Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: RjQ40cG+U5VMSYvZg8WQpfksrnhgGmpHoAoS76CIA+g=
Subject key identifier: CD:E6:F7:6C:F4:DF:8C:DB:3D:25:36:0D:00:F9:A0:7F:55:BA:B2:D9
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 019D984FA5DA92D92C1423654EBD51647B3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 18CB
Signing time: Thu 16 Apr 2026 22:00:49 +0000
Manifest this update: Thu 16 Apr 2026 22:00:49 +0000
Manifest next update: Fri 17 Apr 2026 22:00:49 +0000
Files and hashes: 1: QACcx3bmkYq5FVm71dmit53bn4Q.roa (hash: oQ/m7QfRfNheRWfUqid3dTy2xJX9VnnT62jOhchvHuk=)
2: gux-IxdkibcThQl39PWiMsakK0g.roa (hash: xADBPDkQYtVHScAVn2k1rTwtjm/TxC5Y/n4oo7GBk1E=)
3: jpvZw7M6HWfeaPP7BBGWUfnUPW8.roa (hash: m69AM/qWHvVH8vQjk7f2bA/DtDMk2TIVp7SRlmCI4co=)
4: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: hlIZh1R5YaaxJGa41mSnU18laZDWTtYH7rEXPKMxR34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:a5:da:92:d9:2c:14:23:65:4e:bd:51:64:7b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Apr 16 22:00:49 2026 GMT
Not After : Apr 17 22:00:49 2026 GMT
Subject: CN=cde6f76cf4df8cdb3d25360d00f9a07f55bab2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c7:9a:a3:e6:70:11:bf:bd:ba:16:d3:6f:31:
93:d0:1d:94:ca:12:6d:4e:87:6f:ca:7e:d4:29:92:
ba:88:2e:0b:e0:23:63:87:33:c3:23:98:0c:0e:78:
a2:f4:fc:d9:17:96:87:97:99:36:0f:fc:e6:38:34:
13:b9:c3:81:76:2e:d1:b2:46:39:72:f7:87:ed:0b:
79:08:40:56:10:b9:d0:d5:59:e0:2f:12:c3:af:b4:
7c:0e:7b:2a:4e:1b:58:62:e6:bc:2f:f0:20:f2:f7:
55:74:0e:17:8d:64:20:d8:59:af:50:21:32:ce:da:
78:e4:60:f1:81:b4:13:76:c5:e8:de:9c:e3:e8:bd:
68:15:0a:ea:98:8d:08:9f:a7:c6:1d:1b:e3:ec:53:
9f:e6:d9:f4:cb:ba:ba:0c:40:4e:84:10:3b:1e:4d:
fd:b9:7b:35:a5:5f:39:cd:18:90:f5:96:7c:5a:27:
9a:9e:75:21:54:41:0b:c5:e6:da:ef:9b:97:c5:56:
d5:15:f1:cb:f7:f2:38:57:9a:d3:9b:46:e8:b3:91:
fb:00:0b:ad:b0:2e:e8:8d:af:f4:36:15:3e:bc:73:
5f:b5:81:bc:a3:6b:f5:8b:02:01:b8:f9:a4:47:0a:
75:a1:c1:f3:d7:51:04:74:a6:eb:67:fb:98:15:ca:
2a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E6:F7:6C:F4:DF:8C:DB:3D:25:36:0D:00:F9:A0:7F:55:BA:B2:D9
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:c9:70:b5:c0:b4:e9:0a:55:25:f2:b3:66:43:d5:ea:7c:92:
61:58:8f:a2:d6:20:16:8c:86:b5:e2:99:94:33:5c:c0:8d:c4:
f2:2f:64:46:67:db:2c:5a:7b:c7:54:9a:4c:97:5c:17:ed:f3:
cf:2d:b2:71:e9:45:10:53:4a:a8:fa:11:b8:a0:d1:08:73:a5:
c7:4c:ef:53:5f:50:13:49:6c:fc:ba:ec:a8:c5:c4:3c:8f:ec:
e4:fb:bc:88:ea:96:89:6b:ae:0a:23:d1:ba:5b:03:d9:ec:65:
87:af:e3:96:4f:53:77:6d:bf:d8:d2:20:c3:c1:a3:ee:39:2f:
7f:d2:b4:26:f2:48:0b:2f:47:b7:6f:f1:4b:44:eb:88:a8:48:
7f:7a:f2:5c:7a:85:8a:a9:1d:0a:c5:4d:c6:62:55:14:93:78:
aa:87:7b:e4:e8:6c:12:42:6a:a0:21:f3:01:ce:54:5f:fe:b6:
c9:09:0a:b1:c1:0a:e6:cd:b2:30:2c:e2:80:33:97:a2:2b:01:
13:94:ec:b4:53:7d:e3:32:ac:48:74:aa:63:a5:c3:d7:0c:dc:
fb:dd:e7:1d:e4:9b:a2:c5:68:7c:84:65:c9:34:20:59:1f:20:
3b:8b:38:b4:3f:e7:92:e0:eb:41:bb:07:0f:d1:b7:55:f0:6d:
3a:d1:16:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:36:00 2026 by rpki-client