Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: fzVPZZNW/0L7ny3ubZpKJ9Fx97BDQCD0tO0uQpcML/E=
Subject key identifier: 82:94:BD:BE:48:AB:4B:D7:EA:7A:DB:FB:CC:B0:D9:8F:D5:1A:D5:54
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019D98F485A1A7F78A5EB6D659E01E6126A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 01:00:54 +0000
Manifest this update: Fri 17 Apr 2026 01:00:54 +0000
Manifest next update: Sat 18 Apr 2026 01:00:54 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: VT/qGdUimA3UBlRERK4cv6bNUFLRR4JAl+oCf1BH2Qg=)
2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:85:a1:a7:f7:8a:5e:b6:d6:59:e0:1e:61:26:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Apr 17 01:00:54 2026 GMT
Not After : Apr 18 01:00:54 2026 GMT
Subject: CN=8294bdbe48ab4bd7ea7adbfbccb0d98fd51ad554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:71:a6:b9:f5:99:0a:1f:9b:18:88:38:4b:
1a:50:34:a6:72:da:22:f2:52:13:7f:f8:e0:8f:15:
23:6f:db:a5:4a:d9:6e:38:95:84:22:c9:28:fb:6f:
40:9f:dc:d7:6b:37:37:e3:d6:cd:d5:5e:01:1c:9c:
3c:86:6e:53:42:33:d8:1f:72:e1:19:61:ef:be:88:
78:75:ba:ef:c6:31:db:48:9c:29:ec:aa:4f:c0:57:
5d:38:f9:29:91:f4:46:3d:bd:ac:e2:e3:27:91:32:
b3:d0:7e:ae:e6:9e:a3:db:a4:3e:a8:4f:22:2f:a7:
08:2f:53:e3:98:eb:e1:af:f8:90:d7:c4:2a:80:2d:
ce:3c:96:cd:d8:f9:7c:21:9c:03:93:08:5f:b9:1c:
b7:18:5c:03:2c:32:8d:95:e6:0e:2b:6f:b3:e1:95:
79:d2:81:40:4c:0e:8b:8b:e7:2f:1a:76:21:9f:0a:
52:79:1e:82:96:54:4b:30:c5:26:40:7f:a9:e5:6a:
59:4f:40:1d:ac:4b:9d:c9:06:09:10:28:9f:89:71:
49:fa:22:86:f4:4c:3f:15:2c:89:e2:52:37:fc:aa:
b5:bc:27:3d:8c:fe:ac:29:01:3d:09:fa:90:a7:38:
e1:18:39:57:bd:a7:35:f7:d8:ed:19:c3:85:2f:de:
0e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:94:BD:BE:48:AB:4B:D7:EA:7A:DB:FB:CC:B0:D9:8F:D5:1A:D5:54
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:94:95:46:b4:5a:da:35:09:99:64:8c:73:c3:25:32:ab:11:
c0:d6:97:e5:67:3c:44:d8:34:1f:b1:71:c7:97:77:db:ee:03:
e0:db:37:51:62:a2:8a:43:6d:d8:c2:78:41:f0:2e:18:f0:cf:
1f:b3:c6:00:2f:dc:07:85:66:41:39:9a:21:44:e5:85:22:57:
1b:4f:26:78:ef:17:72:10:c7:d2:78:65:80:23:86:82:f8:99:
9e:ca:13:ec:8f:0e:dc:25:99:2f:67:cf:00:e7:51:68:cf:fc:
28:1a:98:84:7f:3d:9d:df:86:ee:59:b2:01:b0:d7:48:6a:05:
1d:2f:6c:83:93:86:3f:99:bc:bb:55:a6:68:ad:b3:46:34:ff:
20:1c:ba:ed:28:de:e4:05:8e:06:8b:2c:b7:87:53:ab:ba:e2:
ef:5a:fa:b0:b6:69:fc:d0:59:4a:0f:69:86:9f:b8:b4:cb:79:
20:5c:d3:3f:f2:87:c6:aa:d7:82:07:7a:03:8b:8e:f2:d3:3d:
bd:62:6a:22:ff:75:3d:c0:1a:be:a5:a9:5e:27:4d:49:54:04:
f7:20:11:d9:cd:4f:0e:eb:42:b5:5d:bf:2c:6b:47:12:d5:2c:
4e:6a:c3:d6:53:41:54:29:bd:ea:ba:87:2d:de:e3:bd:49:91:
d6:63:ad:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:52:13 2026 by rpki-client