Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: vlNjDwlQA1h92GOkOEgrKpNzYrRCKIDnduuvw2iA8YI=
Subject key identifier: 44:2E:F2:4F:98:89:DE:15:56:09:EE:BC:06:3D:70:3B:38:13:89:04
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 019D9DE3C35460C6928EAF679B25BFA6E8DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 18C5
Signing time: Sat 18 Apr 2026 00:00:42 +0000
Manifest this update: Sat 18 Apr 2026 00:00:42 +0000
Manifest next update: Sun 19 Apr 2026 00:00:42 +0000
Files and hashes: 1: YwaTWFoU_sclTYJB9JwjIcKav1Y.roa (hash: Eu+5SivPrsHncNTTaLf6fSyoRwG5oxFjSNJBm3PvsI0=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: mfGvwDm1mosudwPhNqBjPetvmn7FqPUyQl4Wn7xRZY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:e3:c3:54:60:c6:92:8e:af:67:9b:25:bf:a6:e8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Apr 18 00:00:42 2026 GMT
Not After : Apr 19 00:00:42 2026 GMT
Subject: CN=442ef24f9889de155609eebc063d703b38138904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:db:97:e2:67:f0:6c:9d:23:50:19:d6:3e:7d:
3a:d2:1b:5d:f9:35:22:82:e3:f1:4c:10:36:86:01:
53:65:c0:34:5c:d2:6c:9f:11:37:b2:d5:c0:c0:e9:
0f:4b:03:17:6b:60:cd:39:dd:30:23:6b:ca:e4:e7:
22:28:97:b2:23:54:18:16:13:e1:c8:a8:72:c2:9e:
0f:3b:40:69:44:00:4d:71:81:d6:41:34:75:6f:ce:
53:51:9d:32:1a:79:4f:70:56:77:6a:9a:cf:cc:77:
6b:f6:a9:15:d2:91:17:16:99:da:2e:ee:ac:e9:d3:
d1:ba:e5:a2:4a:b4:39:ef:dd:c0:fe:bb:27:be:c2:
4d:73:04:ec:66:4a:91:de:88:9d:d4:df:1e:fc:29:
94:bd:56:17:c3:ef:27:09:be:dd:16:07:be:b7:c4:
b0:63:4f:3f:72:76:aa:a6:2a:03:fc:b5:82:9f:3c:
84:a3:b1:5a:f9:3e:01:aa:e5:6c:ef:ed:c5:f7:87:
3f:69:12:ab:a4:15:32:f1:e9:40:00:b8:4e:d1:8b:
51:58:06:cb:01:d8:1e:44:d0:7e:a8:a8:83:d4:4b:
51:a3:69:c2:91:c9:6d:50:7c:af:16:7b:aa:5c:a2:
d0:cf:07:fa:35:3c:3f:98:fb:cc:de:2e:3b:9b:9a:
f5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:2E:F2:4F:98:89:DE:15:56:09:EE:BC:06:3D:70:3B:38:13:89:04
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:58:00:f8:54:7b:bb:1e:5a:b4:46:ee:9c:fb:f3:b3:56:95:
22:cd:b7:5f:85:87:8c:ac:5e:65:e8:22:9c:e1:8f:34:a4:8b:
ad:27:ee:fc:f0:1b:a8:96:4c:bb:e6:4a:9d:46:72:2e:54:f1:
b5:0f:5b:26:b8:88:09:2a:e9:bd:59:83:19:a7:5e:dc:fb:84:
ea:ac:50:5e:94:7f:23:6f:ca:f3:51:29:55:e2:3f:b4:22:50:
33:91:51:3c:8a:92:11:1f:6c:54:5d:9e:a3:82:b2:1e:9e:92:
b3:65:42:13:a3:e9:20:1f:98:4b:5f:4c:05:ba:c1:0a:02:fc:
3d:70:6e:3f:69:35:bf:f7:1a:ab:ee:3c:fc:ef:26:11:1c:29:
73:0b:bb:a9:27:d7:31:5a:a9:f0:cf:6a:f8:75:3c:84:3f:68:
5c:1b:ea:f0:9a:ed:64:4f:6d:09:64:d2:02:b1:22:5b:56:ec:
fc:c0:2d:ac:e6:90:fc:55:ee:29:04:ae:7b:e9:70:7d:3f:92:
4d:1c:1d:5b:29:83:f5:d2:1e:7e:24:42:8d:eb:88:27:38:3a:
64:b4:00:1e:d8:3a:e6:93:e2:78:96:40:c2:21:0f:76:f4:3c:
bd:17:33:4a:27:a0:71:b6:f5:d1:eb:e6:83:0a:d8:83:cc:69:
ea:86:40:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 06:29:16 2026 by rpki-client