Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
File: lMhsmzXXghFrLNhYOifOtAO49ho.mft (raw, json)
Hash identifier: qrZhmgDS1/7Imt9HpXeOQYyJFuPEQPwIv2fQ2Rde6vs=
Subject key identifier: 9E:C3:A5:CF:C7:3B:81:FB:A1:D7:61:F3:EC:A1:42:D0:A7:4A:DA:48
Authority key identifier: 94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
Certificate issuer: /CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Certificate serial: 019D9B878825AA4D77DA5D0B5667AE377E7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 13:00:43 +0000
Manifest this update: Fri 17 Apr 2026 13:00:43 +0000
Manifest next update: Sat 18 Apr 2026 13:00:43 +0000
Files and hashes: 1: lMhsmzXXghFrLNhYOifOtAO49ho.crl (hash: wS61y2qidvrxU7yb/4FfmHv+wIDgpyKD2nniJLHDpWk=)
2: tz4P9nF3Ei3wUS8VYP6Gfwtlguc.roa (hash: WI+TvaMT1Y9cC04iUl0U1l9xEwrwqSAkBoEDvp55Sj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:88:25:aa:4d:77:da:5d:0b:56:67:ae:37:7e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c86c9b35d782116b2cd8583a27ceb403b8f61a
Validity
Not Before: Apr 17 13:00:43 2026 GMT
Not After : Apr 18 13:00:43 2026 GMT
Subject: CN=9ec3a5cfc73b81fba1d761f3eca142d0a74ada48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3d:d1:61:34:92:b1:e8:fb:e7:84:78:cb:b3:
c5:2f:c9:de:96:a5:73:fa:a8:61:a2:cf:1c:14:6d:
16:bc:8d:c0:03:d0:b8:51:0a:f4:07:5e:02:58:e4:
f9:ff:9e:93:2c:70:1a:89:11:1a:bc:02:11:8c:5f:
90:60:27:ce:00:e4:05:1d:a5:34:03:b0:7a:9c:5c:
bc:e0:29:11:1f:a3:7d:70:87:f3:6c:7e:ef:14:47:
dd:4b:96:e8:12:c3:9f:31:ac:28:78:ad:ae:d7:20:
07:c9:a4:2d:fe:b0:32:e1:87:10:43:7f:02:98:43:
f0:85:6c:18:38:89:9a:cb:8a:d0:01:7d:4b:47:93:
8c:38:a9:e0:67:e1:94:17:c4:a7:c9:2c:f7:e5:60:
15:71:41:67:40:2e:58:3c:3c:db:4e:d4:44:29:e3:
ef:33:49:b5:c6:e7:eb:a4:b8:70:5d:40:b0:85:5e:
e0:ce:ee:f3:e0:44:82:11:c2:3b:ed:83:be:6e:8c:
28:11:42:ad:1a:91:f5:a1:78:4f:6c:86:04:15:0f:
e3:da:61:00:c3:28:c9:b3:9e:39:b7:4d:3c:43:8e:
a1:78:1c:9a:cc:ab:00:5a:43:f6:52:3d:25:be:e3:
9f:68:29:24:07:eb:c5:8b:c3:a5:ef:46:66:8b:8e:
36:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C3:A5:CF:C7:3B:81:FB:A1:D7:61:F3:EC:A1:42:D0:A7:4A:DA:48
X509v3 Authority Key Identifier:
keyid:94:C8:6C:9B:35:D7:82:11:6B:2C:D8:58:3A:27:CE:B4:03:B8:F6:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMhsmzXXghFrLNhYOifOtAO49ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fdd688-3e23-46f4-a073-35b0c96524fa/1/lMhsmzXXghFrLNhYOifOtAO49ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:2d:18:95:05:b2:ca:7c:cf:de:92:6b:f4:31:1d:e8:d3:39:
f3:26:8f:7d:ef:7b:d6:f5:3d:c6:b7:f9:00:05:85:c7:97:ab:
14:12:50:d6:6c:34:55:a5:a7:6f:7d:49:26:de:70:c7:21:db:
65:28:1e:12:62:92:9f:83:84:7b:27:6a:d2:3f:e0:a2:3a:ef:
8b:62:6c:64:c9:7c:7f:d2:10:96:9c:a9:0c:7d:ab:07:e7:67:
c5:14:94:d1:e9:2c:de:9f:63:9a:0e:a6:99:8c:86:dd:9c:5f:
1a:8c:2e:a0:6f:33:32:68:e6:ac:e2:49:26:e7:db:f8:8a:97:
2a:1d:b6:dd:ff:36:df:ee:a4:53:f9:07:75:23:d6:12:6e:81:
01:f5:10:f9:7c:34:0d:68:16:5e:8f:cb:50:01:bc:e4:0a:90:
e2:2e:26:04:b8:87:e6:89:81:8e:34:5f:42:60:2b:39:e9:60:
9e:ac:c2:61:98:fc:eb:31:f6:9e:86:57:64:bd:22:41:67:13:
2a:cf:7b:3d:16:96:9d:21:85:ed:b3:f2:60:3a:96:f6:a7:72:
5c:12:23:02:18:7a:13:c4:d7:30:47:1a:a8:e4:05:a1:2a:09:
75:a7:fc:ce:4e:a6:8f:79:68:22:a7:84:48:11:a9:78:65:17:
30:34:78:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:04:37 2026 by rpki-client