Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json)
Hash identifier: IdoMnYzNpHP4Abq+mu6YEfZ9JCkzTQ8Iul486PdJamw=
Subject key identifier: 42:07:D5:B3:22:32:24:2B:DB:0D:A3:18:18:77:F2:BF:02:9D:80:66
Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Certificate serial: 019DA3AF56027B972A229DF217E32AFD7F17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
Manifest number: 18C8
Signing time: Sun 19 Apr 2026 03:01:09 +0000
Manifest this update: Sun 19 Apr 2026 03:01:09 +0000
Manifest next update: Mon 20 Apr 2026 03:01:09 +0000
Files and hashes: 1: HpEQ35wYcpdgu7Xx3TWMgnDMgr4.roa (hash: R5O1iCublXAekieUKPQ0Y89Zyi72MgQUUVwuCgdlYZM=)
2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: szLHMLf6LyW+SVj5BzI0s6TyDxtvTTFPf5iCFy+0H6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:56:02:7b:97:2a:22:9d:f2:17:e3:2a:fd:7f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Validity
Not Before: Apr 19 03:01:09 2026 GMT
Not After : Apr 20 03:01:09 2026 GMT
Subject: CN=4207d5b32232242bdb0da3181877f2bf029d8066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0e:b0:83:06:5b:5d:73:97:53:8d:ba:b0:b0:
43:8d:a7:36:28:14:3d:bd:fd:d4:81:81:4a:f5:b1:
da:0e:35:db:21:cb:9f:ae:81:94:d6:68:c2:a2:a5:
55:39:81:ca:b5:37:c5:17:2e:fc:cb:b8:2b:e8:46:
da:57:55:f4:71:4f:a3:6e:99:43:45:b6:3b:bd:0f:
5d:1b:20:e5:79:7b:82:e9:63:e9:69:f8:8a:10:0d:
74:65:da:85:81:73:bf:9e:62:79:d0:47:b2:23:09:
75:8c:b4:44:58:44:76:ca:73:42:61:d1:c5:28:2a:
64:d9:46:ce:dc:fa:1c:5f:f5:09:1d:74:3c:d7:4f:
9e:84:40:19:08:eb:1b:23:e8:1d:87:46:0e:5f:7d:
46:05:de:8b:5f:ce:27:2d:6a:74:b9:cb:0e:6b:2d:
26:20:8e:7b:75:ef:e4:4a:76:a4:2c:64:52:2b:35:
1d:d9:2d:b4:e9:88:5f:5f:db:c9:3e:bc:c4:f5:0f:
4b:bd:cc:d5:f8:b5:91:30:4a:3c:7a:03:fa:b3:c8:
25:3f:f2:db:38:c6:b9:67:b5:c7:8c:94:3f:8b:89:
20:88:e4:07:1d:84:d4:59:6f:fe:cf:96:c4:2f:14:
78:d4:da:4d:84:6d:b2:fd:11:78:94:94:5d:cc:fb:
ca:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:07:D5:B3:22:32:24:2B:DB:0D:A3:18:18:77:F2:BF:02:9D:80:66
X509v3 Authority Key Identifier:
keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:90:13:be:8b:a5:8e:28:47:64:50:e7:c8:50:9f:75:9f:0e:
c3:25:24:a0:53:00:6e:80:cd:04:59:b2:62:e3:23:c2:66:46:
ba:e4:ab:53:42:fc:53:8b:71:a6:f3:e3:28:c1:a9:c7:04:5c:
99:9f:eb:1a:cb:45:23:1d:93:db:55:ba:47:38:27:35:69:20:
4d:17:5a:da:1f:46:51:78:0f:e0:fd:75:a8:a5:67:f3:34:41:
0a:65:b0:62:b7:06:50:2b:c9:6d:e4:a7:2b:07:ea:42:8e:c4:
0c:14:47:fe:c5:56:9f:83:77:a9:3a:0c:05:30:70:41:57:7f:
2e:89:cb:d3:37:0b:be:1a:e9:ee:4f:10:20:21:41:70:47:e2:
eb:7b:05:41:f3:eb:89:ec:dc:0e:0f:39:e6:cf:03:8b:f3:61:
62:22:cf:1c:7c:6f:bc:ec:03:a5:55:fa:a7:f6:10:bc:b3:50:
07:bc:f8:88:67:b0:ca:3f:8b:e8:b4:3a:04:ae:26:17:29:00:
aa:1c:00:6d:b7:a7:3f:dd:3a:cf:ce:9c:39:4a:bc:74:6b:8f:
9f:ab:23:67:35:bc:c6:02:ea:5c:de:8b:e3:f6:4b:ae:b5:aa:
82:cf:9b:92:f3:18:a3:79:ea:ff:6a:43:dc:d9:b8:52:0e:67:
36:29:de:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:29:29 2026 by rpki-client