Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
File: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft (raw, json)
Hash identifier: FkVJeq+Enf8TiaIIdBU45MU43p8OIXoPcLtYw4NffrM=
Subject key identifier: FA:82:3A:16:C2:8B:77:BE:01:4C:00:BD:D4:04:F6:F3:8B:CD:38:EC
Authority key identifier: D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
Certificate issuer: /CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Certificate serial: 019D9BF5CAD41714DE0BE05B722BB52F85A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 15:01:09 +0000
Manifest this update: Fri 17 Apr 2026 15:01:09 +0000
Manifest next update: Sat 18 Apr 2026 15:01:09 +0000
Files and hashes: 1: 0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl (hash: SVSs3n96qeT+5qID+ZzRvdAfsn/sgPssuJg6p/EHZeo=)
2: qB-yYmmoZAETKywXU4O90SMz9p4.roa (hash: zSfrh0GvpLorIoRjiLIdctGLnu0vrYxfcdrku/RI+Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:ca:d4:17:14:de:0b:e0:5b:72:2b:b5:2f:85:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2702a3b27ce9bd04ddca28c21d9d0f5ff32a909
Validity
Not Before: Apr 17 15:01:09 2026 GMT
Not After : Apr 18 15:01:09 2026 GMT
Subject: CN=fa823a16c28b77be014c00bdd404f6f38bcd38ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:95:03:b8:95:5c:c6:5e:33:65:43:e6:a3:
94:64:29:eb:0a:54:2f:51:8f:85:39:1f:71:f9:55:
09:e8:8a:09:b3:08:ee:40:75:25:2d:65:ce:43:95:
a8:08:87:5a:d7:82:0b:5a:02:cf:dd:f2:dc:d9:46:
a9:24:95:71:de:e4:d7:96:10:a0:03:d8:04:5a:2c:
ae:73:6e:97:41:64:cf:f4:b2:99:f8:34:aa:c3:db:
30:5a:b2:e1:c3:3c:16:0d:e8:ba:b8:24:7c:43:26:
33:6d:91:d3:ec:4c:b7:02:67:fa:45:c8:7f:4b:8a:
19:bd:d1:f1:ce:09:da:37:e4:3a:7d:ff:40:2b:d6:
5e:01:95:fc:4d:8e:98:da:da:f3:fb:b3:6f:44:e3:
3b:fd:69:19:bd:62:d7:d9:91:e4:82:a2:bc:c4:02:
00:8e:bd:48:32:d6:75:80:c5:5a:00:2c:94:7f:c8:
4e:86:16:f0:bc:74:13:90:a1:e5:e4:85:34:8e:d7:
b0:2f:b3:a4:6b:c7:67:9a:b2:17:43:69:33:90:34:
cc:39:64:b9:f0:d0:58:b8:81:d5:27:cf:75:1c:70:
ad:9b:56:1d:01:14:62:9a:09:9a:05:f6:e4:42:0c:
90:c0:5a:15:ec:85:6e:a9:9b:2f:38:63:07:d5:78:
7e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:82:3A:16:C2:8B:77:BE:01:4C:00:BD:D4:04:F6:F3:8B:CD:38:EC
X509v3 Authority Key Identifier:
keyid:D2:70:2A:3B:27:CE:9B:D0:4D:DC:A2:8C:21:D9:D0:F5:FF:32:A9:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/49f528-e72f-4da7-902e-6975cadb2262/1/0nAqOyfOm9BN3KKMIdnQ9f8yqQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:b0:87:6e:60:18:ba:d6:6c:52:9f:33:ba:a7:5c:98:6f:71:
d0:3e:90:07:48:4d:a9:4a:e4:1d:4b:5b:ad:19:09:3a:79:ce:
b0:18:54:10:71:92:8f:7d:5f:dc:16:bc:f6:cb:17:9c:f2:59:
10:36:1f:5b:05:f3:1b:7f:f9:02:b1:0f:ce:d4:ca:38:cd:14:
46:f3:f2:f5:29:3f:08:bd:b4:17:a2:ac:e0:7b:2f:75:1c:15:
4b:f9:2f:51:3d:17:73:7e:c5:86:ab:94:b2:84:c4:95:70:82:
96:95:cc:96:db:a4:71:a9:08:e9:09:60:da:34:1f:0f:0c:9a:
cf:65:e8:d2:c5:05:ca:dc:20:9b:f1:cc:80:41:8f:9f:a2:39:
47:56:d9:fb:57:d1:9c:02:11:d9:0e:32:69:61:a9:23:b7:93:
20:92:e4:99:61:55:d2:d6:54:c5:f6:8b:bd:0d:94:b8:7f:0b:
b4:57:7f:6f:2a:6c:9e:2f:b1:34:77:8e:2f:6f:dc:2d:90:f2:
20:c5:7d:e7:13:ee:a5:d3:da:30:d7:91:43:a2:ee:86:14:4d:
93:41:2b:55:04:54:4d:1b:df:f4:52:bc:1b:64:41:6c:0a:bf:
61:94:b9:80:bb:62:ec:ba:71:54:18:69:33:58:f5:96:1a:56:
83:64:14:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:36:25 2026 by rpki-client