Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft (raw, json)
Hash identifier: A+gpmT1y4kaDRCSmbBN7qEv6Xd6F2PWYJlMuW8G747M=
Subject key identifier: 4F:21:69:44:05:82:9F:47:EA:9B:11:F9:DE:8D:C5:11:C3:25:BD:3E
Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Certificate serial: 019D9B506C8E90A3932060CBFA0807015B49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
Manifest number: 18C7
Signing time: Fri 17 Apr 2026 12:00:32 +0000
Manifest this update: Fri 17 Apr 2026 12:00:32 +0000
Manifest next update: Sat 18 Apr 2026 12:00:32 +0000
Files and hashes: 1: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl (hash: 7tSF1vleElBNmCRU2Bj3X4Sb8vpITHI/71D+NyESR3M=)
2: sgqR4WMwXjyOfh_rWVUf5MMjM8s.roa (hash: spwljFTg//vIfCs+4AV5oovDbFK1ooetV57V5ssw4qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:6c:8e:90:a3:93:20:60:cb:fa:08:07:01:5b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Validity
Not Before: Apr 17 12:00:32 2026 GMT
Not After : Apr 18 12:00:32 2026 GMT
Subject: CN=4f21694405829f47ea9b11f9de8dc511c325bd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e7:66:9f:b2:bf:1f:aa:6d:24:ac:a6:86:55:
35:c8:60:1b:d3:0f:67:4e:97:d7:eb:fa:2d:7d:1c:
f6:b4:86:f6:df:bb:74:7e:a4:51:25:87:1b:50:f1:
12:5e:58:9a:13:72:c8:f0:94:c3:74:0e:ea:a0:da:
14:0d:04:b4:9c:f9:9a:57:59:02:30:58:55:8f:3d:
be:be:8a:08:86:3c:c5:71:04:56:3d:da:a9:aa:b6:
8e:73:85:ef:53:54:ba:3c:8c:7a:6a:cd:b7:ce:24:
58:8c:8e:81:2d:ac:15:57:c7:aa:15:83:dd:26:11:
42:71:93:ee:b6:d5:7b:6a:fa:f1:f1:d6:bb:62:ec:
f8:5e:01:44:75:b6:42:fb:b1:2c:45:4b:bd:10:32:
d9:cc:62:f7:09:c7:af:96:17:db:be:e2:67:69:89:
78:97:3f:e3:c1:b4:64:ff:e3:08:b9:10:62:0a:52:
e2:3b:f6:c5:88:e1:f8:88:5c:a0:9e:07:46:a0:3f:
b8:84:b4:a1:3d:98:1a:53:2d:1d:47:62:5b:65:b1:
7a:af:55:34:40:0c:7f:07:da:70:df:e5:04:c7:b7:
10:ad:73:8e:e3:77:b9:01:56:3d:c8:b6:a1:ac:ed:
58:6a:7d:10:08:45:f5:82:06:6c:91:61:63:d3:ef:
b8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:21:69:44:05:82:9F:47:EA:9B:11:F9:DE:8D:C5:11:C3:25:BD:3E
X509v3 Authority Key Identifier:
keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:e1:a2:eb:65:19:9b:e2:fb:05:c4:55:24:1c:65:5c:d9:8f:
d9:e2:0a:c2:2c:09:18:7d:86:34:9e:a2:04:ac:e5:d0:eb:ee:
8a:a7:b4:13:ad:ce:82:6d:9c:0a:8f:bb:e4:0a:d9:f3:63:3a:
e3:e2:0a:d9:8b:83:4a:ae:5b:7a:31:56:67:46:3f:4e:21:aa:
91:46:f4:f6:cc:1e:72:d5:f0:f4:ca:bf:d2:38:03:53:67:9e:
9a:28:4a:09:cf:ff:24:37:f3:7b:86:d5:21:34:b8:01:9e:9a:
f6:ee:61:13:84:d7:32:42:75:cb:bb:e1:47:71:d5:8b:b9:3f:
5a:1c:e6:fc:cc:f9:e1:3c:b1:07:cb:d1:fe:39:28:98:6e:10:
6a:86:8e:25:14:e0:b1:b9:48:8e:a0:c9:f4:91:a9:d1:46:be:
71:4e:b6:8e:45:32:8b:4d:d6:75:19:16:f9:9f:24:11:6c:73:
6e:1f:c8:19:fd:25:23:5a:a2:08:e3:3d:db:48:48:f2:cc:6e:
b3:70:1e:37:c8:75:1d:a2:9e:c5:77:bc:e9:46:c8:8f:29:56:
34:b0:03:7b:50:c1:bc:39:32:c7:7f:57:99:80:4d:fa:ee:28:
27:c3:0b:c9:ed:2d:70:b0:8a:64:9f:eb:bf:72:7b:a9:3b:05:
1c:f0:df:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:01:37 2026 by rpki-client