Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
File: RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft (raw, json)
Hash identifier: P2wBZvxtLQowII8zVyubhL9B12+T0gLT/ffYD2S39Hc=
Subject key identifier: 4F:2A:6B:2E:A5:B4:98:C5:E8:57:73:8B:F8:19:58:BD:09:D5:D2:41
Authority key identifier: 44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
Certificate issuer: /CN=448ca39537597cfae60ae0421db8e098b4e26130
Certificate serial: 019D98F4C2ECA941612EE4C69EDD7ECCAAF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 01:01:10 +0000
Manifest this update: Fri 17 Apr 2026 01:01:10 +0000
Manifest next update: Sat 18 Apr 2026 01:01:10 +0000
Files and hashes: 1: RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl (hash: xxVGWUEXT0s40WO3lhzB8dxCECRf0m+vzqvNTjh6IZc=)
2: UXnKo4Ey-1UOsTwsFxzecNca4ws.roa (hash: ilB1dCXfkW75QAbnFoJP+oitYYjAJLiYJ/zgOjFv/HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:c2:ec:a9:41:61:2e:e4:c6:9e:dd:7e:cc:aa:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=448ca39537597cfae60ae0421db8e098b4e26130
Validity
Not Before: Apr 17 01:01:10 2026 GMT
Not After : Apr 18 01:01:10 2026 GMT
Subject: CN=4f2a6b2ea5b498c5e857738bf81958bd09d5d241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:44:fb:88:3c:d8:ec:ed:45:b8:9b:97:fc:9b:
96:24:74:f3:37:b0:f8:bb:4e:85:80:90:ac:56:e0:
ce:ab:26:0b:e3:bb:34:03:1e:9e:26:39:2c:4b:9d:
f0:f0:d7:28:37:e5:c9:e9:b8:ec:86:d3:6d:81:6d:
0e:1b:d2:f7:fd:a8:b1:15:9f:51:c4:60:85:90:3c:
75:ca:0b:d3:a0:34:f9:dd:60:d9:e0:1a:77:5e:07:
ee:21:4d:8a:6e:8b:b6:ca:8e:8d:14:bb:a2:2b:45:
6c:25:d4:29:0a:95:e0:91:19:02:91:61:2b:00:96:
85:72:9d:0f:df:2e:0a:95:4d:79:d8:a3:ec:da:83:
7e:e3:52:75:85:c3:40:bd:71:9d:bc:c8:41:e7:29:
68:b9:49:21:b0:76:84:b7:83:17:61:7a:36:90:46:
b7:23:32:d2:d4:46:c4:28:50:87:b8:9e:17:85:c6:
ae:d0:d3:1d:ce:82:cd:63:9d:38:13:92:2b:fb:1d:
51:f4:29:ff:fd:7f:01:99:b9:b1:5d:c5:76:42:1c:
73:7f:f2:48:9f:1d:46:15:de:fe:0e:23:dd:99:f0:
de:55:34:38:31:f2:bc:e3:8d:79:1d:8b:f2:72:fd:
98:df:69:95:d4:a1:1b:c5:4a:2a:e0:dd:8a:2d:5b:
ee:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2A:6B:2E:A5:B4:98:C5:E8:57:73:8B:F8:19:58:BD:09:D5:D2:41
X509v3 Authority Key Identifier:
keyid:44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:99:35:c6:f8:d0:21:be:06:d0:6b:cd:dc:6a:d4:ac:05:a5:
f0:a3:87:e6:f6:f0:01:7a:0a:89:cc:1a:6b:b3:de:a0:5c:e1:
c8:c2:d1:6b:5d:a9:63:5d:23:ea:14:9a:02:17:e0:06:a4:82:
0c:3f:26:bf:38:83:5d:f9:60:a7:e4:44:16:f9:02:c9:e0:fa:
28:66:e7:b9:8a:e2:fb:d7:f1:7e:7c:c4:4f:32:9f:d5:6a:fd:
5c:5c:7b:0a:c8:b9:e3:c5:61:c0:a8:38:6e:c1:37:86:32:8b:
da:06:84:fd:5f:fb:b9:92:ff:ac:d9:79:93:0c:ce:2e:3b:e7:
5d:69:c9:4f:a9:72:87:09:7b:56:1b:9a:84:0c:64:dd:13:9c:
4d:29:a8:eb:26:0a:6c:dd:c9:06:20:6b:56:c4:be:a2:64:6f:
f6:3b:2b:ee:5a:a7:cd:45:ab:71:7c:4b:b2:f9:90:f8:68:22:
d6:02:98:5b:e9:89:a8:f7:9c:5d:16:8b:ab:fd:0b:f7:46:92:
1c:e6:da:a9:97:37:57:71:fc:e9:ee:d8:80:79:c5:5b:3c:d6:
bf:3b:86:2a:07:a4:b6:fe:b6:c6:02:9c:3c:18:48:95:42:6a:
e3:63:f0:01:03:20:03:9e:a3:57:de:28:8b:fc:cb:e1:6c:59:
e9:67:c3:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:20:32 2026 by rpki-client