Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: OctQwtlTyRT5JbjYIZ7JviSikNt/LuKvJR+SMZRMkuY=
Subject key identifier: 3D:72:6A:D6:3F:6D:9C:E5:9D:D3:60:A9:8C:30:9A:E5:A9:D9:9D:6E
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 019D98F41133425D16E4631A97982D1F0E94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 18BC
Signing time: Fri 17 Apr 2026 01:00:25 +0000
Manifest this update: Fri 17 Apr 2026 01:00:25 +0000
Manifest next update: Sat 18 Apr 2026 01:00:25 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: dTQ4vWqFdUvo9Kx22JHheCZ3uHHuvxZ6map+cTwytAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:11:33:42:5d:16:e4:63:1a:97:98:2d:1f:0e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Apr 17 01:00:25 2026 GMT
Not After : Apr 18 01:00:25 2026 GMT
Subject: CN=3d726ad63f6d9ce59dd360a98c309ae5a9d99d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c1:28:49:ef:e8:1b:9e:8a:1a:53:71:e0:8c:
c2:50:e6:b9:09:9d:d7:39:d8:08:1c:02:d3:4d:85:
78:37:d1:60:1c:ef:14:68:d7:1c:84:ac:4e:a0:15:
1d:75:74:23:61:5d:9c:ec:63:5e:07:c4:91:15:59:
df:1e:e4:69:5e:78:f8:39:b8:39:7e:4b:79:4b:4a:
49:14:60:93:a5:1d:f3:e9:1f:da:e6:41:b6:56:5c:
22:58:07:01:14:f2:ab:00:0b:8f:c3:67:c7:0e:8d:
86:8d:a0:6e:c7:ce:93:8e:87:c3:e0:24:e9:09:0d:
b2:d5:d5:2b:65:bc:4e:88:52:d7:89:fd:f3:87:68:
0c:07:cb:ab:0c:6f:26:6f:3a:ec:69:2d:01:21:4f:
f5:59:cf:17:47:9d:4e:64:2f:76:fd:6c:bb:ef:db:
b3:a6:c0:22:dd:6f:39:31:3f:ba:c3:ff:2c:4a:6c:
1e:05:17:1a:c5:0f:08:26:1b:ee:8e:cf:aa:02:77:
b1:98:9c:c6:a7:b7:e2:49:8c:9d:40:b3:3c:94:9e:
4b:1f:4a:2d:0f:0f:a1:76:08:c2:5f:e2:91:a6:46:
0e:a6:d6:fb:b2:62:51:15:ab:70:1b:ea:f1:6f:c1:
0f:e8:fc:8d:80:bc:59:d7:0a:22:6e:f8:68:9f:32:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:72:6A:D6:3F:6D:9C:E5:9D:D3:60:A9:8C:30:9A:E5:A9:D9:9D:6E
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:c9:5f:45:7e:63:73:4c:70:e4:77:e8:6c:3c:47:96:b8:6e:
67:93:75:a1:39:b9:2b:74:60:36:7e:6e:98:da:92:da:f0:41:
34:b7:63:36:63:b9:db:35:29:1f:15:7d:07:5d:80:a3:7e:0b:
3c:c6:2e:69:af:86:37:e9:a2:3f:86:89:ac:a5:1b:d8:f3:bf:
ce:fd:02:55:7f:48:b3:1f:7e:88:e2:0f:a0:22:bc:1d:68:fb:
7b:f4:39:31:d8:54:01:50:ea:ab:84:7c:c9:a7:b0:ea:3d:29:
4f:9f:0e:c1:39:b8:c4:2c:4c:75:a6:ad:aa:c5:ce:f5:84:ec:
4d:ab:a6:9d:89:99:df:22:c8:ce:e4:ce:2c:fe:58:91:2b:eb:
32:87:0f:51:36:d9:39:0d:3e:ae:12:e8:d8:5e:10:1c:cf:d1:
3c:db:5e:3b:ee:7d:c1:89:f2:04:cb:0c:21:4a:1c:50:11:ff:
c4:30:5c:2f:a2:ba:da:b2:33:26:c4:96:b0:40:45:68:cc:0e:
9a:87:8f:38:a6:6c:d1:c3:d0:65:f5:b6:fd:ac:f7:3c:10:f6:
9c:b9:ae:de:89:44:4d:ba:40:60:e8:4d:31:14:fe:46:b8:4b:
cc:d2:39:dd:ae:f2:53:a4:bb:5b:28:09:84:47:0e:25:c7:75:
e1:e2:a0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:08:00 2026 by rpki-client