Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
File: iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft (raw, json)
Hash identifier: ucP5vDXx80W2Ber5ANG68XHkgET6wdIM3ByfiAyhhLA=
Subject key identifier: 55:1D:0D:FF:1A:64:D2:A7:3C:0F:C7:56:0E:CC:5B:AB:90:3F:C0:71
Authority key identifier: 89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
Certificate issuer: /CN=897378126f55d96519553daa48e02e3282121644
Certificate serial: 019D9C2D2D9566C5499C1601DE564FC7301E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
Manifest number: 111E
Signing time: Fri 17 Apr 2026 16:01:39 +0000
Manifest this update: Fri 17 Apr 2026 16:01:39 +0000
Manifest next update: Sat 18 Apr 2026 16:01:39 +0000
Files and hashes: 1: ea_FcR8oSzWDCeMxrNhO2E40pkI.roa (hash: 5Y4/kc8eZcdfX1i5OXOAX6HvK4BEfWtdSIjWkgc/rvI=)
2: iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl (hash: YjltIFLhytxtWWthlfegAUivzUrbzvcBEiMxIwy/RE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2d:2d:95:66:c5:49:9c:16:01:de:56:4f:c7:30:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897378126f55d96519553daa48e02e3282121644
Validity
Not Before: Apr 17 16:01:39 2026 GMT
Not After : Apr 18 16:01:39 2026 GMT
Subject: CN=551d0dff1a64d2a73c0fc7560ecc5bab903fc071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8d:7d:03:78:63:01:c6:ea:f8:ce:cf:0d:ac:
be:0b:51:c7:48:c9:61:d6:bf:90:a8:af:1f:f1:aa:
12:09:65:3b:81:e3:8f:be:52:a4:74:22:6c:28:dc:
2b:f5:5a:0d:4c:5d:66:ec:42:24:ac:4f:65:f3:cc:
f2:6a:73:44:20:7c:3e:40:24:2a:4d:98:57:e8:a3:
d3:38:4e:a9:e6:61:41:8a:95:58:ae:04:6d:ac:e8:
fe:9c:20:ba:ce:b0:d3:4e:78:a9:04:a5:aa:5e:db:
03:d2:86:ce:8a:1a:fd:51:6a:5f:f9:d9:80:9d:84:
de:b1:0d:56:d9:58:03:7b:8e:e8:5e:8e:5c:ef:ef:
62:c7:13:66:6b:f0:68:17:74:e1:93:15:cc:7e:13:
21:9a:8b:38:0b:0c:ee:54:81:7e:20:7f:d2:38:69:
98:8b:9b:17:49:ea:d2:30:74:d3:c0:8e:75:59:68:
a6:71:cd:59:73:74:5b:ed:c6:5f:b2:5d:c1:57:6d:
46:5c:7b:77:e8:c0:7e:e7:09:10:20:c8:e9:96:89:
3b:15:eb:37:86:66:43:2f:80:eb:03:85:1d:98:19:
ac:94:9d:0c:0a:38:c2:69:45:42:32:49:24:86:ab:
5c:f0:ba:29:3e:46:47:9d:ea:4b:9e:da:78:8d:b3:
dc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1D:0D:FF:1A:64:D2:A7:3C:0F:C7:56:0E:CC:5B:AB:90:3F:C0:71
X509v3 Authority Key Identifier:
keyid:89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:88:62:9e:9c:46:e1:0d:69:30:f6:78:cf:d7:5b:cf:03:fb:
4c:3e:93:86:de:73:2d:f7:0c:68:8f:e0:b8:27:31:e2:14:b2:
a4:36:f2:d2:a3:d3:c6:96:b5:91:51:43:c8:de:c1:11:26:78:
a0:6e:e5:9a:22:50:de:31:b1:c1:95:a3:6a:68:04:fa:92:e8:
76:1d:6b:db:2c:42:44:d4:2b:10:6e:78:35:4b:16:df:86:19:
33:a3:5c:3d:6f:18:40:8f:af:fa:e3:f8:1e:12:e2:9d:6d:b4:
34:8a:f6:79:fe:53:5f:a5:52:9c:79:a2:08:8a:44:fa:71:a9:
98:7f:a8:7f:c5:36:46:24:9e:30:b6:51:7a:27:b5:c3:88:b1:
88:d7:73:f5:d8:53:66:51:16:f8:fc:69:83:f4:7a:c2:c7:68:
a7:f4:79:2c:d4:66:70:83:1f:62:f2:72:7d:28:e7:42:e7:e0:
b0:76:d4:b0:87:5d:f3:50:f2:7e:11:d0:9b:6c:15:b2:7f:16:
a0:0c:1b:96:b0:73:fd:0b:7c:0a:0c:c1:13:78:2f:72:16:80:
1b:89:96:7e:b5:d7:02:66:91:c5:19:57:b4:f0:c0:99:24:80:
76:69:26:e2:28:25:10:e8:6b:85:86:1e:f3:66:a1:34:ec:fc:
94:81:b6:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:36:38 2026 by rpki-client