Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier: T/DCcUb5Tm9IkI3SMOL8sTCkyNTIGrj6K3R71Gu6ihE=
Subject key identifier: E3:32:44:CD:FB:B4:34:D5:5B:DE:7B:45:35:4D:66:2D:E7:A3:B5:2A
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial: 019D9C6319182D71AEDA9D6E01694C7C0CA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number: 0FE8
Signing time: Fri 17 Apr 2026 17:00:32 +0000
Manifest this update: Fri 17 Apr 2026 17:00:32 +0000
Manifest next update: Sat 18 Apr 2026 17:00:32 +0000
Files and hashes: 1: 1-xQpxgbsAccfNR_RPwpELLBga3Q.roa (hash: O9JFLbnCzJwjSJV7ChA49hvf5EARsdHIdJti0Ql7a20=)
2: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: R87Bjr6QifsePV6wvHfiVCMzqIQuzGkmszSANbHGPIY=)
3: 7C0RXVU3AgsBgO3I-5tJ7yJP6WM.roa (hash: zGb9a33Qnpr4WzIXt8XY3dXadxDHjRQNTlqjB3b8R/g=)
4: InpXhnM9MS1muu9R3XQVBIkVVN8.roa (hash: yU7SB2RYwoKjc2l3Eev4frxkOGpJzWi5EJ1oAWnsaXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:19:18:2d:71:ae:da:9d:6e:01:69:4c:7c:0c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Validity
Not Before: Apr 17 17:00:32 2026 GMT
Not After : Apr 18 17:00:32 2026 GMT
Subject: CN=e33244cdfbb434d55bde7b45354d662de7a3b52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cc:66:e5:5d:65:8d:69:c9:c0:bd:c1:23:f0:
73:55:93:9c:3d:bb:53:88:42:9b:f5:31:7a:5b:ae:
12:df:c3:34:43:56:d7:71:9b:b6:f2:00:cf:2c:c3:
96:9e:fe:48:14:f6:53:69:80:4a:f5:3a:ec:d1:ed:
90:9c:03:8e:4b:a5:a8:85:45:b3:bb:eb:bc:ef:aa:
53:7d:da:f2:0c:78:30:70:b9:a8:12:f2:9b:64:d8:
da:52:a2:17:a7:56:3d:34:be:f3:73:9c:ba:96:54:
88:36:ad:23:69:18:dc:e3:92:e9:e1:03:18:47:76:
b0:9b:00:96:af:40:6a:dc:cf:2c:b4:d3:9a:e5:21:
a9:77:84:7d:bf:b7:e7:91:7f:e4:02:66:73:7e:93:
f9:ef:0e:0f:d2:bf:32:39:08:bd:01:4b:2c:4c:c8:
2d:d0:81:24:75:55:a8:4a:af:ac:b7:20:f2:f7:4b:
8a:c8:10:70:a9:f8:03:1c:70:d3:1e:6a:b9:77:8f:
4a:d2:3e:a1:24:1d:b0:a1:89:0e:1b:91:a5:6a:af:
7d:4d:69:63:c4:90:fc:b6:e3:98:0d:e7:59:58:2c:
72:29:78:2d:b1:0b:77:9d:2b:c5:d4:ee:24:6f:b7:
2b:31:88:4d:e8:ad:d7:b5:2f:59:fc:80:53:00:53:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:32:44:CD:FB:B4:34:D5:5B:DE:7B:45:35:4D:66:2D:E7:A3:B5:2A
X509v3 Authority Key Identifier:
keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9f:f4:aa:9f:73:d4:7b:c7:59:d9:a7:24:02:b4:2f:68:73:
ba:52:1a:31:f3:9f:db:e4:90:46:46:ce:7c:f5:b1:11:2a:d5:
9d:73:a3:ef:22:ba:c2:68:5c:ce:da:17:cc:db:61:52:c7:f6:
34:13:4d:1e:b2:74:49:82:4f:82:1d:aa:76:82:cc:06:dc:0b:
74:f7:5a:ae:8d:c8:e2:39:a4:9c:63:1c:b8:a5:59:d7:c0:ee:
71:d1:11:3f:6a:ec:ed:4c:4f:64:3f:af:64:a2:fc:8d:e1:5b:
58:43:0d:e6:dc:ff:c8:46:0a:3f:9f:85:43:a5:8d:bb:10:2b:
ed:1e:7b:11:84:36:9a:d1:a5:2e:53:75:1a:06:e4:ee:96:f3:
0b:b5:34:3c:03:4e:d5:a2:6c:fa:0b:9e:bb:22:11:00:45:cb:
63:0f:11:2c:37:40:fc:95:e9:ad:0b:32:ba:fb:64:68:cc:a2:
1b:ba:2d:f9:04:b3:e7:f7:96:30:7e:4d:97:90:33:75:bb:b3:
a0:fe:81:a3:2f:a8:a0:a8:da:ef:a3:5f:21:75:8c:ba:7a:af:
cb:b7:b5:6f:45:71:74:68:e3:bb:02:78:14:63:77:e6:24:aa:
d1:88:43:ff:c5:99:41:9e:8c:df:ec:3c:35:21:8b:c3:bc:7a:
3f:13:42:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cYxkYLXGu2p1uAWlMfAyhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3YzYwYTU0ZTAzYzlmODE1Y2MzM2FmZDQ1ZDNjNGRiOWFm
NzZmMTYwHhcNMjYwNDE3MTcwMDMyWhcNMjYwNDE4MTcwMDMyWjAzMTEwLwYDVQQD
EyhlMzMyNDRjZGZiYjQzNGQ1NWJkZTdiNDUzNTRkNjYyZGU3YTNiNTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8xm5V1ljWnJwL3BI/BzVZOcPbtT
iEKb9TF6W64S38M0Q1bXcZu28gDPLMOWnv5IFPZTaYBK9Trs0e2QnAOOS6WohUWz
u+u876pTfdryDHgwcLmoEvKbZNjaUqIXp1Y9NL7zc5y6llSINq0jaRjc45Lp4QMY
R3awmwCWr0Bq3M8stNOa5SGpd4R9v7fnkX/kAmZzfpP57w4P0r8yOQi9AUssTMgt
0IEkdVWoSq+styDy90uKyBBwqfgDHHDTHmq5d49K0j6hJB2woYkOG5Glaq99TWlj
xJD8tuOYDedZWCxyKXgtsQt3nSvF1O4kb7crMYhN6K3XtS9Z/IBTAFOfFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMyRM37tDTVW957RTVNZi3no7UqMB8GA1UdIwQY
MBaAFNfGClTgPJ+BXMM6/UXTxNua928WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgt
MzgzMWYzZWQxY2E4LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC84OTA5MGMtNTNiMS00MWJlLWEzMzgtMzgzMWYzZWQxY2E4
LzEvMThZS1ZPQThuNEZjd3pyOVJkUEUyNXIzYnhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXp/0qp9z
1HvHWdmnJAK0L2hzulIaMfOf2+SQRkbOfPWxESrVnXOj7yK6wmhcztoXzNthUsf2
NBNNHrJ0SYJPgh2qdoLMBtwLdPdaro3I4jmknGMcuKVZ18DucdERP2rs7UxPZD+v
ZKL8jeFbWEMN5tz/yEYKP5+FQ6WNuxAr7R57EYQ2mtGlLlN1Ggbk7pbzC7U0PANO
1aJs+gueuyIRAEXLYw8RLDdA/JXprQsyuvtkaMyiG7ot+QSz5/eWMH5Nl5Azdbuz
oP6Boy+ooKja76NfIXWMunqvy7e1b0VxdGjjuwJ4FGN35iSq0YhD/8WZQZ6M3+w8
NSGLw7x6PxNCUQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:53:42 2026 by rpki-client