Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json)
Hash identifier: YLs4gh69IfNcqDg7kTbPWUoXuZ9cbdCW3lHmK09amHA=
Subject key identifier: 9B:F4:FA:B3:62:77:2A:A9:D2:7C:73:F2:A2:6B:A6:D9:08:BB:87:DC
Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb
Certificate serial: 019D9B50EC24B5CA97F541925CBF6D012221
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 12:01:04 +0000
Manifest this update: Fri 17 Apr 2026 12:01:04 +0000
Manifest next update: Sat 18 Apr 2026 12:01:04 +0000
Files and hashes: 1: 6v2it1qTQM_G9sWb1tDinWYpODY.roa (hash: kiBDfwv0URUTmxQqj/IJZu5OTfVLSt/qbBsgaeH3VdA=)
2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: yObF7O27s6JDTleXkFdW90S7H7Dx7kzNW0Y5+5IyzdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:ec:24:b5:ca:97:f5:41:92:5c:bf:6d:01:22:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb
Validity
Not Before: Apr 17 12:01:04 2026 GMT
Not After : Apr 18 12:01:04 2026 GMT
Subject: CN=9bf4fab362772aa9d27c73f2a26ba6d908bb87dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:32:1a:83:e3:4d:98:fc:9c:74:2f:03:6c:43:
0b:55:31:a0:da:70:c0:9e:39:70:06:1f:e5:fc:11:
6b:3b:b4:3d:68:dd:28:06:48:b4:80:b4:23:fc:c6:
1a:b3:43:f5:a1:92:3e:e5:4b:39:5f:b9:a7:71:5b:
f9:18:82:7a:0f:a3:88:4c:d7:c1:25:71:b6:e8:6a:
dc:ec:b1:1b:5e:e3:e9:6e:0c:fe:69:89:7e:a9:71:
58:de:c4:89:b2:19:3d:68:29:ca:72:d9:42:2d:36:
b5:08:c3:7c:05:ec:84:53:a6:90:8b:ff:66:c6:3e:
90:2f:89:3d:58:c5:2f:48:72:a4:25:3b:ee:d8:00:
1b:31:2d:87:e4:46:ea:4c:d4:a9:ca:43:13:bb:9c:
ec:20:62:77:3e:cf:f9:92:b1:c4:1a:d3:88:d8:05:
35:93:fd:df:34:f8:b0:03:01:71:ea:a1:b9:88:24:
76:ef:e7:44:5b:a6:85:17:b3:20:90:eb:8a:45:dc:
83:dd:9c:d1:58:ad:74:e0:1a:90:f8:12:ed:9b:94:
e1:1a:e6:08:1c:51:a6:71:d7:c6:cf:76:aa:b3:5d:
46:c0:70:66:3f:eb:ba:ef:75:b5:d4:92:05:fe:f9:
03:1d:22:a8:2e:19:f1:49:fc:1e:bd:f5:6c:41:20:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F4:FA:B3:62:77:2A:A9:D2:7C:73:F2:A2:6B:A6:D9:08:BB:87:DC
X509v3 Authority Key Identifier:
keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:8a:cb:51:b5:62:39:f3:6f:c4:cf:11:95:8b:07:9c:a5:63:
85:05:85:aa:94:fb:d3:c0:69:bb:fa:48:46:2d:d7:c2:2d:0b:
bb:6d:79:1b:79:b7:ce:9d:f1:63:cd:c5:36:f8:ce:c2:89:29:
c6:fd:97:f2:c8:46:0e:aa:01:83:82:a9:85:4b:d1:b7:dc:d0:
33:26:75:5b:03:d5:f7:6a:50:dc:01:d1:8e:29:9f:17:cf:81:
64:4e:c6:88:04:bd:81:f8:5f:26:6b:7d:20:00:0d:02:1c:d8:
6b:a0:1c:d9:7a:e2:52:37:75:c8:eb:e3:a0:c3:18:83:cb:09:
3e:7c:d0:9e:98:2c:8b:11:dc:9d:68:45:16:66:5b:35:0c:55:
7a:6a:d6:c3:66:06:de:1e:4e:15:8e:56:f7:45:4f:d1:fd:cd:
ad:7a:99:bf:2e:a0:6d:81:91:ec:23:64:04:a0:77:5b:19:14:
73:4f:a1:42:89:52:d0:48:6e:25:44:14:cc:63:01:d0:b7:1e:
1b:4b:80:cb:7c:14:07:7c:75:c5:b6:5a:5e:7a:a5:17:61:66:
88:7a:7c:71:0f:d1:22:b5:3d:34:c4:ae:54:77:72:95:3b:43:
c1:1c:e6:e5:b8:f8:7b:57:f8:91:8c:88:46:39:3f:b2:85:93:
dd:e8:bd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:58:20 2026 by rpki-client