Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: dsfYZA9POB/a1HdI4ELqXJKID2LVkCLNI1d75ff1tdE=
Subject key identifier: D4:D4:27:6D:E2:68:30:67:95:E7:9C:EA:AA:24:AF:5B:6A:7F:DC:70
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 019D99CFEDC69B8F878487410889E67DCD73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 05:00:34 +0000
Manifest this update: Fri 17 Apr 2026 05:00:34 +0000
Manifest next update: Sat 18 Apr 2026 05:00:34 +0000
Files and hashes: 1: 8v0CcVyve98suRZMz0YYAeGqttU.roa (hash: gavUEFBgnAVuBp4EUd0FRwiP3lAlf2Xbyzla4xcdz6s=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: 3VTcWUcWAJH603OvFw85LxhF/5LYv35V7VtE+9J/8m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:ed:c6:9b:8f:87:84:87:41:08:89:e6:7d:cd:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Apr 17 05:00:34 2026 GMT
Not After : Apr 18 05:00:34 2026 GMT
Subject: CN=d4d4276de268306795e79ceaaa24af5b6a7fdc70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8b:74:c7:99:5f:77:d2:c0:b3:8b:3a:e0:ae:
76:6f:ac:b7:a2:a4:21:08:0a:c7:09:be:36:9f:e9:
4d:74:ce:3b:aa:9a:ea:5e:63:63:78:74:e4:75:ee:
2e:0f:fa:02:4c:1c:47:6c:ed:e3:aa:4b:0e:86:7a:
02:a7:f8:c9:4d:d4:ff:52:fe:4a:db:bd:dd:83:f1:
61:62:5c:96:33:ed:d7:46:a5:f4:1f:bb:30:71:b8:
95:f9:41:1e:4a:bc:00:0f:7e:57:2f:43:57:97:39:
7a:ed:9d:56:93:12:0e:af:9d:d5:ec:2c:49:7b:ca:
6b:c6:5f:10:29:56:bb:38:b0:95:3e:36:6c:68:ee:
f5:04:49:73:0e:76:6c:a5:cb:66:22:43:03:23:a6:
27:56:af:b5:f8:c3:59:8c:bb:dd:68:ec:59:70:9f:
6b:f1:47:5e:67:92:4f:4e:25:76:2f:7d:7d:24:a7:
68:da:60:28:8b:24:fd:ba:0c:d8:45:6e:c1:51:88:
2c:38:8c:44:1d:f2:ce:01:5e:1e:d0:d2:0a:cf:a1:
be:c1:81:01:68:3e:e7:37:35:43:4a:17:6e:25:e4:
5e:cf:e3:e8:45:4f:32:e1:bd:5e:bf:45:35:66:aa:
fb:13:2a:e9:2e:54:18:f8:0c:79:c3:e0:81:ff:58:
38:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D4:27:6D:E2:68:30:67:95:E7:9C:EA:AA:24:AF:5B:6A:7F:DC:70
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:fa:7c:8b:10:89:42:1c:6d:12:59:d3:06:7e:83:bf:dd:3c:
59:a2:54:e1:6a:45:81:aa:fd:43:35:2f:b2:ce:45:10:9b:5d:
32:f5:e4:53:da:99:70:80:4d:02:39:d4:6f:c2:65:07:62:7f:
ed:6f:ac:8e:9e:68:41:49:0b:e2:96:60:11:95:97:66:3a:74:
91:81:34:61:7f:74:7e:d0:96:81:92:b5:c4:2f:31:b2:ec:b6:
1e:ca:2e:d6:df:16:9b:0d:99:4e:09:6c:fb:43:09:ee:97:b7:
b7:70:e4:fb:f6:51:01:13:1e:e5:f4:22:c4:f6:ef:95:a8:7c:
e8:41:de:41:fb:1b:db:d0:e4:7e:29:f6:5f:f2:2a:e1:c7:ee:
ae:cf:58:13:91:7a:a5:e2:5e:48:e3:0b:50:89:4c:9e:d1:96:
7b:58:96:93:34:a4:b1:4b:65:78:4c:e8:a7:ce:2d:56:cd:d6:
74:9c:14:32:cd:40:80:1d:5f:63:a0:d9:83:e7:ce:d5:c1:af:
c6:df:85:3a:a9:0e:9b:84:52:eb:f1:e1:31:d3:2c:f0:11:5c:
df:42:1a:e7:c5:ff:a8:e2:e8:b6:7b:e4:c4:e1:a3:ed:f5:c6:
5b:69:96:a0:79:7f:05:a3:0a:c5:0f:ed:84:2c:1a:fa:7b:f9:
0c:50:7b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:23:50 2026 by rpki-client