Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json)
Hash identifier: uxjSrTzGYsePb62wFuYP4to6mVtMyLaLxAOzjcGrO/k=
Subject key identifier: 29:95:7F:9E:37:52:56:6C:86:5C:A9:44:EA:3D:8D:7B:73:6F:6B:20
Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Certificate serial: 019D996245824C47B0EC84D40A57DDB683C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 03:00:47 +0000
Manifest this update: Fri 17 Apr 2026 03:00:47 +0000
Manifest next update: Sat 18 Apr 2026 03:00:47 +0000
Files and hashes: 1: 9tcqRBW5dWCPlBmOmJEm6c--iDU.roa (hash: u8oO/RgVRYujIoxnuHbXuI4mqtgSWQD8/zpjHQZYwcI=)
2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: RYSSzDNNh5CcmYJEqXoiLXZpy3/dboEP03tKXF4D6LQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:45:82:4c:47:b0:ec:84:d4:0a:57:dd:b6:83:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Validity
Not Before: Apr 17 03:00:47 2026 GMT
Not After : Apr 18 03:00:47 2026 GMT
Subject: CN=29957f9e3752566c865ca944ea3d8d7b736f6b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d0:4d:3f:c2:49:2c:a3:bc:c5:b0:00:11:1e:
64:98:5a:01:66:21:02:90:25:30:c4:78:a2:f5:05:
a9:cf:87:86:7e:6f:af:65:5d:0a:17:bb:5f:5d:c6:
ac:8d:fc:5f:32:d5:a2:c6:87:04:3f:04:c3:db:f5:
09:f1:4c:aa:cb:1f:8c:61:a1:a5:a7:14:48:ff:3f:
9d:99:14:f3:86:75:5a:2c:5a:53:c5:6d:44:34:b2:
7b:b0:da:19:e2:26:a5:67:69:cd:9b:53:69:de:47:
35:10:64:cf:fd:a3:6d:e1:04:6a:93:de:d9:f9:42:
94:da:e7:6e:22:89:d1:16:4c:a9:79:8b:e0:a1:c4:
24:13:10:96:98:0d:d9:9d:d3:e9:36:e2:9a:fa:ea:
c6:ab:0f:d5:f3:cc:97:1e:1b:d9:9b:62:9c:5e:bd:
64:9e:35:86:9f:ec:c2:3c:37:ab:7d:3d:50:29:24:
fa:ca:8f:f2:77:99:39:ca:f8:09:d2:07:37:7d:92:
56:34:33:6f:2d:60:e7:0a:ee:4a:1b:63:2a:95:27:
40:bd:5f:ba:33:1e:1a:26:0d:e7:23:2d:bd:81:7f:
ff:2c:14:05:76:7e:b9:bc:93:f7:0d:4a:9f:d5:21:
03:ef:d3:ee:9c:94:95:86:ba:71:e6:f5:6f:02:da:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:95:7F:9E:37:52:56:6C:86:5C:A9:44:EA:3D:8D:7B:73:6F:6B:20
X509v3 Authority Key Identifier:
keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ce:f8:44:fc:f9:ab:83:dc:3f:84:99:5c:60:fa:ec:07:cb:
da:5f:28:0b:86:f0:f0:32:c8:0b:37:14:01:f0:17:e9:fe:b8:
5f:36:df:24:bb:5c:55:7b:cf:a7:63:e9:b0:06:37:72:37:f5:
ca:0b:74:89:b8:b2:89:c9:22:9b:ce:38:5e:e5:ea:ce:9e:b4:
df:b9:11:c7:3d:16:60:cd:5f:29:5f:fe:59:4f:de:e6:78:5c:
64:6c:c8:18:f3:db:67:27:bc:04:cc:e9:eb:38:4a:48:58:c2:
89:3a:3a:e0:77:fc:2f:16:91:5b:2a:15:7d:05:2f:f5:3b:d9:
53:d9:3a:58:4f:33:bc:aa:95:68:af:88:ee:98:d4:74:2c:ec:
0c:8b:1b:ae:4e:b4:59:2d:97:1b:99:f4:66:86:f8:7d:63:bf:
73:6e:df:a2:8e:55:89:f9:14:e2:bb:aa:99:57:5d:a8:f9:f9:
51:c5:6a:56:3c:35:7a:47:4a:29:3d:1f:26:f1:de:9c:26:b2:
59:e5:7c:b1:e0:d4:a4:44:1f:c4:ec:b8:9e:0c:a1:04:98:11:
fb:69:98:f4:6d:53:56:3b:3f:bc:57:4f:78:1b:77:f1:38:7b:
08:3d:54:24:ca:96:f6:55:4b:c5:76:79:57:cd:3e:db:b2:c8:
81:18:4a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:09:28 2026 by rpki-client