Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
File: c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft (raw, json)
Hash identifier: hIztnREPVLyyM15YcaYdBjvXJICQuJx2Mdm0gEwednc=
Subject key identifier: DC:F4:3B:9D:3F:9C:33:51:C3:D7:D8:32:EF:43:52:EE:CF:91:AF:FC
Authority key identifier: 73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18
Certificate issuer: /CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018
Certificate serial: 019D9CD18D3B72700F297C9A8BF84772FA65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
Manifest number: 0157
Signing time: Fri 17 Apr 2026 19:01:11 +0000
Manifest this update: Fri 17 Apr 2026 19:01:11 +0000
Manifest next update: Sat 18 Apr 2026 19:01:11 +0000
Files and hashes: 1: HL-ROcW7ouFfM-ooSu_o2VREjBY.roa (hash: ujK5KehUzQkF735/HRjccuZM+b+O1T9dLVbDOeZE17s=)
2: c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl (hash: RFGNsynMScG7fWeWif/ExLXKqtb/pq4sEw8Z85sV6nE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:8d:3b:72:70:0f:29:7c:9a:8b:f8:47:72:fa:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018
Validity
Not Before: Apr 17 19:01:11 2026 GMT
Not After : Apr 18 19:01:11 2026 GMT
Subject: CN=dcf43b9d3f9c3351c3d7d832ef4352eecf91affc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5d:c1:af:98:e6:5f:91:bf:60:7b:50:38:fc:
7d:6b:7e:25:39:47:8b:0c:fc:0d:87:93:fa:61:1d:
32:9a:2e:33:3c:ac:6f:7d:27:ae:30:39:a3:3d:c5:
a3:39:16:ea:32:7b:28:33:3d:40:d8:2c:c4:ab:88:
93:b0:ee:4a:24:05:a6:29:a8:85:2c:7a:b4:52:5e:
73:ce:73:10:96:46:7f:7e:07:ac:d5:1b:59:b6:bc:
bc:1d:fc:3a:bc:8f:e9:26:1d:80:d5:f5:54:2e:e0:
9c:0b:8f:cb:3d:42:6c:51:9e:dd:6c:6a:f4:f6:68:
89:c6:a7:11:53:2b:16:62:83:e7:fb:7a:51:88:36:
6e:30:71:20:0e:8d:1c:0e:a3:83:bd:38:16:13:b2:
3f:a6:97:fc:5e:20:63:59:24:35:35:23:fd:c8:ab:
50:17:41:47:c0:78:09:3e:9e:1a:ce:58:bb:61:d2:
63:2f:ea:50:fe:7b:31:26:b6:18:27:c0:51:91:cc:
bd:3b:d0:b6:91:fa:62:9a:d5:dd:30:72:e1:b1:32:
17:b5:46:6c:0c:fb:21:2a:33:2a:c8:2e:79:e2:fb:
02:c9:34:21:b5:ba:bd:ce:42:96:d5:9b:dc:d9:fb:
3e:ff:d5:87:38:78:0c:42:be:df:8c:59:35:1e:a8:
78:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F4:3B:9D:3F:9C:33:51:C3:D7:D8:32:EF:43:52:EE:CF:91:AF:FC
X509v3 Authority Key Identifier:
keyid:73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:7d:1d:ff:e2:a2:d8:fb:d3:a3:ac:c0:00:5d:2f:ec:4f:24:
f8:5a:02:3b:65:b9:a4:32:84:ae:7f:dd:0f:0c:21:76:ad:d2:
89:1f:74:16:ce:be:99:41:a4:e7:1d:72:58:4d:42:df:4a:e4:
d2:01:59:26:58:22:35:e9:cf:67:a3:eb:ab:0a:56:6e:e6:1f:
24:f8:a9:9c:81:68:c8:b6:d3:62:30:3e:8a:36:32:de:c4:17:
9a:2c:56:94:1d:e5:87:dc:f8:18:2c:f2:48:c7:ab:f5:e1:59:
e1:c6:fc:bc:65:df:78:9e:c1:fc:4c:71:2c:05:0c:fa:a9:a7:
1a:aa:60:44:5b:a9:67:a7:31:20:01:9f:20:bb:f4:9b:eb:a9:
ec:7c:8b:0b:39:1b:b6:af:ea:13:e2:21:5b:29:f5:2e:9a:77:
62:9e:4c:d0:64:9f:53:1f:cc:74:07:cb:14:97:b6:0c:df:f2:
91:68:4b:72:60:0f:cb:56:3d:d4:90:6c:f8:be:59:36:b4:d2:
a0:81:65:e9:04:d0:fc:fa:14:8a:82:82:45:f3:3f:af:d5:84:
73:50:de:6c:6f:42:4a:88:d3:9a:0d:83:0b:df:bb:b6:7e:7e:
e5:b1:59:a5:1c:0a:86:df:6d:b3:c8:ea:7e:02:ff:e5:8d:11:
88:d4:44:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:35:28 2026 by rpki-client