Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
File: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft (raw, json)
Hash identifier: xgiwEKh6FEwST3ZrtVbZUXNYt/Vfxd3/HqputpHsuyc=
Subject key identifier: 17:32:6F:F5:76:7A:FC:0A:FE:1A:15:F8:16:AC:05:01:92:B7:9E:5C
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 019DA41CB63B295021775A1E7DB75848F993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
Manifest number: 18C5
Signing time: Sun 19 Apr 2026 05:00:38 +0000
Manifest this update: Sun 19 Apr 2026 05:00:38 +0000
Manifest next update: Mon 20 Apr 2026 05:00:38 +0000
Files and hashes: 1: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl (hash: fa5AgiYdplDxF5P+BEV2+z10qfij/H7BHMvrjGGw1jw=)
2: AHnNibYpBfUdvSGboILQ1teAIw4.roa (hash: 42GSIkMZbcrmZ8XMph6d+mXrtH34NIs/JYMf8WUp4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1c:b6:3b:29:50:21:77:5a:1e:7d:b7:58:48:f9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Apr 19 05:00:38 2026 GMT
Not After : Apr 20 05:00:38 2026 GMT
Subject: CN=17326ff5767afc0afe1a15f816ac050192b79e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:23:3d:53:de:60:7a:82:30:d9:a0:a8:9e:ce:
68:a7:dc:3c:69:7d:d9:00:65:44:27:d9:a1:68:4a:
87:9e:d2:6b:76:40:95:db:6d:a4:51:1d:82:32:cb:
3b:2f:10:66:d6:d1:11:50:30:c9:1c:20:8f:1d:10:
ce:22:a0:8a:2d:92:24:28:b1:04:68:d6:11:a1:6f:
fa:60:23:fd:04:ca:4e:2f:f9:7c:cb:08:94:0e:88:
d7:7c:aa:48:60:70:53:81:69:81:ad:90:62:d3:ce:
de:c2:05:53:3e:61:a1:a2:51:a1:d9:f3:b2:c1:5b:
07:72:73:01:0c:c8:f9:87:a4:14:42:40:08:a4:74:
19:e2:52:b3:9b:09:d3:75:4c:d3:bd:7b:d1:58:3d:
b6:68:11:e5:88:87:91:8e:05:0b:e7:b8:1e:c0:64:
10:5c:82:f8:12:a9:3d:dd:fb:05:7c:21:c2:e0:fd:
12:d9:0b:1d:a4:d6:3b:cf:0e:44:a5:1e:68:80:eb:
64:83:d1:b0:7f:45:9f:fb:04:80:6b:f7:b8:0e:7f:
48:02:6b:f9:2d:55:c9:52:07:c5:9a:32:94:30:87:
bf:1e:84:9d:e7:c6:59:44:6d:36:7b:22:93:2d:e3:
64:9d:ea:25:65:61:ed:7e:51:2c:ca:95:34:51:d4:
18:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:32:6F:F5:76:7A:FC:0A:FE:1A:15:F8:16:AC:05:01:92:B7:9E:5C
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0d:94:11:e7:8e:6c:9b:34:08:33:9b:9f:70:86:68:4b:04:
c4:31:60:56:c5:1f:5b:63:e0:6a:f3:fd:83:42:14:8a:dc:be:
b6:d1:5a:6d:02:20:25:a2:55:2e:3c:e4:77:e6:ac:e8:69:e7:
82:96:9a:c8:95:70:f7:f5:02:3f:08:bd:e2:e5:a4:db:5d:bb:
03:5c:2c:f5:10:e0:c0:3b:7d:b1:82:06:57:c0:f0:8a:6b:44:
d6:31:45:21:69:89:d1:f8:16:04:02:0d:3e:31:88:49:e1:88:
41:0b:81:74:18:1e:53:9b:8c:6f:20:39:1a:71:6c:8b:40:18:
79:75:88:53:99:53:37:9c:a8:73:85:56:06:0b:a3:97:20:3c:
32:bc:bf:7a:ec:f2:be:88:a7:bd:43:fe:65:91:49:49:d1:ed:
89:6c:a2:40:c2:4c:ef:80:fc:d7:56:e2:3b:a2:30:f6:c9:00:
c1:fe:ac:58:68:2f:dc:32:3f:27:53:33:95:5a:2a:7a:1c:18:
d1:e4:4f:b6:a7:de:db:a1:6a:82:c3:c0:39:8f:4b:7d:74:a2:
76:2b:81:df:a0:50:77:9b:23:dd:41:cf:37:0b:7d:02:6b:01:
5b:8e:57:94:e1:19:e6:d0:89:20:50:4a:c9:b8:32:6b:3e:f1:
6a:24:d2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:06:29 2026 by rpki-client