Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json)
Hash identifier: ++A5xm59c2GV4COa9NNLgmlDCInCkp24S+YFTHB93DU=
Subject key identifier: 83:74:C9:5E:0E:96:51:BA:01:64:9E:DD:5A:01:70:86:21:A2:74:6A
Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Certificate serial: 019D9A06B9FC4E311D8270A9F62F20A218EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
Manifest number: 1853
Signing time: Fri 17 Apr 2026 06:00:25 +0000
Manifest this update: Fri 17 Apr 2026 06:00:25 +0000
Manifest next update: Sat 18 Apr 2026 06:00:25 +0000
Files and hashes: 1: 4QtQ4JO4bCdyuS9fUme9C3LxdRc.roa (hash: R6o6h7FPQ78N3YyiGkBHhpV10pWrv1sif+o6N3TYJMg=)
2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: fFLMjhjCU5j4bD8ORvSRq3CD9epql+Tz76Us/H7I34c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:b9:fc:4e:31:1d:82:70:a9:f6:2f:20:a2:18:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Validity
Not Before: Apr 17 06:00:25 2026 GMT
Not After : Apr 18 06:00:25 2026 GMT
Subject: CN=8374c95e0e9651ba01649edd5a01708621a2746a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:e9:d9:0f:00:94:97:13:66:e0:0d:91:cb:
2f:2d:dd:cf:ba:9e:af:65:96:37:97:58:6f:64:63:
5e:77:a9:af:25:59:18:b3:98:db:b3:33:06:96:c9:
25:a7:d2:cf:30:e0:b5:47:dc:02:e4:a6:77:21:a8:
7a:20:7c:71:f4:42:16:4c:ef:fe:04:a1:7f:a1:e5:
9d:fb:1e:74:35:eb:ce:69:57:7b:c0:72:e9:bf:e1:
c2:9c:08:be:59:5b:84:69:3f:3f:1c:69:24:a4:b4:
6c:55:9a:30:ab:f4:69:3e:45:ea:ab:91:da:7d:07:
f9:6e:de:89:db:2f:aa:d0:12:cb:62:6c:7b:0d:4c:
f7:10:6f:ef:45:85:08:91:fd:48:73:e5:97:39:25:
aa:48:52:1d:bb:1e:fe:bb:5b:c6:80:01:63:0e:9d:
d4:9e:0a:87:f8:6b:fc:72:66:47:ba:e4:66:d9:c3:
ac:06:28:60:2c:9c:4f:f2:9f:95:12:2c:ee:6c:9c:
2b:7c:cf:d4:a2:bf:a4:69:13:0f:24:9b:7f:7f:b2:
19:97:75:ce:94:1f:68:2b:e5:96:64:a5:8c:77:a8:
ba:e3:0f:97:0a:ac:07:17:05:04:67:0f:3d:04:76:
29:c3:ec:88:00:b2:3f:93:0d:8b:78:8d:86:a3:39:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:74:C9:5E:0E:96:51:BA:01:64:9E:DD:5A:01:70:86:21:A2:74:6A
X509v3 Authority Key Identifier:
keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:78:a6:57:55:75:34:9f:cf:47:3b:61:b9:3d:1b:20:b9:f0:
33:18:df:f8:91:dc:45:fb:0a:a6:66:71:0e:84:22:a8:7c:42:
25:05:d1:0c:19:16:40:43:33:16:69:55:d3:96:80:99:38:35:
51:7f:25:13:d8:3e:0a:d5:44:58:e4:b5:32:f2:dc:e4:c7:75:
bd:a4:50:15:03:d1:cf:a5:ed:75:1b:3f:d5:a9:80:f4:32:3d:
55:fc:30:3c:d1:06:4e:aa:84:87:6d:83:3f:27:65:12:06:d5:
0a:e3:0f:2e:b1:96:bd:a0:9c:6c:62:76:09:71:50:5a:f8:22:
96:51:f8:53:5b:d4:f6:48:e0:10:30:f3:cd:65:9a:38:17:2a:
41:b5:9d:bd:f2:f3:71:05:3a:02:cb:dd:a9:e6:23:c1:74:fe:
80:f1:68:ba:da:b2:35:33:ff:92:5a:56:e6:0f:8c:b3:3c:52:
53:77:c2:a7:4b:1e:13:59:c4:08:fb:71:b7:ff:6e:e3:bf:b4:
c8:d3:ab:d9:de:8a:87:25:5b:63:ac:9f:b9:de:82:17:89:24:
cb:57:2c:6f:83:e1:e9:e3:dc:d5:97:af:cc:17:b4:99:5c:ab:
85:9e:89:55:d9:91:47:5e:85:89:db:58:e0:5d:97:9a:d5:ee:
47:12:78:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:16:18 2026 by rpki-client