Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
File: isfq5knZVHsK0KsAerTopI3tTV0.mft (raw, json)
Hash identifier: qnCqToygYqtmpA6JrwN3QaYkrxfKEgN0aCK6GSCFnQU=
Subject key identifier: 65:A2:AE:2B:F7:8A:A8:A9:79:DA:B0:A6:7F:31:7B:DB:3F:9D:DD:0E
Authority key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
Certificate issuer: /CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Certificate serial: 019D9AE26CE3E6CE528F1EA43E8E41478D53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
Manifest number: 18C8
Signing time: Fri 17 Apr 2026 10:00:23 +0000
Manifest this update: Fri 17 Apr 2026 10:00:23 +0000
Manifest next update: Sat 18 Apr 2026 10:00:23 +0000
Files and hashes: 1: ZEq2VxymKKqXcVDH7UVkT9RIte0.roa (hash: OutVjw9J9+RzSe2XRHmI9JPa/RxVwdLkAlr9fkxWJAw=)
2: isfq5knZVHsK0KsAerTopI3tTV0.crl (hash: 5sfXYlPT9/Sh5csRkSdr65ZGTSb2I4RdWLFNLeOHqSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:6c:e3:e6:ce:52:8f:1e:a4:3e:8e:41:47:8d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Validity
Not Before: Apr 17 10:00:23 2026 GMT
Not After : Apr 18 10:00:23 2026 GMT
Subject: CN=65a2ae2bf78aa8a979dab0a67f317bdb3f9ddd0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b7:b9:95:ff:83:96:31:fd:9f:d2:e2:55:1a:
cd:7e:bd:99:51:64:0a:89:c5:b4:12:0a:c8:27:50:
70:1e:2f:b0:7a:dd:90:ab:78:78:0a:8d:80:1c:65:
2f:dc:2b:99:09:63:9b:f0:d6:c4:f2:43:bc:ac:21:
3f:af:f3:fb:f6:60:31:0c:96:e3:2d:bd:c1:b0:8b:
d2:57:f7:4d:0a:02:8c:a8:bb:b6:84:92:94:31:98:
2b:3f:e2:09:8b:7d:fd:8b:ed:5f:d9:3d:97:9f:bd:
f2:17:03:57:7f:7b:d8:16:1f:6e:6d:74:69:79:fe:
c5:94:39:31:d0:d8:69:f6:c5:89:98:fb:4f:1f:ac:
29:f8:3e:4c:c0:cd:bf:a4:a0:85:d6:e7:01:b3:c8:
9c:cc:77:f1:b9:76:f5:e2:d6:64:d4:41:51:77:44:
6e:49:79:92:7a:13:a4:10:5a:39:2d:0e:4a:d0:fa:
65:24:4b:d5:9f:e8:24:bf:38:f2:3e:8d:0e:32:4b:
dd:67:dd:c7:1f:ae:a0:3f:32:e0:44:9c:f4:1d:b5:
25:5b:61:15:0a:08:bf:d7:ee:43:ec:f0:4f:8e:d5:
20:8a:49:3b:0a:06:52:32:d0:d6:d4:43:9b:44:88:
c4:72:60:f3:2a:f1:ba:5d:12:99:4d:1a:fe:ef:a0:
0f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A2:AE:2B:F7:8A:A8:A9:79:DA:B0:A6:7F:31:7B:DB:3F:9D:DD:0E
X509v3 Authority Key Identifier:
keyid:8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:8a:b6:8c:d1:1c:22:13:30:bd:fa:98:c6:d1:50:0f:a9:ba:
3d:36:15:42:e1:15:34:5f:18:ee:bf:c6:96:51:c6:df:b7:d2:
7e:7c:6b:1d:83:30:a6:0e:f1:bf:ee:e2:55:36:6d:51:4b:90:
cd:21:62:75:0d:78:b1:a7:76:fc:6d:a5:79:91:19:a8:41:f3:
46:3e:99:9b:9f:de:17:2e:32:9a:ba:f8:62:5e:f1:86:12:df:
b7:0e:56:03:60:a7:ab:0a:8b:bb:ce:04:0a:74:bb:1b:aa:27:
d7:c5:ad:36:6a:a0:ae:1f:06:bb:07:1e:40:62:b1:05:5b:3b:
29:ae:f2:13:85:46:e2:80:ed:3c:d7:df:73:fc:f5:c4:52:31:
04:04:16:15:be:c5:32:45:7f:ff:80:98:41:87:a2:da:13:13:
df:d5:c5:88:b1:6f:0b:f5:48:d4:0f:72:82:38:4b:81:54:2f:
97:70:14:45:a1:43:bd:e3:f5:90:54:0c:60:18:37:9e:59:e1:
d5:77:97:81:1e:61:a9:86:fe:52:73:51:02:dd:b7:a9:4d:a3:
19:6f:3c:a1:d4:bc:da:90:12:e2:38:2e:6d:0d:ea:00:52:fc:
12:12:d7:d0:c9:40:07:65:2f:41:4d:5c:d4:56:ba:39:9d:45:
ef:e9:9f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:23:44 2026 by rpki-client