Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File: IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier: hYaA1qtqnIvLA2jtmbcDaN5nTKV2CHyiSYjrE3B1eJc=
Subject key identifier: 8E:A1:8E:A3:22:D5:8F:ED:D5:C9:DF:6E:0E:D0:DE:2D:4D:8F:87:20
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 019D9A7497DA6BDCAF1AE3F3207EDC62D24A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 08:00:25 +0000
Manifest this update: Fri 17 Apr 2026 08:00:25 +0000
Manifest next update: Sat 18 Apr 2026 08:00:25 +0000
Files and hashes: 1: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: JmRizBYQpU0lmywH8vbGxeE2RGQFLixHcUQziRzn39Y=)
2: UhcVOrWI94PD7J8NZ396e7oTXmQ.roa (hash: le2/ey5cYL9OHx+rHl459Ml2HcRFUdgLBFJPfGYggHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:97:da:6b:dc:af:1a:e3:f3:20:7e:dc:62:d2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Apr 17 08:00:25 2026 GMT
Not After : Apr 18 08:00:25 2026 GMT
Subject: CN=8ea18ea322d58fedd5c9df6e0ed0de2d4d8f8720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3f:ea:0e:3a:9b:c3:c9:dc:85:86:3b:b2:fa:
ee:a1:b8:77:a6:0d:2f:e0:08:64:ca:77:58:cd:a3:
2f:59:ab:5f:b3:0e:f0:4d:30:7e:79:23:e1:3c:e0:
36:f3:d2:bc:c2:59:b9:b0:97:7f:74:97:8a:77:c6:
c1:a8:50:eb:13:3c:2b:1a:54:57:05:10:de:d0:10:
30:7e:a0:25:ca:c2:5a:71:99:b6:e2:a5:de:37:6e:
86:38:e0:6f:4b:34:95:41:18:ce:ca:e7:15:aa:e4:
50:1d:27:6f:0d:e9:42:42:4a:61:4a:c9:a8:17:fd:
11:ca:7a:d3:5f:84:07:df:fb:76:13:42:a0:a3:16:
93:79:76:a2:07:ea:65:52:e1:33:fa:c6:02:33:a7:
2c:8b:41:65:41:b7:92:dc:df:a0:5b:00:97:4d:7d:
c9:81:d2:da:f8:67:d6:bf:38:8e:62:bb:34:2d:05:
27:5a:ed:d7:46:12:ba:d0:54:07:88:90:b8:b1:7a:
d3:fd:c0:8d:b0:b9:eb:52:21:3d:e0:3b:9f:79:9a:
9c:4e:1b:ef:7f:de:ac:48:b5:1e:96:03:69:38:31:
e2:ca:cd:47:cf:65:05:21:d9:15:19:21:a7:53:0f:
cf:87:b1:ee:58:b9:04:d4:a1:d6:55:a7:c8:c5:f2:
20:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A1:8E:A3:22:D5:8F:ED:D5:C9:DF:6E:0E:D0:DE:2D:4D:8F:87:20
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:a9:4e:a1:e8:75:77:b0:ed:6e:43:45:7d:0c:d4:2e:81:99:
db:af:8e:39:21:cf:2a:85:3c:bb:c8:6a:fb:d1:50:e9:b2:1c:
ee:7c:f5:d2:df:e2:99:df:60:2a:56:fe:95:93:d8:f3:d3:23:
a6:f4:80:d8:ae:c6:42:af:50:59:ba:5f:ea:a8:1d:d7:17:ed:
a6:df:a8:12:ba:57:56:c3:a4:36:c9:8d:c4:66:18:ee:67:39:
70:fa:3f:3c:c0:5d:28:37:86:be:67:9b:0c:df:95:81:aa:be:
39:8c:a3:46:5a:57:9f:72:f3:3a:32:18:d2:9b:72:75:ed:73:
f2:7f:d5:72:fe:1a:7a:9f:4d:cc:32:42:b5:76:1e:cb:1e:06:
3a:28:3b:16:cb:38:94:e8:79:04:af:34:a5:49:6d:5d:95:9c:
2f:5f:12:6c:e3:4b:6a:a8:08:ce:10:b9:e0:8f:6b:bb:8a:e1:
c2:55:97:50:f8:16:90:a7:10:b6:f7:32:d9:b6:d3:8e:09:02:
8b:ef:ca:ea:92:00:65:c3:8b:ba:96:3b:fe:ea:9e:e5:16:e5:
b7:c4:1e:5c:32:9b:0a:b3:b4:b5:1b:e5:1a:73:ed:89:9f:be:
e7:12:d2:66:a8:da:2a:a4:11:0d:cf:39:33:e5:2d:9b:be:8e:
a0:9b:fc:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:35:51 2026 by rpki-client