Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: mrTmmlw18l/OHhgA+jvsfcKxgbXPSyYLC5bgQzFJjls=
Subject key identifier: 8A:1C:10:47:A3:8B:D3:D4:64:9C:32:1D:1E:79:48:D0:6B:95:A6:E7
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 019D98BDAE387C50FA87CF2B9C6441F1D431
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 00:01:00 +0000
Manifest this update: Fri 17 Apr 2026 00:01:00 +0000
Manifest next update: Sat 18 Apr 2026 00:01:00 +0000
Files and hashes: 1: EFGLC8SL84p1q1K-j3Uf3V3IW44.roa (hash: 4PnC9POkZ3ZS5ZMz+CxTTugtS6AWFe8U3aLCVUVr204=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: PxfkgtwTkDcajt6xLuhlLXgfU/k7/5jf4GGETUlrOio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:ae:38:7c:50:fa:87:cf:2b:9c:64:41:f1:d4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Apr 17 00:01:00 2026 GMT
Not After : Apr 18 00:01:00 2026 GMT
Subject: CN=8a1c1047a38bd3d4649c321d1e7948d06b95a6e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fd:e0:23:a7:ee:1b:70:bd:07:fe:79:a5:32:
5c:a9:5e:22:56:4c:ce:e0:87:c6:40:19:47:69:5f:
11:9f:8b:6b:96:99:5e:43:f5:2b:bc:27:e9:2c:b4:
22:8a:d2:42:56:cd:dc:ef:f7:51:8d:dd:50:30:91:
62:d8:35:32:05:0c:bd:7a:8e:d4:96:45:36:de:f6:
f5:7d:57:15:98:de:ae:29:52:67:3a:1d:d0:50:58:
b2:1c:09:24:53:e1:f0:fa:57:f7:7d:aa:96:16:01:
93:7a:a2:fe:90:85:d5:6d:6b:8b:8f:b5:a2:63:36:
08:fe:66:7f:f2:bf:8a:9d:e7:6c:fb:02:07:d7:2e:
88:7f:bf:d5:d0:2b:12:69:12:d3:b3:ef:a0:c5:ba:
3a:2d:7e:dc:0b:98:2f:8e:d5:38:c3:cd:aa:a7:78:
27:a6:7e:16:2a:54:60:a5:cf:b8:90:5e:65:1f:1c:
4e:16:62:62:30:1f:27:bd:b5:c1:1f:69:ae:27:21:
12:80:5d:38:44:e8:c7:f8:c1:d6:a4:57:90:1f:e7:
5d:54:62:85:c1:db:8a:c9:c6:c1:d3:14:a7:15:7d:
83:d1:68:2f:f4:ea:47:5b:b2:7e:22:93:7f:b4:4f:
a3:30:5d:58:c9:91:a5:29:93:4c:cb:5d:95:d5:79:
cb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1C:10:47:A3:8B:D3:D4:64:9C:32:1D:1E:79:48:D0:6B:95:A6:E7
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:8c:00:6f:95:3c:16:b2:ce:87:6a:1f:70:95:fd:f1:b1:28:
dd:52:fc:d1:4b:31:eb:94:c7:bd:ae:55:03:89:1e:f6:02:95:
4f:27:f9:c5:1a:b0:0d:97:59:48:06:41:43:fb:00:3e:e3:dd:
66:75:1e:34:3c:d8:8f:ab:7a:98:57:33:0e:d0:4d:c5:4a:56:
e8:80:9b:04:0b:a5:90:d9:10:fb:fb:13:48:e7:83:7e:0b:6f:
5a:9f:91:b3:66:86:96:1b:b1:1f:75:0d:46:65:73:33:7a:76:
8f:72:4c:71:05:61:9b:88:3d:e2:8e:1b:c9:0d:4f:8c:12:30:
e9:be:df:bf:1c:f4:1b:de:e8:73:b4:82:7f:3e:97:60:60:1d:
9c:18:e9:cc:c6:c8:98:6a:b0:46:8d:56:16:fb:a9:34:0d:19:
87:7d:98:4a:1b:92:d6:7c:50:0d:c8:ce:3b:7d:b1:05:67:c0:
0d:65:87:c8:99:69:0a:2a:11:51:cb:9b:aa:ef:a1:16:68:5f:
79:37:eb:fe:ac:66:8d:3f:de:b3:c6:d8:23:e0:7b:aa:bf:53:
98:99:11:c8:64:d4:80:6a:09:01:1e:66:c8:50:7d:54:ac:2f:
5b:dc:3b:d3:5c:9d:74:de:54:3a:10:0e:77:29:d5:15:20:96:
90:14:22:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:49:20 2026 by rpki-client