Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
File: Rii90MjhtQTSlPijkEyNV65jg_Q.mft (raw, json)
Hash identifier: X2zPm4OsM+Bu5lmOXlBVJ6gruaDlRNyavpLhyG74jKs=
Subject key identifier: D7:18:67:D8:E5:11:3D:D6:61:E2:68:F3:05:37:10:89:CB:F0:FD:0A
Authority key identifier: 46:28:BD:D0:C8:E1:B5:04:D2:94:F8:A3:90:4C:8D:57:AE:63:83:F4
Certificate issuer: /CN=4628bdd0c8e1b504d294f8a3904c8d57ae6383f4
Certificate serial: 019D98F446BACACF94B835206709183C83EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 01:00:38 +0000
Manifest this update: Fri 17 Apr 2026 01:00:38 +0000
Manifest next update: Sat 18 Apr 2026 01:00:38 +0000
Files and hashes: 1: Rii90MjhtQTSlPijkEyNV65jg_Q.crl (hash: lTVa4CXE3o/0e83GnNBe33zFpwMyaSbOZ2AWGe+d3Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:46:ba:ca:cf:94:b8:35:20:67:09:18:3c:83:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4628bdd0c8e1b504d294f8a3904c8d57ae6383f4
Validity
Not Before: Apr 17 01:00:38 2026 GMT
Not After : Apr 18 01:00:38 2026 GMT
Subject: CN=d71867d8e5113dd661e268f305371089cbf0fd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4b:9a:26:5d:c3:cb:05:a7:12:cc:c1:02:c8:
c9:db:01:4f:6e:af:77:ec:f9:e0:54:91:af:e5:be:
83:83:ba:5b:dd:f2:57:58:64:f1:40:35:0c:d2:20:
58:28:01:00:57:7f:9a:25:c9:6d:f9:1b:3c:62:94:
f3:96:d3:16:66:f0:f3:d9:6b:aa:5e:8f:a8:98:36:
00:36:b7:3a:d2:db:67:81:31:c3:6d:02:cf:9f:47:
e9:6e:80:c1:35:92:ff:06:55:6d:9c:93:d6:be:96:
6d:02:7b:68:18:81:c6:67:ea:30:71:1b:68:f7:ba:
1e:f5:4a:2e:1e:c6:1b:b2:15:b2:89:1c:fd:21:bd:
1d:d6:f2:5f:5c:7f:ff:18:0b:47:6d:07:68:d6:ba:
35:ec:a2:40:d3:c6:d1:2f:07:73:1b:fc:62:5e:00:
18:b9:08:ec:01:2c:1b:cf:c3:d0:8c:6c:91:31:fc:
45:cd:40:43:7a:e0:2c:c4:09:23:5e:ac:76:2e:52:
25:5d:f6:62:1c:1e:9e:b9:a0:f0:63:80:c3:c9:04:
0d:f7:44:d4:b0:bc:ea:2c:4f:b7:0b:76:05:d8:51:
e4:f7:23:9d:d1:fe:fa:77:e4:28:f8:5c:53:71:94:
d6:9b:4e:ea:b7:59:c4:42:33:33:5f:4a:88:99:ce:
51:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:18:67:D8:E5:11:3D:D6:61:E2:68:F3:05:37:10:89:CB:F0:FD:0A
X509v3 Authority Key Identifier:
keyid:46:28:BD:D0:C8:E1:B5:04:D2:94:F8:A3:90:4C:8D:57:AE:63:83:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rii90MjhtQTSlPijkEyNV65jg_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2a7573-9161-45ba-b93b-5f8b63b11f0b/1/Rii90MjhtQTSlPijkEyNV65jg_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:02:3b:f6:3f:e2:9c:eb:78:a0:c1:f3:3c:29:48:b6:78:99:
12:68:13:cf:c6:c2:d7:c0:70:dc:65:1a:90:8c:6b:df:83:b3:
6c:a5:5d:73:0d:54:5d:15:f2:04:19:92:96:09:f4:94:6c:fd:
35:13:53:45:5c:89:df:0a:c1:66:bb:c1:f2:f5:57:5f:4a:b5:
6c:43:7d:d4:f3:9b:a0:ed:7b:ea:72:97:cc:cc:d6:6e:34:27:
3e:5a:c6:99:3f:9d:b4:e2:9a:63:d7:a3:1f:7d:f9:35:fc:74:
7b:39:8e:80:f2:db:37:af:55:1a:ff:d7:04:30:cb:b7:ae:64:
c6:b3:da:eb:8e:1f:cd:61:cc:e9:8f:0e:10:9a:8a:9d:e9:0e:
7a:c4:21:26:45:59:a8:58:1e:00:ab:7f:cb:c4:3b:6b:22:39:
d2:ac:b9:59:0c:ea:32:eb:d5:74:d5:b4:d3:c1:10:76:bc:ca:
85:42:bd:76:cc:9f:b4:30:28:84:6f:d7:37:7b:ee:04:9a:6f:
a3:df:ab:1b:c6:49:40:5c:f0:45:e0:56:ba:c4:4f:aa:2e:9c:
c9:e4:e2:7f:46:7a:49:79:b0:f7:8e:1b:29:99:5c:f7:76:e7:
58:ad:3a:0c:13:67:67:7d:78:c3:49:b5:75:51:84:49:57:d2:
e3:e2:7c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:08:30 2026 by rpki-client