Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: 2m7xnbrvQg3wdMfEGk1Bw9SGOKHZwrIm54esoFDQj4w=
Subject key identifier: 0D:B1:05:2C:A5:B0:50:F0:02:62:40:A1:DF:83:C2:F4:36:76:B2:CB
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 019D9962FD5B693191A79FD5A66CBF5661A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 049A
Signing time: Fri 17 Apr 2026 03:01:34 +0000
Manifest this update: Fri 17 Apr 2026 03:01:34 +0000
Manifest next update: Sat 18 Apr 2026 03:01:34 +0000
Files and hashes: 1: Psndu95QZf6tgKNvQkbaDhxNkYg.roa (hash: d9f4EyfJsmR2vvAcSDXuO/gBDmodHHefWdbiiIbdVEk=)
2: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: huFR957g5DcsIwyvPEVI9ecKtwhzowX3sACJMq+oTC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:fd:5b:69:31:91:a7:9f:d5:a6:6c:bf:56:61:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Apr 17 03:01:34 2026 GMT
Not After : Apr 18 03:01:34 2026 GMT
Subject: CN=0db1052ca5b050f0026240a1df83c2f43676b2cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:20:98:f1:c3:2b:0a:ce:04:fd:c9:f3:24:11:
5b:a4:49:36:5a:ac:3b:6d:9e:0b:ed:90:97:5c:d5:
75:4a:ee:3f:63:fd:c1:98:24:fb:31:af:38:2d:42:
e6:55:67:74:d0:d2:29:15:cf:35:fb:d2:a7:e3:0f:
77:84:a0:15:9e:b2:22:0c:0e:3d:6f:21:ba:c0:22:
f6:59:fd:b8:5c:91:b9:fe:85:ca:3c:6d:2b:94:60:
8a:27:bc:3a:ed:33:1c:80:2d:81:3b:ab:d8:46:a8:
9b:1c:10:81:a8:15:6c:ff:45:2f:ee:73:8c:0f:30:
b7:45:5e:88:7e:3c:3a:58:4a:45:60:9f:82:dd:b2:
e8:3b:8d:30:fe:4a:df:9e:64:8a:44:a2:cb:d3:97:
19:dd:e2:57:3c:18:94:f7:c5:6c:67:c4:e4:cc:17:
04:cc:74:ee:44:9b:a0:6e:1e:f4:85:6f:4a:8a:d3:
44:f5:53:bc:d6:b5:48:97:d2:59:2e:3a:bd:4f:dc:
a2:40:01:dd:d9:4d:87:45:11:dd:c2:9b:6e:95:6b:
b2:e3:e1:7c:cd:9b:98:50:f2:7d:a9:e2:46:72:17:
d8:fd:be:11:58:71:49:7d:26:fd:f6:1b:61:dc:ff:
9b:7f:14:e6:ec:5d:21:97:44:18:cd:86:00:fb:f0:
f3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B1:05:2C:A5:B0:50:F0:02:62:40:A1:DF:83:C2:F4:36:76:B2:CB
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
de:1e:3a:cb:af:b8:66:bc:ba:5a:ef:bc:46:ba:1d:2a:4a:a5:
15:b3:50:8e:0c:b0:31:12:bf:ba:c8:ab:5a:81:2c:e5:5d:8b:
7f:9f:ad:4f:06:79:e5:80:5b:a1:10:ac:3f:8d:12:7b:e8:40:
88:c2:cc:d2:ab:30:8b:3c:e8:cd:e4:10:22:ca:db:6e:6d:fe:
86:e9:00:1c:ed:84:5d:6e:ea:43:00:a0:48:4f:e7:41:bd:bd:
eb:eb:12:fe:07:98:f4:4c:6b:98:82:40:e5:45:57:98:d4:b9:
94:2b:a3:15:0f:38:e0:fb:46:c2:e0:1e:19:a7:e1:a1:0a:bf:
b2:24:ba:0e:ca:76:07:e3:cc:c1:91:a8:3d:68:a6:45:41:89:
b3:f2:1c:23:d0:69:9c:17:b0:96:1c:4a:25:f4:06:cf:32:36:
70:98:4d:ec:f7:72:35:8c:9d:8e:2c:2a:43:43:fe:cb:9d:61:
fe:67:72:2c:a3:98:0b:6e:58:22:bc:60:93:a5:61:eb:f8:dc:
00:7e:f3:fc:3e:a3:ef:68:32:d4:ee:bb:1a:bd:7e:c6:70:cf:
5e:c5:c3:43:e9:33:44:1b:8e:0d:0e:80:90:92:63:5b:7c:0a:
e3:ef:24:4c:88:19:30:12:9e:bf:c0:d0:8a:26:65:e7:cc:65:
cf:9c:80:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:40:54 2026 by rpki-client