Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json)
Hash identifier: kloicQk6YP2lwN7vm/s6Q8svSmmTNsvLEuK0dOetskI=
Subject key identifier: 5A:AE:DA:77:0A:D2:E0:64:C2:9C:90:62:5E:34:16:15:D2:50:47:DA
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 019DCD87682BD6FE32FA87B39F91A32030DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
Manifest number: 18DD
Signing time: Mon 27 Apr 2026 06:01:36 +0000
Manifest this update: Mon 27 Apr 2026 06:01:36 +0000
Manifest next update: Tue 28 Apr 2026 06:01:36 +0000
Files and hashes: 1: Ra_O1tJPqxceyq_rAhiwFMOrKjw.roa (hash: Rmyhdy6TeiiXlYpWyq2MVfXDcJgMeLMhA0axqCrhBSg=)
2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: GRA7HzaLp8EnepPxH0TaFWiMaGSjqYKyFF0+Hzo3s5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:87:68:2b:d6:fe:32:fa:87:b3:9f:91:a3:20:30:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Apr 27 06:01:36 2026 GMT
Not After : Apr 28 06:01:36 2026 GMT
Subject: CN=5aaeda770ad2e064c29c90625e341615d25047da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:11:39:20:4d:fd:89:7f:d7:47:55:d7:40:
e4:fa:23:3b:3f:c7:88:62:d7:df:6b:71:31:c1:79:
44:9b:30:cc:0b:50:50:55:23:b3:9a:7b:eb:6b:cf:
40:6a:59:01:1d:17:82:11:ca:92:b4:16:8e:c0:7e:
5b:7e:48:72:7d:cd:a9:a1:89:bf:d1:70:31:92:50:
1e:37:06:9c:f4:74:bb:f4:53:d5:59:7b:fb:13:16:
2d:39:84:28:c6:99:4a:11:10:2a:35:4e:14:53:df:
1e:8a:aa:00:fc:f9:5c:39:07:6f:bb:da:fc:89:80:
0b:1e:69:93:02:9c:6c:04:2f:60:88:8a:96:9e:96:
7a:d6:d7:82:e0:71:98:6a:72:7b:75:bf:5c:61:f1:
1f:a6:c6:f0:7f:27:5b:60:ff:38:34:3f:83:d4:1b:
14:d0:9e:aa:3b:39:e1:12:ed:50:a8:42:c1:11:65:
84:d0:02:7c:10:4b:91:c3:d6:09:b2:08:ca:e9:1d:
b0:62:5f:c5:f3:be:67:38:c5:0b:1b:07:cb:49:25:
14:3a:f3:c0:91:09:d2:a5:78:af:1a:cd:5d:ad:4e:
8d:0e:11:b7:06:63:c5:97:e0:9e:be:9f:10:05:b3:
16:09:e2:1c:b6:12:64:75:5d:5c:7a:c1:f9:24:ed:
76:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AE:DA:77:0A:D2:E0:64:C2:9C:90:62:5E:34:16:15:D2:50:47:DA
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:63:f4:7a:e5:1a:68:bd:7c:62:61:15:ec:15:69:c8:e5:05:
41:d7:cf:5b:bd:5e:9c:3a:48:0a:ff:69:69:8d:99:a1:82:a9:
1f:8c:90:8f:09:4c:b6:49:df:80:8a:2b:e8:02:cc:ea:e9:0d:
08:91:8c:cc:25:c0:07:2a:56:fd:61:50:24:ca:9a:36:77:3b:
cf:32:b3:ac:de:86:b3:81:5e:88:74:fd:a0:ed:89:84:e4:b4:
50:a9:d6:cd:96:eb:39:b5:3a:7a:88:3a:e8:25:2b:66:cb:1f:
45:43:59:3e:13:e5:9e:50:d4:30:e0:59:e3:84:02:11:6f:4c:
73:e5:ea:63:36:31:cc:37:d1:99:54:fd:ae:8d:f2:b3:29:fd:
47:b7:8d:39:ce:4a:72:b4:16:bd:76:ea:13:74:36:b4:1b:0d:
dc:b6:f2:03:c7:5f:c5:e9:b2:2f:1a:d6:39:23:7a:09:00:49:
8e:90:47:d5:dd:a5:d7:2d:cc:9d:56:1e:13:31:7f:25:98:70:
b4:d6:18:9b:0e:6d:f8:49:4d:8d:ec:ea:53:76:d4:97:2b:ca:
73:af:28:02:c4:9d:e2:ea:64:d9:4c:e3:61:89:97:ef:b6:89:
19:44:38:69:33:c0:7e:6e:21:64:0e:43:14:3c:3c:60:8e:56:
f0:4f:33:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:00:04 2026 by rpki-client