Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: MDATvDFPPMSYgTMkQbbJbvQ9F/My9mGyUkM1gXhpd58=
Subject key identifier: E3:4D:64:7B:9E:F2:CD:A8:ED:92:39:BB:CC:5E:11:4E:11:2E:90:A9
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 019D9AE279D2B74FAADE27B06F1E69BDD05C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 10:00:26 +0000
Manifest this update: Fri 17 Apr 2026 10:00:26 +0000
Manifest next update: Sat 18 Apr 2026 10:00:26 +0000
Files and hashes: 1: sBKm5lh9pFW6Bx5UfqBwJxTOW-c.roa (hash: fm7BpsPCc0ljnRZ7PGXN1/E5kbFIYol2cEhLrnlX2S0=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: Vqisfkcaaix+sNAPtqozg4Jtr9HAoUIJv52qlmEfEcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:79:d2:b7:4f:aa:de:27:b0:6f:1e:69:bd:d0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Apr 17 10:00:26 2026 GMT
Not After : Apr 18 10:00:26 2026 GMT
Subject: CN=e34d647b9ef2cda8ed9239bbcc5e114e112e90a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4c:03:65:94:f4:78:9f:84:97:3c:1b:77:e5:
5c:f8:aa:d6:cc:cc:33:2f:df:39:0e:06:81:0d:da:
f8:5a:48:a8:2a:83:c4:0d:e0:51:c0:23:23:d0:3e:
67:ed:a8:83:3b:16:b8:a5:f4:1b:24:c5:6a:38:79:
6d:9e:c7:a5:6f:2a:58:83:b2:bb:47:95:a2:a2:a6:
4e:12:52:22:16:40:89:e2:e7:76:5c:c3:5d:3e:83:
b4:f2:58:12:c7:ae:0f:bc:7d:fb:c6:dd:62:fe:ad:
00:20:c6:14:a8:12:88:27:72:50:e6:b6:c1:5e:86:
87:74:6b:8c:aa:64:84:f4:e5:ac:41:6d:5f:98:9a:
9d:9c:17:90:d2:3a:6e:f1:3a:a8:67:d7:5b:a2:32:
ea:5f:95:c1:16:ce:79:d9:d0:8a:c8:9d:f9:6a:4c:
a3:e2:a4:5e:8d:58:c9:bd:25:c2:ec:5f:7d:23:d3:
fe:72:e8:e6:0b:bc:4f:e1:17:b8:45:95:ce:8c:2f:
02:6c:3c:98:fd:a9:19:ae:41:88:18:b0:62:53:2b:
fa:50:a9:3d:06:79:28:e5:94:5b:56:b1:cf:ca:a1:
f5:3a:50:37:d4:03:2a:bb:23:b5:93:7c:2d:0a:1e:
e3:0a:18:a2:ea:d5:ab:d6:e7:ca:51:10:49:75:c5:
3e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4D:64:7B:9E:F2:CD:A8:ED:92:39:BB:CC:5E:11:4E:11:2E:90:A9
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:66:61:74:13:d8:14:45:35:aa:f4:c1:76:5d:ae:1f:d6:33:
1a:2d:e7:ac:1b:88:fa:9b:72:4f:ae:83:b1:e2:e0:94:6e:ab:
32:32:1b:78:5a:f0:b6:8e:15:76:56:dd:cc:9e:70:2d:de:20:
0a:94:72:07:35:d8:57:fa:ce:c5:90:6d:ae:54:b0:d8:a8:8c:
53:78:e9:b7:02:25:eb:aa:90:20:9a:ea:33:7b:0e:12:92:cf:
1e:a8:91:44:0c:61:d8:a5:ad:1c:b1:69:75:db:c6:3e:71:a6:
9c:1a:dc:be:84:fb:27:55:cd:25:ab:54:7e:df:26:0d:7d:90:
64:cb:2b:17:da:af:6e:f3:2d:de:74:ec:53:3e:41:e9:23:fd:
9d:db:11:a3:48:a4:c0:a5:a5:d4:94:53:1d:e6:09:de:f6:e8:
ec:43:a3:50:70:69:21:fc:67:b9:5d:13:d3:a6:63:db:f0:e5:
f2:9b:5a:7a:f9:c2:39:ed:3e:e1:f0:83:94:d3:ca:2c:5f:72:
3d:bc:ea:7e:f5:3a:a0:47:50:ec:fa:4d:85:f0:65:11:17:9f:
b7:23:d7:04:fe:12:e5:72:d0:89:8f:e6:e2:1a:4c:6d:a1:3e:
28:6b:29:0b:e9:80:c5:b0:55:c2:fd:3a:f0:21:cd:38:13:da:
c8:52:e0:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:07:27 2026 by rpki-client