Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
File: g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft (raw, json)
Hash identifier: EjiN3+hh62zaqV1Sww/kec+YPqgHPrukA5atzkaEG8k=
Subject key identifier: D3:E7:33:3A:B4:62:F6:95:7B:88:18:AC:85:FA:A4:D9:E8:E7:4F:73
Authority key identifier: 83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
Certificate issuer: /CN=838c4f810d7a20a783a4fab1c034467b825051b9
Certificate serial: 019D9C2C8876C8535B004475F167A47DD78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 16:00:57 +0000
Manifest this update: Fri 17 Apr 2026 16:00:57 +0000
Manifest next update: Sat 18 Apr 2026 16:00:57 +0000
Files and hashes: 1: g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl (hash: UfRhvRc8AgzgM+erzN36rN75bF58ABUIpceIT4xqB9Y=)
2: jUh5kPqCBDpArkt6K7K31qvOD8c.roa (hash: qUwUoHmjfXhrPLn74zGv7aYCTKLavD/2JI0PvwjIvp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:88:76:c8:53:5b:00:44:75:f1:67:a4:7d:d7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838c4f810d7a20a783a4fab1c034467b825051b9
Validity
Not Before: Apr 17 16:00:57 2026 GMT
Not After : Apr 18 16:00:57 2026 GMT
Subject: CN=d3e7333ab462f6957b8818ac85faa4d9e8e74f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8a:c9:57:42:19:e8:e8:bb:d6:c7:6d:0b:5f:
87:a6:54:f7:ea:0d:64:16:01:b5:0f:bb:e9:d2:d8:
91:79:2a:27:26:87:e6:ce:ca:d0:f2:83:76:a0:63:
00:2a:fa:ff:d9:29:ee:0c:4d:a0:a2:59:ad:b3:19:
d4:86:75:4f:d5:53:97:7c:de:34:50:d5:16:df:2e:
8b:fa:51:19:33:a3:97:47:5e:6c:3b:82:f9:84:a1:
c6:c1:18:03:fa:af:ca:2a:06:31:76:52:d1:e2:fe:
d8:07:92:fd:02:04:5a:6a:a5:ce:34:52:de:07:f8:
ba:45:11:c0:19:d9:07:55:2e:d7:06:a7:8d:24:9e:
3f:56:cb:d5:7c:6b:80:58:28:05:77:fc:97:57:10:
8b:f2:79:15:e3:d5:95:21:95:f3:8e:8f:79:3d:c6:
34:54:53:c1:ca:f5:b7:86:a7:fb:34:e2:74:23:3b:
43:a7:2d:8c:8e:0b:8c:f2:36:cf:8d:7d:a8:70:6c:
1c:44:e4:bc:b6:20:8f:31:05:ab:53:fc:44:d4:e3:
21:80:4d:ff:f9:6c:2f:2d:2f:15:ca:02:58:65:7f:
fa:5e:c8:8f:f8:09:d5:c6:85:c9:e9:35:67:62:d9:
23:26:1d:dc:30:05:83:23:28:ee:82:aa:4d:a6:85:
b4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E7:33:3A:B4:62:F6:95:7B:88:18:AC:85:FA:A4:D9:E8:E7:4F:73
X509v3 Authority Key Identifier:
keyid:83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ba:ad:95:51:21:c9:e1:3c:3d:63:03:85:47:96:ec:16:0d:
cf:b2:ca:d0:a9:9a:60:2d:b5:6e:00:4f:3c:00:f7:ba:a6:c2:
86:39:95:cf:3c:c3:81:8d:8b:be:20:90:f0:d2:f7:fe:02:71:
cd:b9:af:85:fe:54:28:6a:ff:bd:4b:9f:2e:fb:85:9e:09:df:
35:a6:ff:33:56:e8:8d:24:26:35:ca:af:44:36:4f:db:50:ff:
c4:7d:08:c3:f5:86:6e:6e:b5:33:01:09:6c:68:d7:f0:ca:35:
c2:1c:d2:45:ae:7f:36:1c:2b:e7:40:5a:b4:c0:f0:c4:a8:27:
96:02:25:61:ed:ff:d7:0e:61:33:72:0d:4a:b1:23:9b:49:f5:
19:0b:b7:19:e0:1b:d3:8d:6d:41:76:92:48:9b:f1:8a:31:4b:
4d:c7:d7:43:d3:cf:c4:67:1e:55:30:33:8a:ac:dd:fe:d6:3d:
8a:c7:c5:13:d8:16:76:09:f7:aa:2f:9d:e0:ec:b1:98:10:48:
1c:46:d2:e7:62:20:e0:a0:80:65:35:2f:3b:55:1c:04:b9:1f:
8a:7c:36:43:df:48:fe:c6:35:6d:72:ae:66:70:45:dd:ed:66:
5e:85:9a:ef:de:3f:48:81:c0:18:bd:4f:93:77:81:0c:12:f7:
df:d4:8a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:21:03 2026 by rpki-client