Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: OWP8y3xDjDgihfjCmhUgc71Ds7luP2TMR6BZydEwSG8=
Subject key identifier: 13:CF:0B:6F:05:7F:C8:FB:54:82:63:9F:5E:F8:80:6F:53:60:13:6D
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 019DA3782B6FF714B74346B033D682095006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 03CC
Signing time: Sun 19 Apr 2026 02:00:54 +0000
Manifest this update: Sun 19 Apr 2026 02:00:54 +0000
Manifest next update: Mon 20 Apr 2026 02:00:54 +0000
Files and hashes: 1: Af_5rqEWBhs_t_5t3ubsN4ME7qQ.roa (hash: US3yyitysBySkBj1duM7uaT/kHoh5Ro/nrveWTewP9E=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: sE/AHfRjdsB8rnB8JhLm2nNcEkFlqVjaiegjFfdSu5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:2b:6f:f7:14:b7:43:46:b0:33:d6:82:09:50:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Apr 19 02:00:54 2026 GMT
Not After : Apr 20 02:00:54 2026 GMT
Subject: CN=13cf0b6f057fc8fb5482639f5ef8806f5360136d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:16:38:90:ad:a8:6e:46:cf:04:1f:b1:97:ed:
c9:6d:56:86:74:39:13:25:08:9a:4c:d5:d7:62:36:
5d:88:21:51:bd:0b:61:1a:ba:0a:e8:79:78:89:11:
84:e6:59:3b:f2:8c:4b:07:9f:fa:0a:37:4a:14:0b:
e8:a2:1c:60:3a:28:ca:99:50:ee:ef:31:bc:f4:80:
3a:aa:c1:02:d4:ed:f5:8c:6c:4c:f6:07:26:3a:ad:
7d:63:08:a8:3c:c4:44:ae:6e:4e:fb:a9:27:cb:15:
13:b6:07:5f:5a:cf:43:1e:df:d1:19:07:5a:63:cb:
ad:3b:9c:15:a2:48:d8:f4:61:6f:ad:d8:05:b9:e6:
02:8d:f5:db:ca:c6:b5:a4:65:2d:e3:3a:53:7b:a0:
9b:c3:55:86:f3:ae:08:56:a1:41:1c:f1:26:e9:09:
e0:a2:c5:5f:4f:d3:a3:1e:9d:13:bb:89:c8:9f:30:
be:61:f7:03:19:84:7b:a2:c0:dd:b2:74:3d:92:86:
e6:5d:0f:fd:39:56:0d:67:65:13:99:40:9e:3c:5b:
78:04:50:0e:48:1e:45:53:9f:0b:9d:26:33:60:47:
a3:f4:30:27:1f:27:ff:96:a9:29:cc:73:9b:a1:cf:
5c:5d:4a:c8:f7:9b:a1:87:7e:07:7f:cb:c7:93:98:
d7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CF:0B:6F:05:7F:C8:FB:54:82:63:9F:5E:F8:80:6F:53:60:13:6D
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:5c:dd:b4:8e:d3:5f:4c:74:7e:69:e3:56:92:d9:07:39:f0:
6e:ad:c4:73:14:17:8a:12:c3:c4:86:08:a7:b2:ae:b7:6a:f4:
71:ce:35:3a:c3:af:3e:4f:3e:6e:1c:d0:06:e6:32:38:26:04:
12:8c:2a:72:5a:0a:c9:22:36:54:09:74:1d:8a:00:d0:78:61:
f6:f0:0b:1a:2a:d9:3a:b4:73:e4:e4:a6:7d:11:8a:fb:16:5f:
4f:5b:2f:c4:7f:6b:28:96:c5:8a:5c:38:9e:4a:22:52:d1:0f:
5c:af:78:b2:68:d6:96:0d:c2:ac:e8:7b:f3:3a:ce:6c:b1:77:
36:f7:5a:7f:dc:38:32:95:92:8c:ef:5f:94:c6:48:be:c3:4d:
f2:3c:23:00:c1:2b:f8:09:18:ee:c2:76:53:29:9e:e0:47:04:
d9:7c:d9:b7:9e:a6:0c:bd:74:46:a3:b2:ca:f7:43:7a:05:84:
b4:2b:67:69:2e:ad:a3:67:1b:de:2e:39:c3:72:3b:da:c2:9b:
db:fb:44:57:ea:2d:86:49:34:b7:a5:ba:94:90:c2:7e:c7:e4:
cb:d5:92:e4:66:f8:cb:4b:2e:bb:4c:e8:c2:46:75:ab:18:6b:
42:37:11:19:f2:65:98:c5:78:0f:f7:ec:b6:76:d1:19:c6:c3:
de:34:d9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:28:41 2026 by rpki-client