Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: DHTCrejAIVj1zHcLqM3Q4qm3enlV2LWAFsnrddjiGxA=
Subject key identifier: BF:6B:18:F1:BD:37:31:47:38:B7:70:73:6B:80:E0:20:FA:84:5F:5A
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 019D9A74E0DC3D660C039CFC914CDBEBCB96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 15E5
Signing time: Fri 17 Apr 2026 08:00:44 +0000
Manifest this update: Fri 17 Apr 2026 08:00:44 +0000
Manifest next update: Sat 18 Apr 2026 08:00:44 +0000
Files and hashes: 1: DoG1nIvAyF6Ofk7B7oBXD9fCbWY.roa (hash: 9biYSv6POYCwfleLHgkM4hjjkLE1P6h07qcPCt2vZ8Q=)
2: Ku186Y-Tu0woDCZbFinpqq7ZdFE.roa (hash: v4Tz8TXIdty6/ZjbJ1ivX2W0EU7wX33Cwf/C7mVCK74=)
3: _yFrTYVVOzem6SAvOPOzP_wE_MM.roa (hash: 5prdT05UIi7fhKfl8B0EiaHRzoodJuHLB7r7onONbos=)
4: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: Ymfy0yRBCYmkl50BIOGHBd2X4fZEwBhCnMvlB/mLE3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:e0:dc:3d:66:0c:03:9c:fc:91:4c:db:eb:cb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Apr 17 08:00:44 2026 GMT
Not After : Apr 18 08:00:44 2026 GMT
Subject: CN=bf6b18f1bd37314738b770736b80e020fa845f5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bb:35:c7:66:2b:62:79:86:78:96:cd:86:12:
89:81:bf:de:3b:2e:b4:80:08:e5:d0:69:13:8e:c7:
bd:d2:2b:09:ba:04:3b:1a:00:cb:ea:cf:4f:93:23:
30:83:eb:77:53:fd:a9:ed:18:97:e1:b4:7c:fd:7f:
a5:c6:72:c6:ac:03:85:14:e4:e7:22:46:9f:a5:78:
f0:aa:f5:63:ff:a4:af:98:73:3a:e8:d5:c0:26:99:
0e:2c:fa:b8:46:81:2e:2d:9e:04:27:f2:e1:c0:ab:
86:0a:60:1c:f9:fb:c1:1a:f7:ab:fb:da:35:1f:4e:
86:84:d4:9c:a8:a6:c7:12:cd:b1:ca:8c:2a:a1:fb:
ab:96:00:14:dc:05:e2:65:49:5d:f0:5d:14:70:ba:
f6:62:f1:19:0e:6b:63:91:6e:84:c3:d9:54:6b:d9:
dd:e0:21:11:eb:f1:e6:cf:ba:ae:09:6b:46:88:7d:
60:24:0b:ac:c3:49:38:bd:17:a9:2d:19:fe:c4:6f:
7f:f9:3a:0e:44:c2:c8:b2:d6:14:d6:7b:8c:e1:94:
21:9d:4c:b6:43:4f:ad:84:bc:a9:4f:6d:56:00:cb:
66:08:65:a9:20:ac:9a:0d:3d:31:56:ec:b2:c4:03:
e3:61:f4:fa:cd:4f:28:26:08:b1:0d:42:f7:a4:d5:
47:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6B:18:F1:BD:37:31:47:38:B7:70:73:6B:80:E0:20:FA:84:5F:5A
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3e:75:f8:4d:c2:a5:2f:a6:ce:24:24:2f:94:28:ea:ca:5e:
4c:16:f9:dc:97:bc:c8:ea:89:fd:f8:b6:7a:69:e8:c6:a7:f6:
24:1f:74:94:cb:22:fa:6f:c9:78:7d:7a:8d:8c:32:7d:1f:44:
37:23:24:38:53:c5:d4:47:49:3c:72:0d:34:b7:d3:ce:c9:72:
80:03:85:b0:26:2f:94:ca:7d:3e:a9:75:3e:64:42:07:82:11:
8e:c7:3a:8a:23:33:63:e7:95:3e:eb:d6:5f:8a:ff:d1:5a:b9:
6b:35:68:29:62:70:6c:a4:44:fc:90:9e:3a:a5:ee:77:b0:58:
20:15:d1:14:6c:75:fd:20:10:82:af:02:72:fc:6a:bd:10:f7:
e2:36:94:77:28:e0:97:90:ef:24:60:eb:55:5b:5f:f5:3f:54:
11:51:db:95:86:55:e3:03:40:58:a8:79:ca:3a:3c:4b:c2:91:
73:29:db:13:81:8b:f2:87:3f:dc:be:26:5f:78:9a:ff:cc:4b:
8a:81:1d:57:6a:c1:48:22:10:0c:9e:c5:59:fe:db:69:4e:a0:
aa:13:27:fe:d3:93:2f:d7:ec:cd:db:67:87:c7:3f:a8:57:ad:
7b:dd:43:e3:8d:d6:96:75:33:48:03:25:ed:73:a4:81:bc:9d:
41:44:8e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:39:05 2026 by rpki-client