Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: tiuh9RRkzDEZHm+PIKZC9M74AP8rRPmWeYlbsZUNJWU=
Subject key identifier: 3B:60:5F:48:63:8E:72:8A:65:2F:63:F9:87:0E:A9:00:F5:AB:7E:03
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019D996271BC3DB8D8AB22599A611F02C99A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 18DF
Signing time: Fri 17 Apr 2026 03:00:58 +0000
Manifest this update: Fri 17 Apr 2026 03:00:58 +0000
Manifest next update: Sat 18 Apr 2026 03:00:58 +0000
Files and hashes: 1: 8JTBQJyqUxIFa2P7t0W6NdfJ7CI.roa (hash: bvR7uwT6CerdByDmx1xzty2bHjJMPuqJsJHdeopKM9Y=)
2: IAcgHGi2lFpmozwldAdI6otCCf8.roa (hash: BMvZpTPd4wPptVWAuFWagP2MsiisY343W0Dlxwe5jk8=)
3: PGdzQPbVNWOAAR-X1BVXtgxofwg.roa (hash: dnLVHCkUAzZBzW5KJgWgdjrJ3f9Bmjq6lfV0HEQ9YaI=)
4: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: ekhvFM1sp2xYm5OFvAdhqAV7JFY7HjEl2xd9W9JPZ34=)
5: UeKejWBuRMBTzBVkphHiwU6F1G4.roa (hash: 4Va/WDHUaUbqMZBtGC/uemvvWN5D2KRgvotniu/r8z8=)
6: bspFglFUNNfB3BfctmrtidkBJJ0.roa (hash: b4qzed65X33LBM+fRSUuJ6eNd3msfTHJCKt5GOuVSMY=)
7: qz9PIkYKwP9WQn8ECobRGBHsRvQ.roa (hash: UZfIONpLoP6LhX/7gUJb7axOulXZjtNAWJUg7Z+a+S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:71:bc:3d:b8:d8:ab:22:59:9a:61:1f:02:c9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Apr 17 03:00:58 2026 GMT
Not After : Apr 18 03:00:58 2026 GMT
Subject: CN=3b605f48638e728a652f63f9870ea900f5ab7e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:65:7f:5d:04:c4:d3:18:55:c4:11:1a:fe:
a9:9d:06:f5:44:cc:41:f4:38:68:0f:49:d2:99:89:
a3:f9:f4:00:6f:95:34:14:ba:c2:c6:cb:24:9d:2b:
1b:66:40:9c:ae:36:df:b5:f7:ee:f9:c8:15:82:d3:
33:3d:c3:ea:08:81:dd:16:ab:7b:a8:a5:e4:46:ba:
6e:2b:66:fc:4a:ac:ec:3d:12:35:9e:51:a0:2d:9c:
45:2e:ce:54:87:dd:e9:43:c7:3b:3e:1c:44:c0:f2:
b1:22:48:71:e3:83:ab:bc:f1:bf:ad:5e:09:78:1f:
7a:77:5f:54:98:38:51:d0:72:17:68:de:67:67:16:
a5:5c:c0:c9:bf:9b:93:ad:87:67:15:db:23:0d:23:
76:30:0f:c8:3a:78:29:ee:48:22:29:1e:02:73:df:
29:e5:b4:30:72:9b:f6:d9:71:71:b4:14:21:2f:f5:
70:5b:f7:a0:10:74:7d:4b:5d:6f:3c:3c:58:d0:34:
3f:6a:e8:00:b9:09:bd:72:e9:94:b8:02:42:56:05:
0d:73:bc:9d:ce:10:1d:b4:7b:0b:76:cc:ed:f5:0a:
e7:17:6d:14:85:19:42:a9:71:1d:46:f3:76:ea:9d:
27:e7:d1:37:28:f7:ce:bb:76:81:3c:56:02:b5:6d:
c7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:60:5F:48:63:8E:72:8A:65:2F:63:F9:87:0E:A9:00:F5:AB:7E:03
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:5f:73:ee:dc:8c:a5:77:1a:40:c2:fc:54:7b:87:00:35:6d:
fb:03:03:28:c1:df:de:df:6c:c7:c5:85:fe:ea:d0:26:d4:cb:
14:79:0d:82:34:fa:cb:2d:5f:c4:66:08:bb:72:87:4c:79:ab:
4c:92:93:c4:9e:6f:31:0c:5e:20:5b:42:49:e0:13:2a:12:55:
ca:18:c6:b1:de:8c:e2:fc:61:fa:64:b3:81:05:7a:b3:71:b2:
ea:97:f8:36:6c:f0:c9:94:67:8d:3a:fc:75:3f:5e:ae:87:7c:
8f:46:b6:e7:27:f3:a6:f0:92:30:26:c5:60:b4:21:f4:b1:0e:
da:74:15:b2:d8:14:12:db:ba:2a:db:ba:42:dc:d7:58:9a:ed:
85:7d:70:5d:77:b0:d8:44:f7:39:5c:ac:5a:61:6f:0b:99:04:
dd:1f:32:ad:f8:ce:cd:c0:15:3d:3f:e9:8b:52:bf:da:4b:5e:
3c:cf:d9:1d:6a:d5:84:26:ed:df:68:cf:ae:6e:fc:1c:c9:fc:
49:d6:5b:40:3a:a2:ce:d9:bd:17:13:a3:f3:4e:9c:e8:98:61:
a9:af:d4:b9:19:02:66:4b:70:09:1b:8a:e5:51:a7:fc:3f:53:
3b:e1:bb:89:a3:4e:31:7c:fd:dd:61:81:ac:2c:cd:41:17:a1:
19:8f:33:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:10:11 2026 by rpki-client