Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json)
Hash identifier: N1m1pQZVvabzicn+bmC9uZ+9BmyrAmws/H8ki6S0vcg=
Subject key identifier: 35:DD:96:D6:03:C5:89:67:60:C1:3D:F4:F1:B5:3D:62:6E:05:3E:7D
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 019D97AB2F49E166D853F8154E63C6B933A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
Manifest number: 18C1
Signing time: Thu 16 Apr 2026 19:01:11 +0000
Manifest this update: Thu 16 Apr 2026 19:01:11 +0000
Manifest next update: Fri 17 Apr 2026 19:01:11 +0000
Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: EbM6QiOejyN9audSjCNmxeeJwref5aTghoi3d3+kTZY=)
2: kYVHDkjWpBomTAXvZtm-ybsEw4g.roa (hash: 6LPY5S+V1vJP40u2fVqFKReWSp6f+FzxIr8cYQv0/dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:ab:2f:49:e1:66:d8:53:f8:15:4e:63:c6:b9:33:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Apr 16 19:01:11 2026 GMT
Not After : Apr 17 19:01:11 2026 GMT
Subject: CN=35dd96d603c5896760c13df4f1b53d626e053e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ca:d9:8f:c4:12:cd:aa:fe:5d:e8:b0:37:3e:
35:45:78:f5:7f:9f:1f:3a:c7:58:a7:7d:eb:cb:a2:
bd:2e:1c:a6:dd:71:19:66:de:e5:0c:6a:6b:a8:e7:
3d:4c:4c:8c:69:0a:45:d5:6c:ba:09:a0:63:84:85:
68:de:95:6c:8d:bc:ed:dc:2b:c4:62:cd:70:1f:c2:
0c:a0:0a:01:3c:18:99:58:02:3d:e1:fd:54:b3:59:
c0:d0:32:e7:86:93:60:2b:c4:2c:58:0b:ac:e8:4f:
12:ff:e3:51:f1:8d:61:d7:6b:43:ac:9d:d8:8f:4e:
24:50:1d:2f:75:d4:e8:14:58:93:55:4c:b1:2b:98:
2f:bb:7a:d4:bf:65:c3:c6:27:57:8e:86:60:b5:15:
41:b9:3a:70:f6:9e:c3:f6:1a:3f:e2:26:94:79:41:
7c:41:5c:d4:f6:58:fe:3d:2b:9c:69:96:39:c5:f2:
71:c5:e2:ef:e4:aa:4c:b5:9a:42:79:93:11:0d:2a:
8e:7d:9e:84:c0:0a:32:26:78:d2:af:df:74:83:5b:
79:37:84:cb:8c:ea:93:f6:dd:cc:25:7c:01:d1:b1:
b8:17:e9:c5:95:50:ac:98:18:d8:f9:98:b1:e4:a6:
6c:45:2c:9d:a2:9f:44:b4:50:d7:48:7c:fe:23:51:
40:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DD:96:D6:03:C5:89:67:60:C1:3D:F4:F1:B5:3D:62:6E:05:3E:7D
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:be:a5:19:6e:f5:7c:bc:f0:f8:5c:3f:ca:28:f3:5a:7e:fa:
e4:e6:f9:48:b5:61:1a:39:d7:0f:11:4b:bb:f3:44:e5:c4:34:
18:1f:f0:6d:2a:fc:91:a2:d3:52:a1:16:40:5b:c8:64:2e:ac:
14:3e:f6:79:45:3b:d3:7b:7d:ec:29:b3:93:3f:f5:0e:d1:41:
d3:3c:35:7d:d2:35:1a:b2:e1:4c:ee:4b:43:93:85:3c:86:ad:
d0:81:39:b8:aa:2a:f6:95:46:2a:63:f6:93:35:b2:f3:ba:2c:
23:b0:6c:db:44:dd:93:ac:48:2f:6b:79:07:e0:25:53:09:23:
0c:55:41:cf:fb:d9:f7:51:e3:e2:c3:61:66:95:99:11:d5:d9:
ba:9f:35:5d:af:ae:15:de:20:93:c7:94:00:97:66:94:5c:95:
46:58:cf:ef:4b:e7:b8:21:59:b9:60:d6:05:c5:8f:f6:f6:a5:
57:90:bd:88:66:c6:d4:48:b6:a8:c4:1f:8f:02:8f:73:8f:39:
0f:bc:da:6f:85:1f:c9:73:a7:f5:2b:ec:61:64:48:92:29:31:
79:bc:cd:af:67:7c:f9:5a:b5:09:ab:45:db:a4:c2:4f:cc:3d:
60:83:b5:4d:fd:7d:a1:f0:2e:c2:52:50:5d:e3:36:c7:1d:59:
9d:69:98:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:58:14 2026 by rpki-client