Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
File: 0nXXqLrAR39VCd_xG5GVymDfh9o.mft (raw, json)
Hash identifier: KXIiy1WYHTsiPCfObBK9jezNaIuZIhtjIKszdZ1vCMY=
Subject key identifier: 08:A2:6B:B9:C4:64:20:7C:0D:41:8A:64:83:E6:F2:86:F6:EC:F2:E8
Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Certificate serial: 019D9A3EC82B25EE2DBE59A17B76D0CC8B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
Manifest number: 18D1
Signing time: Fri 17 Apr 2026 07:01:38 +0000
Manifest this update: Fri 17 Apr 2026 07:01:38 +0000
Manifest next update: Sat 18 Apr 2026 07:01:38 +0000
Files and hashes: 1: 0nXXqLrAR39VCd_xG5GVymDfh9o.crl (hash: gHUPMiybbWdLITdvCylzZ6gHc2+ACp6dnujhrqXganE=)
2: WuVc3nuSKHmp3Zm0YnwHWiUHPTA.roa (hash: kgJdmFJQtmaA3Y3jCaieWqKoWOzHXlfXNx+CHVD0plg=)
3: j3sBSUJkPAu6LegD9jnwaa6rZ7c.roa (hash: IrnIM3UEUP7ja4hnpFEsm2+NgmLApTFgvChXXopJxpc=)
4: zHxy4rNUsfcfrCMMueahjYvqzHI.roa (hash: 6WlFirCENIDksJ6hQBdSjo423r0RyjscXizsqmUp0a8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:c8:2b:25:ee:2d:be:59:a1:7b:76:d0:cc:8b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Validity
Not Before: Apr 17 07:01:38 2026 GMT
Not After : Apr 18 07:01:38 2026 GMT
Subject: CN=08a26bb9c464207c0d418a6483e6f286f6ecf2e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f0:81:f7:4c:5f:97:a8:a7:c2:29:63:f8:b4:
0e:4b:61:48:fc:7c:b9:99:62:6b:9a:b5:68:66:44:
5f:a5:bf:f5:52:11:84:1e:12:11:0a:29:33:ad:3b:
12:c3:88:ce:7f:00:bc:79:90:2c:a2:7c:aa:71:7e:
5f:28:61:5e:21:bb:7b:20:93:88:fb:08:64:6f:af:
d4:69:63:09:35:da:bc:ac:98:99:ca:25:7c:90:0b:
3f:6e:b8:23:bc:ff:6a:b6:d5:5e:7b:e4:53:99:60:
25:40:d8:da:44:cf:5c:22:ae:9d:d7:aa:4b:25:8c:
a5:39:a1:64:a2:41:3f:6b:93:77:fa:4a:85:ac:93:
6d:24:a3:2b:44:d2:60:38:2a:08:bd:01:22:e2:28:
49:a1:3c:e1:3a:bd:d8:d8:f4:19:8b:18:ba:a8:fc:
92:fe:30:2e:93:c5:37:3a:95:2d:1c:05:ae:e2:a4:
21:6e:07:c9:0e:3e:29:9f:9a:cc:b1:2f:65:9c:45:
1e:41:8b:80:9d:c0:00:33:b1:ef:b3:46:69:a6:f8:
d4:63:55:26:44:4e:0a:04:86:0f:10:fc:bf:c1:9b:
da:b8:57:61:de:bc:c1:d3:cb:33:67:6a:9e:8b:16:
2c:95:a4:b2:82:b5:22:8a:9b:5d:ba:98:16:52:47:
1b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A2:6B:B9:C4:64:20:7C:0D:41:8A:64:83:E6:F2:86:F6:EC:F2:E8
X509v3 Authority Key Identifier:
keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:3e:84:7c:cc:09:0c:fd:9f:77:b7:df:63:84:2e:a8:7d:bc:
ed:12:40:15:90:63:31:f9:8c:d6:12:21:50:8d:32:15:c8:17:
ac:1a:00:9d:fc:60:89:a1:ba:af:be:bc:f4:08:bb:72:a2:d1:
5b:32:ba:72:9a:9b:ac:91:97:e1:78:da:fe:fd:e0:0b:ad:fc:
dc:ad:cd:91:a8:3c:26:2b:a1:52:1b:ce:1f:4a:39:4c:ef:c2:
5c:34:94:e2:6d:a8:fe:87:4b:7e:8d:95:7e:f3:9d:f4:b3:e9:
09:51:92:fd:10:99:a8:d2:e5:85:ab:4c:9e:76:4d:cc:9a:29:
76:a3:62:5a:4e:a8:d8:af:fb:9f:02:73:6f:0d:04:96:3d:8d:
fb:ca:cb:2a:dd:3a:5d:f6:ac:64:93:e5:c4:59:80:f9:4e:fb:
0e:c4:11:26:4f:47:61:62:03:25:5d:be:ff:36:79:82:76:bd:
7f:d1:59:c7:4d:7f:27:0a:e9:2d:46:f9:69:b5:8a:71:30:ec:
f6:1a:cd:05:b8:f9:53:a0:b7:96:7c:3f:31:1c:c2:af:56:5c:
33:e0:78:8f:e3:d5:3d:e8:56:d8:58:45:54:89:80:eb:2a:1e:
ee:62:36:fa:5e:9d:9c:9d:56:d1:8c:b2:17:df:cf:3b:91:08:
e6:0b:23:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:24:58 2026 by rpki-client