Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: YOYkH6q8xwis6P1FSclc2BPS+3boR7Pr4j3vVsaxop8=
Subject key identifier: 72:DD:E9:49:C8:10:77:83:87:21:00:34:FE:AB:A2:44:B0:78:05:39
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019D985064B4C551873491122199AB78F6B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 18C3
Signing time: Thu 16 Apr 2026 22:01:38 +0000
Manifest this update: Thu 16 Apr 2026 22:01:38 +0000
Manifest next update: Fri 17 Apr 2026 22:01:38 +0000
Files and hashes: 1: 1j-cndh73up45TjcJHDMi8wQ8Xc.roa (hash: KpN3w6f7/yCpGmCh1vdlXsD6GVlxoKm9AQfV9ZcUMXk=)
2: 6E64GXrgmXNa9YSBiY3OujAPTwo.roa (hash: yS+gCnb/d3MQ3vFkPLZAQVV6eBJuu9tDUWcxSfLgTIU=)
3: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: KimLqJarW+LbabIg+nSchwRb9sr2uGAYIFxz6F/lhlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:64:b4:c5:51:87:34:91:12:21:99:ab:78:f6:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Apr 16 22:01:38 2026 GMT
Not After : Apr 17 22:01:38 2026 GMT
Subject: CN=72dde949c810778387210034feaba244b0780539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:f9:65:a2:8e:5a:26:92:3c:82:8c:6a:2a:
01:08:cc:c7:79:f1:1b:0a:a3:d8:3b:47:af:7a:4b:
47:61:b2:66:94:69:7b:88:06:13:70:4b:df:0c:2e:
58:e3:c6:d1:e0:63:45:9d:94:e2:5f:0d:b2:b8:8e:
3d:2d:7d:8d:13:ad:51:a9:92:df:7b:24:5c:cc:bb:
69:82:24:68:aa:c3:2e:42:38:65:3b:f5:80:b3:4e:
92:7b:5a:7a:4b:c2:f3:68:9c:49:c9:41:5a:ec:1d:
5a:5b:11:1c:8f:b4:8a:c8:55:45:ca:7b:de:5a:3b:
f3:29:79:2a:47:1b:88:1d:1d:64:e1:ad:11:ac:ca:
28:53:93:7b:23:e6:f6:32:08:9f:8a:4f:0a:f6:1a:
a0:2d:7e:25:da:78:7f:c8:d6:53:72:c5:ca:4f:f5:
de:8b:be:7e:f6:8e:11:53:1b:19:fd:c6:e7:6d:68:
81:77:73:58:4a:1d:ed:6d:76:8c:e1:e3:ab:4b:48:
aa:42:b2:e9:e9:35:eb:7b:7d:43:f4:6c:06:93:19:
32:96:9e:fa:f6:6b:a3:97:f9:af:0a:66:89:b1:43:
6a:a4:12:ec:a9:13:bb:1d:64:83:da:b5:0c:ca:6c:
cb:69:00:d3:52:03:ad:c6:8b:e2:c3:34:0d:38:05:
2b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DD:E9:49:C8:10:77:83:87:21:00:34:FE:AB:A2:44:B0:78:05:39
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:28:d9:38:7d:95:cf:0b:aa:a9:a8:a9:e0:6a:47:40:df:eb:
8c:ff:52:ee:34:c9:52:9e:e7:08:fe:99:8d:32:e6:6b:67:48:
2d:60:0f:e2:4e:6d:5f:a5:b3:10:44:26:9e:14:95:4c:98:ae:
9b:72:48:5b:88:34:51:3e:02:ec:5d:b6:3c:72:18:34:36:fb:
7f:3d:2a:2c:4d:99:ab:3e:8d:b7:31:73:19:f7:0f:ab:25:cd:
16:c2:22:68:d7:18:01:06:14:15:1e:16:9e:85:67:29:dd:03:
a4:37:8e:c2:2a:58:4b:f8:ec:73:ee:73:ae:b3:5b:7f:2f:df:
5d:ba:c4:e0:f1:25:1d:44:ea:33:bd:1e:e4:ed:8e:9d:c7:da:
ed:b9:f1:5a:ff:a7:27:d7:b3:32:5c:d2:4d:f3:59:76:cd:b3:
ab:7a:6d:8e:92:25:e9:01:dd:ef:ca:12:3b:30:31:1e:69:f9:
ef:4d:2b:45:b5:2f:41:3c:73:de:63:1b:a5:8a:60:4c:78:b7:
d5:30:52:af:be:cb:57:85:00:89:4a:43:69:ee:cf:0c:8a:c9:
61:f4:34:2a:cf:98:11:8c:9d:99:7b:2b:18:0e:be:c4:28:75:
05:ea:b6:aa:07:6b:83:10:2e:c7:ef:e7:48:2b:0b:e2:c9:ea:
06:5e:e0:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:28:11 2026 by rpki-client