Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
File: Mh6FAflfcDdNRXa5sM1VW68fNas.mft (raw, json)
Hash identifier: mDm6/el7wlrg3wSgGzP5SqwN/4bLbKC++vE23QgZ3/A=
Subject key identifier: 28:44:29:46:9D:1E:FA:35:18:73:C4:D7:2E:DF:49:D1:7F:03:E0:45
Authority key identifier: 32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
Certificate issuer: /CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Certificate serial: 019D99D03AFD629F7B335F17DFF62C634269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 05:00:53 +0000
Manifest this update: Fri 17 Apr 2026 05:00:53 +0000
Manifest next update: Sat 18 Apr 2026 05:00:53 +0000
Files and hashes: 1: Mh6FAflfcDdNRXa5sM1VW68fNas.crl (hash: +ew/szCzmGng0TFnJVda+6NR2TsBsFbvTRA1pteNbWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:3a:fd:62:9f:7b:33:5f:17:df:f6:2c:63:42:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Validity
Not Before: Apr 17 05:00:53 2026 GMT
Not After : Apr 18 05:00:53 2026 GMT
Subject: CN=284429469d1efa351873c4d72edf49d17f03e045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:a3:4b:f8:2e:22:27:2b:e1:0b:55:6f:b8:
f0:b0:a5:14:3a:43:1f:ea:0d:c7:4f:16:4b:6b:cd:
cf:4b:b3:07:69:1d:3c:b7:23:ee:2e:51:a4:4d:03:
46:70:19:05:b8:c0:2b:19:4a:2e:c6:71:b2:9d:70:
ae:64:62:13:ae:23:3b:f4:8f:fe:1c:79:7d:d7:17:
d0:81:14:0f:b0:9f:df:64:71:83:b2:5d:89:7c:bc:
25:71:54:04:84:71:3a:fe:26:a6:24:e1:ca:2c:f6:
ef:de:14:f8:f9:dc:7b:8a:8a:a0:52:2e:04:8d:19:
1f:05:fe:73:bc:45:4e:c4:09:91:19:da:7a:df:ef:
6c:a2:2a:93:85:06:ac:73:99:18:39:da:cf:d2:27:
b6:4c:d6:16:bc:61:bc:02:6e:82:52:0f:e2:31:9a:
3b:52:b1:0d:ab:5d:dc:ec:e0:22:63:cb:5b:72:8b:
f0:4b:fa:27:09:a0:7b:83:91:93:81:b1:7a:ba:cb:
8a:57:f6:c3:a3:18:8d:08:db:fc:09:b9:65:d9:3b:
55:62:3f:3a:d3:95:26:22:45:d9:8d:8e:25:d0:1f:
60:b0:eb:89:b8:ec:bc:96:c6:d7:8e:c1:0b:34:f5:
b2:68:6f:97:5d:c1:48:c7:b0:09:10:97:4b:94:8f:
dc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:44:29:46:9D:1E:FA:35:18:73:C4:D7:2E:DF:49:D1:7F:03:E0:45
X509v3 Authority Key Identifier:
keyid:32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:59:31:bc:9d:6a:9c:3c:b5:84:66:cc:ad:02:c1:51:7a:ca:
70:7d:94:ad:c0:fe:f0:0d:56:7f:82:ee:85:76:d3:03:9e:29:
d5:7e:01:ab:fe:0a:6c:8d:93:35:44:4b:29:3b:26:52:d3:72:
81:2d:38:0f:b6:c3:d8:a8:a6:69:52:62:6a:6d:59:a9:79:ca:
6f:3d:03:fe:1c:41:8a:ca:69:a2:6b:95:3b:4a:25:1c:0d:03:
47:1b:27:fd:9d:97:d7:de:02:ef:b8:e2:67:7f:8f:fd:05:5a:
48:51:37:2d:c9:57:44:c9:1f:1e:f7:89:78:b5:90:30:f2:11:
8c:28:f0:b2:1a:df:56:97:73:5b:1c:ac:92:9f:c1:8d:3a:03:
c2:41:cb:8a:d3:d4:52:2a:d6:1a:70:d6:af:19:3b:40:84:0c:
34:6d:98:df:ba:71:e7:b7:7c:fc:34:e0:e2:1a:21:b1:0f:ce:
29:a9:fc:40:c6:df:b8:8c:39:af:ba:59:26:9b:5a:d9:24:8e:
20:40:a6:a1:30:35:ee:7d:6e:71:73:14:8e:02:19:72:ed:a0:
3b:79:63:60:bb:92:59:58:fd:32:a1:44:d1:bb:97:39:37:94:
c2:bf:1d:c9:8b:b0:5a:87:b8:2f:7b:1d:19:31:0d:99:16:95:
8a:83:7f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:10:54 2026 by rpki-client