Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: XSw26Dcp40sRbeYhU8YJnL3GPNdNHsyqQZRRoikTPyg=
Subject key identifier: 24:31:52:41:A1:C5:BD:5D:50:A9:A8:84:2D:DD:3C:96:21:9F:F8:AA
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019DA453A3882D9843EB8E1738BBAF081FE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 185A
Signing time: Sun 19 Apr 2026 06:00:37 +0000
Manifest this update: Sun 19 Apr 2026 06:00:37 +0000
Manifest next update: Mon 20 Apr 2026 06:00:37 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: CPYU7AiH7xBybGG1eOjOXfCAGqeTkm9yxxFGDlr0i2g=)
2: O3NHX1xusGOC_jwAncPD2CBztNE.roa (hash: tIvb5cVDrsiT8uq8kfesqrbk5rRYub73yqvQwpeTOXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:a3:88:2d:98:43:eb:8e:17:38:bb:af:08:1f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Apr 19 06:00:37 2026 GMT
Not After : Apr 20 06:00:37 2026 GMT
Subject: CN=24315241a1c5bd5d50a9a8842ddd3c96219ff8aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:39:ff:b8:21:d5:04:2a:a1:95:78:50:09:
81:ef:59:07:51:5f:de:62:4a:fc:6d:bf:78:51:72:
d9:45:70:b6:5b:66:e3:22:e6:a2:ce:d2:bf:33:f9:
11:21:13:4c:e7:a9:68:4f:d8:c2:6c:71:78:ba:06:
63:70:30:7b:59:a7:7b:84:95:d6:b3:3e:cd:9a:59:
09:16:72:33:43:02:18:8f:9f:1d:75:b3:64:81:85:
88:d3:a3:4a:20:80:65:75:eb:1e:bb:5b:83:47:dc:
08:f3:34:aa:85:1b:10:2f:30:ed:96:fe:00:d6:28:
dd:b2:31:17:78:12:13:9d:94:69:97:72:36:1c:3b:
94:c0:8a:81:14:69:3e:5c:ee:3b:c9:48:2f:93:b6:
28:82:6c:0e:c8:2e:22:10:3b:6e:44:82:a8:77:6a:
55:d7:37:5b:de:31:46:f6:fb:90:4b:75:d6:c5:5d:
3a:6b:7b:bf:bf:c0:78:22:4a:93:37:6d:f3:a6:3c:
b2:c3:99:e8:7a:2c:13:2c:fd:ff:7c:2e:f2:c5:8d:
4c:12:a4:92:4b:3c:32:9c:42:f1:f3:3d:d7:6f:ed:
48:b6:ea:7a:37:57:23:0b:39:64:fd:5b:2f:cb:76:
74:60:b1:d3:4a:77:2a:af:d8:66:05:2c:24:20:4d:
eb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:31:52:41:A1:C5:BD:5D:50:A9:A8:84:2D:DD:3C:96:21:9F:F8:AA
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:63:12:4f:9e:5d:eb:79:a4:86:f7:6c:94:b8:c0:a4:e9:9c:
cd:b8:37:b6:0d:57:d1:66:24:48:4d:2c:0b:53:80:fc:fd:b7:
13:e2:85:16:e9:5a:b2:1c:52:3e:82:b4:33:41:42:97:36:16:
c3:68:e3:34:1c:17:91:8d:c6:ad:48:16:b7:5a:c6:20:c3:54:
21:c2:f6:5b:20:3b:05:02:24:97:ef:21:04:cb:02:41:99:a6:
5f:53:7e:4e:e7:8e:f2:ef:70:fc:71:fe:c5:13:67:7c:f3:25:
d6:4e:8e:23:6b:e4:e7:49:7b:1b:b5:63:af:ac:d4:b0:3c:3a:
45:bb:39:07:c8:0c:85:32:4b:64:e4:69:87:b5:2a:53:d9:4e:
42:be:12:00:96:08:5f:c2:54:40:89:62:a3:08:e2:66:e6:8a:
03:ca:ed:a1:55:ea:96:53:2c:7c:e3:5e:7c:39:72:19:81:35:
2d:3a:77:7f:2c:19:3c:e6:53:c0:d1:f8:4c:eb:c2:1f:52:b7:
53:ff:f1:48:a0:85:06:6b:84:28:f7:83:37:77:6e:91:04:5c:
37:31:ed:4a:2d:58:eb:83:37:88:19:1c:5f:7c:91:00:00:b2:
8f:0a:de:8f:a7:16:fa:3d:1f:23:33:b8:bd:89:26:90:f4:77:
71:e5:cb:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:23:04 2026 by rpki-client