Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: v8DQTdX58qbQgwaBxAChGss/zxB/MX8Re4cIAbTqreM=
Subject key identifier: AC:2B:46:45:FB:98:A1:CC:D8:A1:1A:9A:0F:00:C0:4D:B6:2F:BC:EB
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019D9A74A03FE17653F0EA22D945FAE646EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 08:00:27 +0000
Manifest this update: Fri 17 Apr 2026 08:00:27 +0000
Manifest next update: Sat 18 Apr 2026 08:00:27 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: RlgpvcXNwLN/DUwFfXw5oSgcgRieZmHarumP72qVEYI=)
2: I9nUczY20Zb-qB4txSR8cQbIwOU.roa (hash: tVztN2aCOWmTRMBNdBunPfUafnJabZOVueK23yoz3NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:a0:3f:e1:76:53:f0:ea:22:d9:45:fa:e6:46:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Apr 17 08:00:27 2026 GMT
Not After : Apr 18 08:00:27 2026 GMT
Subject: CN=ac2b4645fb98a1ccd8a11a9a0f00c04db62fbceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:75:f7:27:80:af:f3:4d:ea:ec:c8:84:d0:
30:ae:e2:52:85:f1:df:c0:de:dd:58:5e:b7:d9:0a:
79:80:ab:a0:36:83:85:51:17:67:3d:46:d8:60:0c:
3b:2e:80:29:27:96:6b:a4:48:ed:25:09:11:3b:11:
88:8c:fa:00:97:ff:3d:04:7b:d1:32:f1:cd:2c:1a:
b9:a5:62:e6:4a:e3:f9:81:b3:c0:9b:b3:3a:47:d1:
ef:85:6f:d6:af:c4:dd:1f:9b:83:d2:51:d3:03:05:
fb:47:42:a5:5d:29:64:62:07:c5:ad:0e:03:06:be:
11:d6:62:88:53:22:1c:86:66:77:17:ff:1b:a6:50:
95:ce:a7:f6:27:e0:7e:df:2a:83:9a:b3:3f:0c:b6:
3b:a3:d5:de:6e:cd:b9:b9:17:e8:03:ac:44:1c:78:
12:95:d8:0f:8d:ca:27:0c:c5:eb:f1:6d:a8:7a:bb:
af:b1:d7:07:71:8d:b5:72:8c:8e:c9:fd:5a:17:de:
51:55:01:6e:cd:60:39:56:d2:bc:9b:10:fe:c0:1a:
4a:85:1b:21:82:ac:e4:8c:15:8b:96:2f:34:e8:c4:
28:62:80:b5:eb:ef:0c:68:f5:bc:26:c4:c0:88:1a:
71:e5:13:75:81:1d:3c:38:0c:b2:d9:b8:a8:c1:96:
fa:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2B:46:45:FB:98:A1:CC:D8:A1:1A:9A:0F:00:C0:4D:B6:2F:BC:EB
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:52:8f:06:5e:28:f0:ac:cc:2d:ae:2a:bd:43:bf:ab:e7:99:
5b:05:ca:9f:f7:77:b8:6d:b4:ae:eb:15:a8:b5:0f:6e:02:e9:
fd:95:37:bb:aa:b7:c4:a4:b3:4b:9c:db:06:90:2c:9a:0c:a7:
44:4f:ba:e0:de:d7:b8:5d:b8:f6:66:d1:cb:96:c2:92:30:87:
f5:63:bf:73:32:10:f6:63:ff:9d:82:9c:8a:c3:d6:ac:e7:b2:
cd:da:a4:e6:9d:04:95:ce:ae:8e:af:60:70:c7:ea:ab:b8:3f:
88:df:1d:a0:fa:37:c1:90:46:40:73:eb:a1:f5:14:b1:e6:bb:
d2:1c:5b:5c:69:b8:d8:c2:d6:2e:17:fa:5f:af:bf:9e:01:c6:
47:c2:cf:73:64:06:99:2c:a8:90:a1:72:19:75:57:49:37:88:
74:1e:8e:14:c4:10:02:fb:45:18:ff:ae:44:a5:74:29:de:54:
3d:b8:00:cc:83:a9:2c:a9:cd:fc:3f:ef:6e:5a:5c:7a:83:ad:
ec:02:5c:13:85:61:4a:e4:8f:f0:55:46:09:b8:c7:09:73:93:
11:76:11:43:ec:2d:16:8a:5c:85:78:87:3b:ad:5b:02:92:98:
66:7b:3d:aa:34:fb:e8:a9:92:97:51:8c:f2:1b:bb:21:64:1f:
f0:2b:44:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:30:02 2026 by rpki-client