Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: h/JF/YibzoLmQZWJppBtutxlvMBtDJXhBIJ0PuFtdws=
Subject key identifier: FA:9B:79:59:D4:C7:EB:2F:17:20:B8:38:A5:12:AC:83:98:32:A2:25
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 019D9886C88E7D1E26BD573C1B6F04A49D20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 18C0
Signing time: Thu 16 Apr 2026 23:01:03 +0000
Manifest this update: Thu 16 Apr 2026 23:01:03 +0000
Manifest next update: Fri 17 Apr 2026 23:01:03 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: 6z6fIvaQfXk16zpaVQeBcCPht0nomvGurV3PVMZvwq4=)
2: fTOZ6bwIEmD97JXBK2cTtsKp-dQ.roa (hash: ydQrbbkIB0mroPHTm9Ff78/w6YQRKyZSWJF5ki0jYCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:c8:8e:7d:1e:26:bd:57:3c:1b:6f:04:a4:9d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Apr 16 23:01:03 2026 GMT
Not After : Apr 17 23:01:03 2026 GMT
Subject: CN=fa9b7959d4c7eb2f1720b838a512ac839832a225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:fc:85:8f:2c:a8:48:e2:82:0a:71:73:8c:
cf:dd:a2:68:b9:af:59:28:34:8e:e4:c7:49:74:22:
a3:75:38:4f:51:bc:da:83:ba:eb:09:2d:05:22:d3:
7d:7f:15:08:38:53:01:bc:ae:86:6d:66:08:34:94:
95:fe:d7:81:2e:11:8c:8f:ec:6d:37:46:e9:4a:20:
fa:d2:4d:1d:c3:64:ec:b6:3f:37:e0:18:6a:f4:ab:
41:a4:14:8f:60:01:40:87:7c:94:e9:73:f8:4a:f1:
67:4e:d7:7e:6a:81:f8:5b:c9:3a:d1:98:f6:ea:99:
04:1c:71:2a:91:81:45:90:c9:69:81:7e:37:ff:8c:
0e:21:8a:a4:ad:8f:6b:cf:a4:50:d2:bc:41:03:f9:
a4:c3:8c:fe:15:6d:a0:ed:02:bb:69:b1:58:54:01:
98:a4:53:b0:6d:31:00:f3:0c:20:82:0c:84:a4:bb:
e9:81:aa:85:48:d0:4f:78:97:49:2d:51:b3:26:f8:
01:9a:8e:cb:d9:d2:d4:99:b4:64:96:c3:3f:a4:5b:
ed:37:d6:a1:ee:cd:20:74:08:d0:78:ad:74:f3:0e:
61:1c:18:ac:ed:c0:c2:9d:ff:a1:e5:44:27:bd:ac:
51:e9:0b:7b:a6:6b:7e:96:8e:67:ae:ab:69:70:7a:
59:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9B:79:59:D4:C7:EB:2F:17:20:B8:38:A5:12:AC:83:98:32:A2:25
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:b4:42:82:ae:a5:f2:5b:79:81:6a:20:49:13:a0:bb:6d:c7:
b9:b6:31:5e:b3:b2:ec:9f:8f:6c:69:3c:4a:ea:9f:9f:22:f3:
cf:ce:3c:c0:86:14:74:7c:82:ae:b8:8c:61:4f:26:3b:98:c1:
fc:37:ab:eb:76:d9:e4:1f:5d:a5:50:be:03:ba:10:d9:6b:2d:
ac:87:79:7f:5a:8b:65:94:56:37:30:1d:4c:5d:93:a1:76:3b:
65:82:2f:5e:69:73:90:13:cd:8d:a7:a0:96:4e:ae:6c:9a:ba:
95:96:b7:17:3e:bd:11:b1:18:55:5d:6e:68:84:e8:ff:af:fa:
a0:51:cb:7e:30:db:fa:e3:fb:19:26:a9:df:4f:10:d8:63:11:
04:09:5c:45:28:3f:59:67:c9:f8:5d:2f:08:e7:9d:59:25:0b:
33:35:48:bc:76:ab:a0:80:96:ef:b4:2b:12:92:c6:c7:29:38:
cb:1d:b0:78:d4:b1:47:7e:42:fb:63:27:fe:87:86:b6:b2:f1:
1b:ae:09:65:40:a8:98:da:c4:72:9a:b7:9a:29:7f:cd:01:fc:
f3:b5:4e:0d:31:fc:71:aa:6c:df:a4:99:28:78:cc:80:7f:82:
ea:3e:11:dd:fb:20:b1:43:c0:ce:74:66:3e:91:12:8f:6d:f5:
1f:a9:26:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:19:03 2026 by rpki-client