Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json)
Hash identifier: 1Fug3nXBX57IdZYOGFUs9o3rp9B6byy6MGv3Z20TeYU=
Subject key identifier: DD:C6:81:81:06:F8:77:8D:55:AC:02:F4:27:C1:4D:98:89:75:DF:84
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 019DD540C5C38D1A4CF7B526FE6149AF6A63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
Manifest number: 17E6
Signing time: Tue 28 Apr 2026 18:01:24 +0000
Manifest this update: Tue 28 Apr 2026 18:01:24 +0000
Manifest next update: Wed 29 Apr 2026 18:01:24 +0000
Files and hashes: 1: 0E-nyOZ29zT4VlvH5MYeOKciQqI.roa (hash: n1KClvottVe9Rxjk6bmhkUknz6tneHeORGIxNcy3VKk=)
2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: nxErcTYNQVwZ/wHHSM8wHU8RFJf2M8lXGdvPGXm+ZFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 14:21:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d5:40:c5:c3:8d:1a:4c:f7:b5:26:fe:61:49:af:6a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Apr 28 18:01:24 2026 GMT
Not After : Apr 29 18:01:24 2026 GMT
Subject: CN=ddc6818106f8778d55ac02f427c14d988975df84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3b:02:ee:58:35:45:b4:5c:c5:57:c0:c6:b6:
8d:8b:0b:29:1e:e6:4e:1b:b3:99:33:f4:f5:26:90:
6e:24:83:da:fe:33:0b:11:9f:38:13:97:25:5e:b2:
f1:ae:d1:05:73:a9:4f:7d:63:ef:ba:b9:ce:68:e2:
97:68:c4:7e:d6:12:16:71:71:4f:77:bb:fe:3c:40:
dc:a3:c6:4a:ac:05:f5:37:52:e7:97:b5:3e:3a:58:
22:e6:f6:23:65:51:90:6f:5f:58:f9:71:12:74:cd:
41:4f:1a:7b:ff:26:dd:e7:b1:d1:e9:a4:96:91:71:
14:e8:8b:60:13:be:51:ef:bd:6b:77:db:46:b1:14:
82:52:c2:ca:b6:31:22:19:c2:ac:c3:82:f6:b8:e5:
32:60:5a:b4:75:7a:27:62:ee:b0:e4:69:fc:38:94:
6b:a7:04:60:90:fa:13:ee:68:b0:86:85:e2:1f:0b:
24:b4:af:9c:3d:6e:03:ca:58:cd:a4:f3:63:29:6c:
0a:4d:0d:f0:0d:93:0d:d4:54:e7:f2:8d:43:b3:39:
30:38:1c:a0:be:a5:92:5b:47:a3:67:29:3c:a6:90:
78:cd:e7:07:23:47:c0:60:a8:67:b8:ea:f9:4a:1d:
54:1a:b7:48:05:c4:ed:d8:84:c6:83:19:1a:8f:3a:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C6:81:81:06:F8:77:8D:55:AC:02:F4:27:C1:4D:98:89:75:DF:84
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:f0:c3:2b:cb:9f:f9:8d:cd:52:05:bb:dc:02:2f:0c:9a:59:
b2:b2:47:45:c6:74:26:4b:69:b1:92:01:a7:24:b7:26:1c:58:
54:58:a8:06:6c:0d:a8:c1:96:03:9d:50:a8:de:88:a7:89:a5:
e4:a2:af:9b:04:fb:73:88:a1:9b:36:37:8f:83:93:69:37:00:
85:e4:db:6c:5e:7d:83:86:18:91:6d:0c:9b:3f:8d:91:e7:b9:
a0:d8:68:98:dc:2e:e2:ad:20:e6:38:cf:b8:04:66:e5:3d:b5:
44:54:fb:a5:45:fd:62:5a:5f:1a:69:09:e7:92:eb:18:7e:66:
12:51:91:8d:2b:47:cf:20:d4:7b:3e:5d:c6:ef:34:11:4a:22:
38:e3:a7:6f:a3:7f:67:e0:ad:17:24:3e:7b:43:5f:36:27:2f:
de:93:d3:fa:61:8b:91:26:1e:94:f7:5b:d0:6f:4d:8a:7f:2c:
c7:88:40:d3:13:08:1f:2e:e6:2a:c7:ae:71:98:6e:79:8e:7a:
bf:13:61:39:2f:7a:c9:8b:db:86:50:d0:0c:fb:b4:6d:81:9b:
c0:fc:fa:98:e0:ff:7e:07:fb:b9:27:5c:d8:1a:fa:91:47:b5:
b2:ac:63:37:2b:b6:e0:74:86:97:11:96:d8:bb:1b:25:d1:75:
76:ff:51:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 00:03:13 2026 by rpki-client