Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
File: IAxw024BOwfk5tjsPqTuQTtKqpg.mft (raw, json)
Hash identifier: 9r2ucJJDozNK+PbrNcYRCGWXeEQNu3+8sa4iJvM8D6Q=
Subject key identifier: 1E:AC:66:AE:86:07:4E:A5:80:D8:FE:EF:68:E8:3E:10:C8:B8:D8:E5
Authority key identifier: 20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
Certificate issuer: /CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Certificate serial: 019D9A7512C60D5855E1F9A04A96261F7723
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 08:00:56 +0000
Manifest this update: Fri 17 Apr 2026 08:00:56 +0000
Manifest next update: Sat 18 Apr 2026 08:00:56 +0000
Files and hashes: 1: 2TejQ9qdrUejplvg2pRdV5ySwCU.roa (hash: z2B5UlkMWFYxdzwShhvSwDpIukaDaNgAut2hvjv+b1A=)
2: IAxw024BOwfk5tjsPqTuQTtKqpg.crl (hash: JmpgyyIUMOpPjZxeIXxVmnhlJKYKE9Es7L/WO48a8/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:12:c6:0d:58:55:e1:f9:a0:4a:96:26:1f:77:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Validity
Not Before: Apr 17 08:00:56 2026 GMT
Not After : Apr 18 08:00:56 2026 GMT
Subject: CN=1eac66ae86074ea580d8feef68e83e10c8b8d8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:96:a6:8b:3a:37:3f:33:4c:31:19:0c:38:
46:1a:8c:a3:c3:f4:95:c8:d9:5f:b3:96:e0:c6:25:
ca:53:82:4d:7e:e6:48:dc:ad:e8:9b:6a:5d:2c:9d:
b9:dc:3f:f3:50:a9:85:f7:83:bc:c5:4c:13:0e:4e:
37:63:08:13:b5:64:35:4b:91:34:8e:0a:74:47:76:
ef:00:3c:a0:b4:b1:1b:9d:d7:c4:35:b3:91:22:3f:
ef:f3:4c:81:6e:ad:2c:53:be:08:6b:0a:79:e8:26:
1d:ee:ee:0b:12:50:c3:2f:4f:0e:f2:43:b6:48:43:
23:5d:98:69:de:4c:45:ed:68:6a:ff:37:fe:1a:c1:
3d:9e:eb:71:cc:ab:c0:74:3e:d4:8d:6e:dc:70:0e:
7b:c9:61:f7:7f:42:70:99:ee:40:1c:81:95:de:1f:
cf:db:51:07:e3:f3:80:a1:be:af:12:08:cb:38:5b:
4e:89:5b:e4:df:82:29:04:47:39:e9:ad:e6:22:a0:
14:0f:d2:e6:60:65:14:2b:f4:c0:84:f4:0e:c3:db:
3a:a5:15:e1:fc:ec:4a:ae:ea:0b:5d:76:19:5d:d2:
1f:1f:73:af:90:b9:c1:f9:64:8d:f7:1b:14:9e:be:
0c:f5:50:50:ae:03:bf:3c:a2:d9:58:ce:e6:e6:d0:
b0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AC:66:AE:86:07:4E:A5:80:D8:FE:EF:68:E8:3E:10:C8:B8:D8:E5
X509v3 Authority Key Identifier:
keyid:20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:e1:29:4e:9f:b7:cf:20:01:cb:4a:e4:b2:0d:49:42:88:c6:
81:85:99:15:36:6e:46:33:50:21:60:71:f6:97:e0:9f:4c:10:
7f:40:30:53:03:92:58:94:f6:d3:98:10:e6:18:b6:9f:c1:76:
8d:d4:b2:7b:ee:cb:30:c1:ca:5a:8f:5e:ca:18:36:73:fb:f9:
a1:22:ef:68:3c:61:2d:8f:57:12:53:6d:e8:1d:fd:98:96:31:
7f:16:2e:bb:77:75:d4:20:11:ea:14:ae:75:32:82:e2:ab:55:
a8:b8:ce:dd:a3:fc:b3:ab:2f:f0:c8:57:ea:a4:db:b2:2d:c2:
d7:e3:d0:52:cd:e0:52:36:10:2d:ae:54:a5:f1:8f:29:77:95:
a6:3f:f5:0f:79:6d:42:dd:6f:46:a2:b5:c8:d5:c9:a8:67:96:
1e:a7:ba:b5:47:cf:da:56:db:86:29:4e:1c:ce:6e:de:97:3e:
e5:6d:f6:56:0e:2a:13:72:07:00:29:27:63:1a:5e:2a:15:1d:
af:e4:82:92:57:90:61:6a:66:64:50:66:35:04:a2:08:90:e5:
3e:32:e7:a1:39:ea:a7:8a:44:49:6a:e5:55:e4:4b:05:0f:26:
0c:c7:b7:b7:5b:ee:3b:8a:9f:c4:73:6b:c4:70:b5:7b:9f:5f:
b0:3d:70:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:35:39 2026 by rpki-client