Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
File: 43ipS5lk6l6fiwWThwK6WDFrUA8.mft (raw, json)
Hash identifier: a1h0bL89bwXis8WTRijQmSYK0+gZ/8yQmFwPGkiMjxo=
Subject key identifier: 65:E4:B1:0F:42:50:AD:4F:C8:0F:1C:C9:B7:7C:F2:4E:22:0E:77:72
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 019D9B507FF405398420F858C821D581E800
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
Manifest number: 1852
Signing time: Fri 17 Apr 2026 12:00:37 +0000
Manifest this update: Fri 17 Apr 2026 12:00:37 +0000
Manifest next update: Sat 18 Apr 2026 12:00:37 +0000
Files and hashes: 1: 43ipS5lk6l6fiwWThwK6WDFrUA8.crl (hash: Npqdv3bVzRP78z04ZxNaxqkVyZLS/RRYTBe91sKcjKQ=)
2: z20tkJ9aM0VxzsTv6McuHmggfYg.roa (hash: HyTTXZdN54NL3quW2ViSSrBjGEpXj05e9dah+eMXfH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:7f:f4:05:39:84:20:f8:58:c8:21:d5:81:e8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Apr 17 12:00:37 2026 GMT
Not After : Apr 18 12:00:37 2026 GMT
Subject: CN=65e4b10f4250ad4fc80f1cc9b77cf24e220e7772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ec:27:0d:17:89:60:01:9f:df:a6:44:36:66:
e4:61:8f:1f:5b:f4:6f:c2:38:3d:70:66:ba:8b:c2:
a9:f2:3b:1a:e0:17:80:03:34:2f:c2:af:b5:1d:12:
80:52:14:ce:3b:dd:a0:ec:15:b3:e2:fd:b5:07:87:
e3:49:5a:d1:da:d4:68:d5:53:31:63:88:6c:1a:df:
8c:73:c3:75:ba:f5:de:52:63:9b:0e:26:18:12:13:
28:94:ab:44:18:02:b0:47:77:8a:61:2d:44:d7:db:
f8:96:be:50:99:73:87:06:bb:d8:3c:e8:90:88:58:
07:45:76:ef:76:70:f9:72:25:f0:93:e9:5f:7a:c9:
7a:17:a4:f1:7a:b5:a5:e9:ce:b9:ca:e0:45:ed:05:
d8:78:41:d5:c0:ed:9a:68:74:ed:94:b0:26:ab:8d:
69:10:cc:ff:50:d7:5a:69:d9:c0:cc:67:90:82:21:
f1:41:41:58:2e:78:85:36:7e:77:8f:b0:b6:50:4e:
61:66:e3:7a:aa:47:c9:fb:cf:16:1c:ad:17:cc:87:
fe:e5:99:66:98:3a:43:b5:3d:4d:65:96:c4:0f:ac:
f8:07:2b:dc:fa:9c:9a:f5:42:ce:4b:3d:c9:a0:8b:
c5:fe:17:6c:35:f3:b2:11:ac:8b:27:e1:4e:b3:c4:
71:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E4:B1:0F:42:50:AD:4F:C8:0F:1C:C9:B7:7C:F2:4E:22:0E:77:72
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:17:d3:c2:fc:83:b2:14:c0:80:78:57:8d:9e:9f:29:f8:d9:
af:64:3e:54:50:b7:6d:c3:8c:56:94:91:a2:f9:d4:45:20:d9:
69:12:53:e0:2a:2b:33:9e:1e:bc:f2:d8:e7:1a:f5:ca:0e:00:
12:33:bc:0d:8c:20:18:e4:d1:dc:74:d4:67:5b:5b:2f:fe:5e:
8d:ba:ed:ee:90:f9:75:81:66:96:8f:87:55:89:e9:47:bb:cb:
52:28:d0:2c:ac:ba:d9:be:0b:22:5c:0e:a7:79:65:33:68:1f:
5a:50:2c:1f:fe:1b:4e:21:57:71:6d:e4:7f:e7:55:89:e2:7b:
30:24:b8:db:fd:6d:93:41:9f:ee:b3:40:ec:2a:9d:0c:b3:a4:
7f:31:8c:78:4c:c2:38:48:e3:88:74:81:54:31:75:68:02:b6:
a4:10:93:3b:76:b1:b0:5a:af:cd:15:e7:59:90:91:ac:25:42:
ea:6e:90:c9:93:97:90:bd:91:76:55:13:1b:c5:ab:24:00:2b:
00:84:33:2b:4b:c4:3d:b9:ea:49:51:54:c2:9a:ca:d5:ff:fc:
d7:74:e8:f1:ea:b3:99:f3:a1:c9:4c:3f:60:3a:a9:65:01:91:
0a:29:7f:fc:c9:3c:9f:04:c9:3c:33:9e:32:fb:0b:61:df:f4:
8a:76:32:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:08:06 2026 by rpki-client