Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier: YngtMIzZ1Tqwr6e/R13c5iUaGJ2vCDtuIm9v33JQlC0=
Subject key identifier: 5B:0C:BF:C7:15:C2:44:04:0C:4F:16:B7:64:DE:F5:DD:85:E6:92:36
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial: 019D9A752F3E5A98581E62FF72A539371118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number: 0FE7
Signing time: Fri 17 Apr 2026 08:01:04 +0000
Manifest this update: Fri 17 Apr 2026 08:01:04 +0000
Manifest next update: Sat 18 Apr 2026 08:01:04 +0000
Files and hashes: 1: 1-xQpxgbsAccfNR_RPwpELLBga3Q.roa (hash: O9JFLbnCzJwjSJV7ChA49hvf5EARsdHIdJti0Ql7a20=)
2: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: 6KPYt6/AV00PoFmJbmEPc76Fy1l2X7zz+ph3a5Rq7i0=)
3: 7C0RXVU3AgsBgO3I-5tJ7yJP6WM.roa (hash: zGb9a33Qnpr4WzIXt8XY3dXadxDHjRQNTlqjB3b8R/g=)
4: InpXhnM9MS1muu9R3XQVBIkVVN8.roa (hash: yU7SB2RYwoKjc2l3Eev4frxkOGpJzWi5EJ1oAWnsaXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:2f:3e:5a:98:58:1e:62:ff:72:a5:39:37:11:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Validity
Not Before: Apr 17 08:01:04 2026 GMT
Not After : Apr 18 08:01:04 2026 GMT
Subject: CN=5b0cbfc715c244040c4f16b764def5dd85e69236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c1:99:da:89:38:40:15:06:c7:43:e9:c4:fd:
9d:55:b0:2c:22:20:36:ca:60:2e:21:23:f5:fa:d8:
59:63:b4:50:b8:ba:b3:13:f0:38:aa:0b:e6:4e:cf:
a0:f2:ba:f4:fc:c5:30:8a:52:00:32:a5:1f:cb:30:
64:0a:0b:dc:69:fe:26:c6:7a:39:0b:94:d3:90:be:
be:04:78:00:e0:53:6e:d6:23:17:c0:0e:68:f4:7d:
60:4c:80:4e:78:32:26:9a:f6:47:09:bd:da:cc:be:
b7:b6:22:31:e6:3a:08:6d:d5:51:e2:2a:ab:d8:09:
28:2f:0f:08:55:14:68:78:76:38:da:b8:79:01:ef:
bf:0d:bb:c3:dd:41:c2:91:5e:5c:5b:9a:de:e5:11:
28:cd:1d:3e:e5:ef:38:2a:69:d2:50:93:87:4c:e5:
c9:a3:7c:75:b9:5f:25:f5:59:62:9f:2a:2e:65:23:
05:f8:6f:34:f4:0b:d5:fe:96:1b:ca:00:39:e7:50:
46:20:17:3c:06:a6:6a:6e:95:58:8f:ee:5b:11:72:
ac:03:a4:b6:01:56:22:65:bb:1a:e3:e9:82:67:8a:
97:ef:51:49:6b:59:95:a5:7b:55:03:08:a3:7a:dd:
ed:ea:65:63:72:da:c1:7f:ec:1a:52:ee:54:60:ea:
da:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0C:BF:C7:15:C2:44:04:0C:4F:16:B7:64:DE:F5:DD:85:E6:92:36
X509v3 Authority Key Identifier:
keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:12:30:c4:e4:ee:e2:3a:37:dc:c3:9b:69:97:8f:5c:20:93:
21:e6:16:cd:51:2e:2f:f7:18:35:73:cd:4c:42:f2:02:26:48:
45:c0:16:b4:f6:7c:4e:de:fd:e4:dd:06:14:e6:29:18:4d:b1:
31:2d:6e:a1:27:00:71:d8:07:f8:e6:5b:af:e5:70:aa:da:62:
85:36:f8:43:19:cc:69:22:4b:c9:44:f0:24:11:9e:9f:68:78:
09:a4:57:92:12:65:c6:b6:f5:f8:96:a1:60:79:b5:9c:2a:35:
ce:54:14:09:02:34:0c:b1:f5:97:f2:6e:28:2d:1d:a4:0f:5c:
3a:d2:23:03:f2:89:01:1d:4b:f8:fa:97:4b:3b:4b:48:42:3f:
6b:49:f2:c5:e7:11:39:b1:de:25:91:58:70:a4:21:05:ec:59:
e5:c7:b7:b8:2a:be:f6:5c:78:7e:a2:3c:b3:6c:1f:9b:bd:0d:
ef:84:d6:7a:e0:7c:1f:d1:7e:2e:d8:f2:06:5c:df:fd:5c:52:
19:86:c5:cf:16:5b:1a:06:f4:de:51:43:6f:f9:50:3b:c6:85:
5f:c0:75:b3:6a:09:9c:2d:f6:e1:3b:7c:8f:f9:83:dd:d4:dd:
bc:60:74:2f:b8:8d:a9:8e:7f:d1:34:a5:d7:66:eb:21:23:12:
e7:7c:6e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:42:24 2026 by rpki-client