Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json)
Hash identifier: 9lTblMLaNL5DJuTAsmOXvgUubgoAlUwIxQpU5zSHKmE=
Subject key identifier: F4:A4:6E:D8:49:7E:41:B9:70:B5:DD:53:2D:F0:BB:45:CD:F8:01:0C
Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Certificate serial: 019D9A74A21D1FED515390B1B172899F426C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
Manifest number: 1856
Signing time: Fri 17 Apr 2026 08:00:28 +0000
Manifest this update: Fri 17 Apr 2026 08:00:28 +0000
Manifest next update: Sat 18 Apr 2026 08:00:28 +0000
Files and hashes: 1: 7WMHMRqYOCVJJOdVZn2toCGJ2Gg.roa (hash: u4kYKOpJoWTw0MlXSHwcNaxRXss2R6FxZn1Z49E09Go=)
2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: AsnvidJ3CQiZ/QqrBflvWYfOoQY35mNwhxMBdmNTmo4=)
3: Y9TiWW63huz2Y3RHyUrV0t01KvA.roa (hash: rNdERlf12PuGe5Ze8mFCZtIt+e3TVhdioA/m3kjwSCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:a2:1d:1f:ed:51:53:90:b1:b1:72:89:9f:42:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Validity
Not Before: Apr 17 08:00:28 2026 GMT
Not After : Apr 18 08:00:28 2026 GMT
Subject: CN=f4a46ed8497e41b970b5dd532df0bb45cdf8010c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:cb:c4:ff:a1:fd:ea:36:25:a1:52:f8:56:
ef:4c:66:80:d3:5f:74:84:20:8a:4c:48:21:55:0c:
30:87:19:58:16:84:da:0d:93:ee:1b:a4:c0:d0:33:
a4:71:80:b7:a1:bf:e3:78:7e:66:9c:7e:f6:0f:eb:
6b:c3:f0:5a:ef:b4:fe:b6:fb:89:94:26:b4:b5:54:
42:c7:5a:9e:13:ea:cf:aa:60:43:74:77:31:8b:ee:
06:5d:86:99:2e:3b:9a:bd:8e:18:83:fd:d8:7a:08:
48:c3:d1:9e:e0:34:77:7b:c8:c2:71:8d:33:46:7b:
01:8d:b4:3b:21:9c:ad:44:0b:66:0c:bb:65:c0:2f:
be:84:b6:a9:a3:e0:c3:25:8f:17:b1:56:17:cf:a9:
07:8f:28:01:92:d0:c5:92:44:a8:03:c8:d2:4d:0e:
1c:ac:70:6c:43:8d:8d:69:67:55:3d:17:21:a6:27:
8b:a1:32:74:53:3b:b3:54:63:2c:a5:a0:80:70:f0:
04:2c:b1:5a:0d:4d:9e:c1:8a:9e:30:3a:ed:f4:00:
04:27:d1:ec:f1:6d:b2:47:b9:6d:cc:cf:62:b6:9d:
51:28:59:dd:b9:75:1f:16:93:70:41:d8:f3:7c:14:
1d:eb:1c:82:97:62:a9:5c:bd:1b:51:46:7c:af:5a:
86:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A4:6E:D8:49:7E:41:B9:70:B5:DD:53:2D:F0:BB:45:CD:F8:01:0C
X509v3 Authority Key Identifier:
keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d0:37:e0:8a:fd:06:f1:f5:7b:d6:6c:0e:d3:dc:bd:2b:41:
be:33:d6:00:b7:5e:92:9d:0c:f0:d1:59:a2:39:f7:ba:b1:a2:
ab:a7:dc:0e:6c:5b:06:95:16:93:d9:9e:d2:6a:4a:4e:30:89:
be:54:50:f4:7f:50:5c:dc:5a:b0:3b:59:b4:66:dd:dd:62:a0:
35:74:6c:f3:08:9a:7e:99:61:da:82:af:43:9e:b7:43:57:20:
34:46:d2:81:05:48:16:a4:dc:38:c5:ad:9a:a4:8d:e4:29:92:
d8:88:74:39:56:1d:d0:3d:ce:f7:06:a3:10:25:35:56:dc:12:
c0:1d:96:aa:23:80:2b:e1:61:d1:8c:78:df:6e:b6:ed:a6:58:
09:a8:dd:14:58:7f:d8:21:86:bd:e8:4d:15:9d:2b:74:67:bd:
a7:50:2f:5f:84:a9:54:5c:fd:63:3d:ae:53:df:a7:dd:d4:ac:
29:26:c8:cd:11:b1:31:d2:f5:5d:c4:71:a9:ee:d0:ad:1a:96:
8a:2b:c0:d0:ab:f1:0c:b9:14:50:2a:00:76:b9:f5:b3:55:44:
b1:7e:0c:8e:67:f6:82:0c:a0:c1:8b:3d:9d:84:7b:25:6b:12:
18:d1:ff:a8:22:70:1b:e3:c3:d3:3c:17:94:06:bb:49:e3:57:
9c:11:c5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:10:16 2026 by rpki-client