Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier: EmdHafBIqo42VJF40O6tcue8K05Rgde5L0/eFsBS4GQ=
Subject key identifier: 09:61:54:44:54:D3:FA:26:23:94:24:A1:FF:ED:4E:02:8A:7A:5C:35
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial: 019CACEB5047A875BE31B539F5527D9DF8B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number: 0F6C
Signing time: Mon 02 Mar 2026 05:00:28 +0000
Manifest this update: Mon 02 Mar 2026 05:00:28 +0000
Manifest next update: Tue 03 Mar 2026 05:00:28 +0000
Files and hashes: 1: 1-xQpxgbsAccfNR_RPwpELLBga3Q.roa (hash: O9JFLbnCzJwjSJV7ChA49hvf5EARsdHIdJti0Ql7a20=)
2: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: UZOoqUUl8Lk7vDrDDb/jrxQH/AoNwcbWCTEkMFBS0Xs=)
3: 7C0RXVU3AgsBgO3I-5tJ7yJP6WM.roa (hash: zGb9a33Qnpr4WzIXt8XY3dXadxDHjRQNTlqjB3b8R/g=)
4: InpXhnM9MS1muu9R3XQVBIkVVN8.roa (hash: yU7SB2RYwoKjc2l3Eev4frxkOGpJzWi5EJ1oAWnsaXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:50:47:a8:75:be:31:b5:39:f5:52:7d:9d:f8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Validity
Not Before: Mar 2 05:00:28 2026 GMT
Not After : Mar 3 05:00:28 2026 GMT
Subject: CN=0961544454d3fa26239424a1ffed4e028a7a5c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:70:3d:04:49:d1:8c:45:c5:44:4e:b1:a2:
af:33:11:af:93:7a:78:1a:b6:8f:f7:b5:c8:9d:8f:
64:2a:d0:21:74:7f:57:00:0e:38:9b:ef:0a:09:37:
66:d3:a2:51:f6:7f:8f:a8:a1:4f:67:8f:30:ef:7b:
fe:fb:6a:87:00:da:99:26:54:a1:98:d6:74:5a:b5:
c7:10:3b:b8:4d:27:6f:93:df:40:d2:ac:c5:21:47:
0b:45:30:1a:ed:f8:0c:de:27:7e:fd:0d:0c:01:f1:
6c:66:28:36:d3:e8:61:cb:63:b9:b4:58:bd:40:a1:
fe:65:c6:f5:0c:a8:00:e9:7a:e5:00:64:be:fa:f9:
ae:7d:2e:a0:a5:d1:7e:5f:94:f7:48:a5:0b:f9:18:
f6:cf:11:19:e0:80:bf:4c:45:57:84:5a:41:5e:e4:
a0:5d:a1:4f:f6:3b:61:bb:28:64:a6:aa:d9:3f:e6:
cc:51:01:b6:49:33:c2:e3:21:4a:e5:44:22:3d:f5:
0f:33:56:4d:da:06:fe:09:82:2b:9f:4c:ab:d1:83:
59:6f:e5:6f:7f:61:36:20:5b:33:19:7d:2a:88:8a:
88:cd:4a:ce:51:3b:96:49:01:47:b3:b8:28:3c:a9:
d0:b7:47:41:68:57:b6:62:8c:c3:23:e8:ba:6e:b2:
e1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:61:54:44:54:D3:FA:26:23:94:24:A1:FF:ED:4E:02:8A:7A:5C:35
X509v3 Authority Key Identifier:
keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a1:8c:7f:20:a6:2e:ae:e8:81:f7:02:c8:68:f7:74:41:59:
5b:6c:2d:de:04:40:8f:de:6e:02:49:1a:b8:bc:30:e3:ad:71:
f9:f7:b1:c1:bc:53:f6:f5:64:01:e8:15:2a:51:b5:11:ff:e0:
e6:cd:e5:83:0a:6d:5f:ec:2d:72:ac:91:7a:fe:d5:0f:7b:f2:
1a:1d:7a:2a:5f:7a:6b:37:84:0f:d8:b1:52:d2:81:be:ef:68:
55:20:8c:87:27:3a:d2:60:0b:35:7d:d2:c7:7e:c0:d5:42:9f:
61:27:6e:cc:ce:af:bf:f9:35:61:6b:28:0e:7c:eb:1c:bd:ff:
20:c7:df:73:6a:ca:eb:08:8c:ee:b5:e5:0f:4d:2d:09:56:97:
28:f8:26:9e:82:4a:55:45:63:b3:40:c8:5c:73:de:1e:a6:91:
16:0b:d0:5e:28:99:5d:6b:a7:55:6d:a9:b7:30:4f:bb:fd:fd:
66:55:77:5a:5a:88:c0:eb:03:c3:f3:0a:71:fd:f9:34:a7:76:
61:95:39:a8:fe:6c:c5:98:af:69:16:0f:26:e1:e6:d6:86:a3:
95:80:24:bf:52:42:83:d6:5e:76:31:cf:25:91:33:5b:3b:a9:
98:97:3c:fa:75:51:b9:0d:5d:fc:3e:a7:51:66:b9:6c:1f:90:
a4:20:36:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys61BHqHW+MbU59VJ9nfi2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3YzYwYTU0ZTAzYzlmODE1Y2MzM2FmZDQ1ZDNjNGRiOWFm
NzZmMTYwHhcNMjYwMzAyMDUwMDI4WhcNMjYwMzAzMDUwMDI4WjAzMTEwLwYDVQQD
EygwOTYxNTQ0NDU0ZDNmYTI2MjM5NDI0YTFmZmVkNGUwMjhhN2E1YzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3VwPQRJ0YxFxUROsaKvMxGvk3p4
GraP97XInY9kKtAhdH9XAA44m+8KCTdm06JR9n+PqKFPZ48w73v++2qHANqZJlSh
mNZ0WrXHEDu4TSdvk99A0qzFIUcLRTAa7fgM3id+/Q0MAfFsZig20+hhy2O5tFi9
QKH+Zcb1DKgA6XrlAGS++vmufS6gpdF+X5T3SKUL+Rj2zxEZ4IC/TEVXhFpBXuSg
XaFP9jthuyhkpqrZP+bMUQG2STPC4yFK5UQiPfUPM1ZN2gb+CYIrn0yr0YNZb+Vv
f2E2IFszGX0qiIqIzUrOUTuWSQFHs7goPKnQt0dBaFe2YozDI+i6brLh5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAlhVERU0/omI5Qkof/tTgKKelw1MB8GA1UdIwQY
MBaAFNfGClTgPJ+BXMM6/UXTxNua928WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgt
MzgzMWYzZWQxY2E4LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgtMzgzMWYzZWQxY2E4
LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQqGMfyCm
Lq7ogfcCyGj3dEFZW2wt3gRAj95uAkkauLww461x+fexwbxT9vVkAegVKlG1Ef/g
5s3lgwptX+wtcqyRev7VD3vyGh16Kl96azeED9ixUtKBvu9oVSCMhyc60mALNX3S
x37A1UKfYSduzM6vv/k1YWsoDnzrHL3/IMffc2rK6wiM7rXlD00tCVaXKPgmnoJK
VUVjs0DIXHPeHqaRFgvQXiiZXWunVW2ptzBPu/39ZlV3WlqIwOsDw/MKcf35NKd2
YZU5qP5sxZivaRYPJuHm1oajlYAkv1JCg9ZedjHPJZEzWzupmJc8+nVRuQ1d/D6n
UWa5bB+QpCA25A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 12:02:02 2026 by rpki-client