Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: Dp3X4x96BZnsifF8K3xH6ve9lrYnStJN4KWDTY85UN0=
Subject key identifier: 16:C4:51:96:B7:65:8E:0A:0A:87:56:EA:FD:26:3F:5F:C7:E1:3A:7B
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 019D9BBE5448ACC9C77080EC6AD29C248C7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 14:00:34 +0000
Manifest this update: Fri 17 Apr 2026 14:00:34 +0000
Manifest next update: Sat 18 Apr 2026 14:00:34 +0000
Files and hashes: 1: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: 9uRZY8b3aDW9m1nFekMYP88lCLtXUq38G1A75uYtHDk=)
2: ToOm_DRG8L881LK0bTvQrJEi9zE.roa (hash: DCNqoXRqfdwODxjtc8J2/AVxGOKRF24UDLD2fHtc4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:54:48:ac:c9:c7:70:80:ec:6a:d2:9c:24:8c:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Apr 17 14:00:34 2026 GMT
Not After : Apr 18 14:00:34 2026 GMT
Subject: CN=16c45196b7658e0a0a8756eafd263f5fc7e13a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:b0:c4:bd:3c:7f:11:3a:cb:82:80:75:b4:
d7:18:72:b1:77:73:06:f9:3a:56:30:b1:f0:a5:50:
1c:0f:7c:8a:ab:a8:df:53:13:97:73:24:14:b6:0f:
9c:29:aa:5a:fa:d0:82:c8:39:71:c2:28:9d:3c:f1:
5f:5b:34:67:8e:8c:a5:02:85:3a:6e:2c:8c:6a:97:
40:b5:83:92:78:60:49:4e:0e:ad:40:ef:3f:d6:90:
ed:f7:ec:7f:16:1a:09:be:88:1a:a3:c1:14:4b:8c:
17:a3:0e:cd:15:de:98:ad:43:79:5c:20:bf:a9:ae:
a6:04:53:0c:4b:6b:51:bb:79:7a:3f:c8:ac:9b:9a:
df:10:75:39:6f:d9:02:9d:7f:a0:c2:20:7a:94:d8:
22:74:fc:68:e3:f0:ab:b5:d2:41:4d:b3:ae:a5:60:
34:7b:8e:68:ce:65:56:2e:4c:6d:e8:11:9a:e2:bb:
8e:40:5a:12:1d:04:8b:c2:a1:8d:29:c3:a1:35:52:
44:17:db:c6:41:23:96:bb:a6:23:70:2b:66:cf:ce:
fb:a0:17:b0:c1:51:8f:4a:ff:93:c2:44:e4:e7:d1:
b5:b6:10:1c:d3:b2:bc:7a:e8:47:c4:8a:71:b0:a6:
7c:3d:16:0b:ef:ba:61:69:7b:d9:b7:d1:8f:84:f0:
8a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:C4:51:96:B7:65:8E:0A:0A:87:56:EA:FD:26:3F:5F:C7:E1:3A:7B
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:6d:df:96:d9:34:2e:ac:ef:a7:35:d6:f0:45:49:c7:06:15:
64:8f:c1:c0:77:52:90:65:eb:e2:4a:54:c1:7d:05:6a:57:33:
0a:06:a5:2b:4e:54:53:62:9c:b3:c2:ae:5d:a4:1c:10:7e:aa:
67:7e:a8:b0:6f:f9:9d:f2:c1:a7:70:b7:e3:0b:22:58:d2:bf:
f3:f6:99:71:0e:c8:05:31:8e:12:60:f0:86:26:0a:4b:4e:2a:
27:e7:3a:c4:95:8a:81:0b:d7:12:a9:6e:a1:bf:e4:a1:75:76:
b3:2f:c3:02:fb:7e:53:e7:8b:07:73:91:d8:0e:63:af:38:de:
f2:7a:2e:a9:ba:f1:9c:01:8e:5d:12:a7:c1:3a:11:94:0a:a7:
bf:40:31:27:92:51:27:d4:43:48:b7:99:50:b2:ee:3b:74:a7:
57:13:fa:49:6e:65:6e:26:4d:b8:48:79:8a:d9:da:c1:a7:94:
6b:f8:ad:e5:ba:20:d9:b3:1a:54:34:c2:4c:e8:d4:13:d4:1c:
a1:00:83:75:b1:5b:e6:f0:3c:76:75:1f:51:e2:3b:4c:d7:33:
5d:d1:f0:01:f8:19:71:1d:3c:4c:f8:33:bb:28:20:fd:29:f3:
5e:07:dc:23:37:d1:7d:dc:5b:60:ac:d5:af:e2:30:bb:d7:b5:
cd:3c:30:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:54:38 2026 by rpki-client