:
6f:ed:ab:8e:03:d1:06:b6:8f:d0:1b:ea:3f:46:0b:bf:39:8e:
51:07:e2:e2:1f:44:b0:8a:8e:02:df:42:c0:93:59:0a:d0:b4:
d8:cb:c9:21:ad:95:7c:67:13:e2:0e:d4:35:9b:98:4c:32:bb:
30:d2:b6:90:56:f6:84:47:ed:f1:99:fc:8c:bd:be:9b:81:d2:
a9:dc:a3:e0:61:4f:5f:f3:28:1c:af:f6:bc:fb:ad:71:6a:04:
07:91:a2:e3:20:58:3c:c3:3e:77:57:80:61:dd:0b:42:ad:8a:
53:b2:e1:87:90:e0:d3:8e:74:6f:88:d4:d7:70:cf:d7:91:23:
df:86:f8:c9:11:39:f9:52:63:c5:52:f0:07:50:17:8d:7d:24:
5c:1e:f0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:47:10 2026 by rpki-client