Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
File: Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft (raw, json)
Hash identifier: B97dw42HWTHJglTTbqaSwjLXoakKDPi2fMCJmbUzoEA=
Subject key identifier: A0:FE:5A:5B:A4:A3:DB:FB:46:6C:40:D5:CA:22:73:2E:D9:08:7F:7A
Authority key identifier: 0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42
Certificate issuer: /CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042
Certificate serial: 019D9AABDF1A1072C0B6B6FE9594A04EC20B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
Manifest number: 18CA
Signing time: Fri 17 Apr 2026 09:00:48 +0000
Manifest this update: Fri 17 Apr 2026 09:00:48 +0000
Manifest next update: Sat 18 Apr 2026 09:00:48 +0000
Files and hashes: 1: 6GPblw6DV3CHVZNWZ0QdaVy6klk.roa (hash: DqtHDBDEhiMvYHUrl8XYbcaTNh8BiLqth+UKaws4rT8=)
2: Bzo_d6zW3tj-cs4yT8d3sKOXlfg.roa (hash: sB4IjXQ2q1JliT65t5pMashaLGv9OdpiFjT65GllIOg=)
3: Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl (hash: 1SRKqDnXwndvjeOOcWSsw7wwFdkmn5AkENqpJK9D3Qk=)
4: E3W4jp5zsoikKWLmA1V7bWlcpV4.roa (hash: YJ9yEvPcrd1MOHEooUf+VZebkz+BFG/oUSCxEMHiKbk=)
5: aUScLYE7hWlZLrttrbL09JUvQA0.roa (hash: x+eRx80jxSLOtFgW7pQIqcwn52mE8qpARjfDhLVRoV4=)
6: nW3IwE5roVsnBgu9z0_CgUuzIkE.roa (hash: W9YQgHEfBWzENVLpd45FQgo4EBkxudFGiV0/tWzb3uI=)
7: oJikVGeGH47Pi9ETf25ZC2y534A.roa (hash: O9mHTIlUIZNrSBo/sFV/Ngmx3bneDcEBab5/fbZjQkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:df:1a:10:72:c0:b6:b6:fe:95:94:a0:4e:c2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042
Validity
Not Before: Apr 17 09:00:48 2026 GMT
Not After : Apr 18 09:00:48 2026 GMT
Subject: CN=a0fe5a5ba4a3dbfb466c40d5ca22732ed9087f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:79:80:cf:88:3b:83:4b:c3:11:7d:70:83:0f:
0d:bf:a5:80:a7:f8:22:c1:6f:12:fa:41:83:31:cb:
a7:27:38:f8:44:08:00:92:50:98:22:98:f6:da:c6:
a6:b0:d2:4c:92:19:46:b5:72:86:f1:51:e4:59:b4:
99:98:f1:50:87:f2:61:49:ff:66:69:2e:fd:38:89:
19:db:1d:6f:e5:c7:22:17:a1:a1:68:4d:9f:6f:0a:
60:5c:07:ef:7d:2c:f4:07:bb:bc:6a:fc:d1:86:3a:
60:15:ba:a3:9d:17:0e:ac:fc:73:89:bb:52:6a:03:
a1:1f:f3:78:a4:c6:bd:8e:29:20:65:2d:6f:86:74:
4a:09:2e:7b:7d:26:fc:46:9b:0a:a8:93:79:af:33:
c7:ee:0c:77:9f:92:d0:31:44:e8:42:a4:2f:68:b0:
fc:fe:9c:76:1a:94:47:03:19:26:5b:80:d3:c9:a0:
d4:6a:f0:de:b3:fb:f2:84:a4:e2:37:b4:7a:2e:1c:
b1:82:2d:46:b7:6a:2e:3b:62:9c:6c:f0:eb:c0:18:
24:86:81:1b:1a:99:36:80:93:14:91:e6:41:bf:49:
82:be:4f:2d:69:e7:53:94:0c:6c:5f:e2:05:de:92:
a4:74:4f:fc:90:ef:5c:fa:1f:86:e7:1e:77:8b:fe:
8a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:5A:5B:A4:A3:DB:FB:46:6C:40:D5:CA:22:73:2E:D9:08:7F:7A
X509v3 Authority Key Identifier:
keyid:0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:68:ad:3b:bd:c8:a2:b4:d7:57:8b:59:97:23:bf:f5:be:ae:
c8:d7:04:68:26:1c:85:be:a3:63:67:ce:c4:b9:54:9c:db:ab:
da:06:33:08:03:0e:29:eb:ac:47:58:2a:46:87:7d:f1:45:a9:
99:0c:5e:a4:24:96:a7:9d:5e:8d:e3:3f:21:0c:67:d1:96:4f:
83:d9:eb:69:d9:39:27:4e:2e:a2:5a:f0:c6:a1:e6:50:e9:c6:
6c:f2:35:a8:a3:e1:c0:83:aa:ba:31:d9:04:9d:64:ee:44:46:
84:cf:0e:9b:e2:1f:91:c0:35:2f:f4:9c:22:a2:52:0d:5e:54:
91:d1:79:90:05:83:87:47:d1:da:46:c6:74:bc:7f:43:2f:03:
78:61:60:6d:a3:18:30:19:23:f8:ba:79:be:0a:00:d1:b7:84:
26:f7:41:8d:41:af:81:e0:85:e0:b6:66:fb:39:65:01:83:80:
c1:56:d9:30:24:2e:a7:02:a2:11:df:d5:78:b7:2d:e6:67:94:
e5:de:7b:1e:8a:3c:c3:22:13:24:57:6a:ab:d8:ed:d9:b3:96:
d8:f9:60:21:69:71:44:75:f1:2e:95:e7:19:2c:60:c8:d4:d7:
1b:01:8c:7a:ae:9a:30:b7:34:92:e4:fe:a4:9d:00:44:b4:13:
c9:09:3c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:38:12 2026 by rpki-client