Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
File: up78qG3qcNPukBgWeMjrMOaRbR0.mft (raw, json)
Hash identifier: yz92aC2qI0t+YxmhqSDHgY9+XqU+REBLTT/b8cQYq6Y=
Subject key identifier: 13:48:90:93:F3:3A:C3:DD:9E:44:BF:BC:4B:15:EF:77:93:19:86:22
Authority key identifier: BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
Certificate issuer: /CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Certificate serial: 019D9773FE93095124F3922C1747E300C3BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
Manifest number: 1836
Signing time: Thu 16 Apr 2026 18:00:54 +0000
Manifest this update: Thu 16 Apr 2026 18:00:54 +0000
Manifest next update: Fri 17 Apr 2026 18:00:54 +0000
Files and hashes: 1: o0Ar2DETFlUxLEOkeVUWjGR8WPc.roa (hash: opuyTRQFWnU43wU694s8uEjDvDG+GMKf+lea5jnxMmc=)
2: up78qG3qcNPukBgWeMjrMOaRbR0.crl (hash: 7S9VzECgx2fvOMWYLdXPQFYs4eEGgV1pS2mq0Av8Tf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:73:fe:93:09:51:24:f3:92:2c:17:47:e3:00:c3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Validity
Not Before: Apr 16 18:00:54 2026 GMT
Not After : Apr 17 18:00:54 2026 GMT
Subject: CN=13489093f33ac3dd9e44bfbc4b15ef7793198622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ef:b6:45:28:a0:e1:46:c4:ab:64:0e:f4:c6:
f6:e0:db:2b:f2:11:4d:d9:97:53:e2:63:d8:09:d7:
e4:19:ed:7f:63:0d:0a:f5:37:53:d8:30:39:e6:28:
01:ff:a3:2b:40:d7:3d:f2:6c:64:5f:37:c4:24:a1:
7f:a5:00:26:43:7c:9d:ad:04:31:74:65:77:8c:3e:
c9:dc:7c:d4:d0:31:43:57:88:4d:41:5a:b8:b3:c9:
e8:f2:e2:6d:ad:b3:22:ae:11:13:62:91:c5:6a:b3:
f6:ec:83:13:e8:e9:76:71:97:78:4e:5f:da:0f:3f:
c4:33:a2:17:45:1b:1f:59:73:3a:47:eb:c6:51:85:
04:c9:ad:78:ff:23:64:d9:67:8a:c6:d1:47:23:1c:
85:b5:fe:ea:c1:47:f5:35:48:8e:89:8b:26:37:30:
d2:59:bb:90:a2:af:47:97:62:fc:6d:97:1a:bd:5c:
7a:cd:86:d6:9b:b6:eb:79:8c:3b:4e:6b:51:1f:4b:
72:75:f2:03:2e:b0:c9:7f:34:ec:2d:ad:19:38:dd:
4e:9f:cc:67:4a:eb:35:b5:93:98:93:58:8b:ca:d9:
37:23:c9:08:b6:76:85:19:03:23:6c:e4:2e:7f:11:
17:c9:e1:31:d3:fa:63:70:1c:6c:aa:67:22:db:0a:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:48:90:93:F3:3A:C3:DD:9E:44:BF:BC:4B:15:EF:77:93:19:86:22
X509v3 Authority Key Identifier:
keyid:BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:2d:06:81:ed:c0:74:c7:39:8c:a1:6b:f4:84:8b:6a:94:79:
08:ba:74:47:3b:48:ab:48:9a:7a:71:53:7c:d3:64:8c:43:1d:
a5:1e:94:83:4d:03:e3:d8:07:0a:73:3f:b4:3e:37:fb:b9:9c:
49:3f:68:09:1f:c5:2a:c1:60:af:d4:5d:79:3a:1a:73:a3:f2:
9a:eb:db:4f:4b:56:fc:4e:f7:0f:03:89:58:d4:75:3f:f4:33:
42:3c:6f:fe:05:8f:c8:4f:16:2c:3e:6a:28:fd:3b:9a:54:6f:
ea:36:f9:a2:e8:a5:3d:76:ec:94:9f:62:2b:53:9a:ad:3a:13:
c6:04:14:cf:3c:7d:cb:e2:ae:7d:97:a2:56:cf:12:67:ac:82:
79:40:3b:56:a9:63:05:c5:ae:5b:fc:0e:f5:c7:4f:16:06:be:
4f:2b:a7:a8:af:87:15:12:90:04:ad:56:25:05:dd:18:b3:24:
82:06:e5:a1:41:3a:5c:ef:df:e6:d2:0b:0e:38:b6:a7:a3:82:
3b:a3:3a:af:31:95:45:e2:a9:e1:70:66:36:e2:bc:f1:c0:37:
d4:12:2a:96:f0:61:b4:ef:46:45:f7:9e:03:a7:b8:74:ba:3a:
1e:83:46:fd:a0:af:54:a9:6e:57:b5:6e:df:ec:d3:85:4f:d3:
18:56:9d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:08:44 2026 by rpki-client