Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: 2N6Wfq34Zjh0FHZe/MwH0lqjLo+mgJHICNKwkhCVGkE=
Subject key identifier: 48:0B:1F:5D:8F:0D:73:B4:5F:C5:A0:76:3F:F2:BB:BF:62:01:15:35
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 019DCF74C48869D281A33092BE49FDD426ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 15:00:29 +0000
Manifest this update: Mon 27 Apr 2026 15:00:29 +0000
Manifest next update: Tue 28 Apr 2026 15:00:29 +0000
Files and hashes: 1: PtYo6MwEWy1vpndhzACUN02erEo.roa (hash: 3/Pp/u1BR3pOxJGz3l7tc76JM7PepsEG/RPZ3ABSNvU=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: 65BOKpX/mBJcG6nxJX73HpH66TuF3bPvGL5St5uGTZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 15:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:74:c4:88:69:d2:81:a3:30:92:be:49:fd:d4:26:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Apr 27 15:00:29 2026 GMT
Not After : Apr 28 15:00:29 2026 GMT
Subject: CN=480b1f5d8f0d73b45fc5a0763ff2bbbf62011535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:24:60:c9:7e:41:1b:40:38:17:73:6c:29:82:
18:09:3b:42:2d:4e:1e:a0:5b:4d:f6:fb:17:7d:18:
3c:2f:09:f5:79:c1:69:d0:3f:61:34:22:4a:08:35:
f1:c2:69:74:07:42:b2:f1:0b:76:16:64:c9:97:c4:
5d:2f:39:6b:dd:e1:dd:cd:6c:b8:ef:98:9f:9d:9b:
d3:ac:e6:f3:f3:6e:05:a3:d4:6d:52:0b:42:4f:09:
41:79:ba:d4:30:31:30:7e:68:d1:06:b5:74:21:39:
89:3a:f9:13:87:d1:10:98:8e:9a:7c:47:f5:89:f3:
ab:41:0b:f5:28:30:34:07:96:52:13:fe:45:e5:68:
9f:c1:d1:1a:e6:16:29:24:e5:02:04:4e:1f:35:9f:
bd:5b:fb:50:14:53:a5:a8:0a:46:92:96:07:67:ca:
85:50:13:7f:40:1e:65:11:94:f2:ce:19:a0:b3:0c:
8e:ab:e3:06:c8:7b:8a:2a:12:a1:fb:44:91:b6:cf:
1e:21:52:f1:c1:9a:9b:f0:33:25:f3:45:e0:56:da:
99:57:5d:14:e7:c5:6b:70:77:51:1b:c8:db:f1:6a:
aa:83:db:de:48:86:4f:db:22:82:5c:db:56:7a:1b:
57:11:74:cc:33:ed:b3:b6:60:1c:cc:e5:cc:04:22:
ee:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0B:1F:5D:8F:0D:73:B4:5F:C5:A0:76:3F:F2:BB:BF:62:01:15:35
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:8b:0f:67:71:89:66:8b:c7:66:b3:29:cb:14:02:3b:c6:b4:
90:5a:fa:8d:9e:a1:5e:4e:7c:d9:b4:42:ff:b8:b5:cf:cc:9d:
ec:66:b1:72:3d:14:73:ac:ef:0e:70:be:62:72:42:5a:40:07:
57:8e:78:1a:e3:ad:65:60:5f:ae:95:17:70:16:35:97:87:1c:
ab:c0:29:cd:82:0c:09:5a:45:83:89:b4:11:29:c1:3c:14:7f:
40:6b:e1:16:90:d6:fc:56:75:28:7a:d3:a3:c5:5c:65:45:32:
8e:23:46:89:f7:10:0e:e7:cd:be:20:61:0f:a7:bf:fb:db:32:
a0:3b:24:1d:65:b6:e5:2b:bf:ed:73:b7:6a:c7:0d:c2:74:ce:
1b:19:af:51:34:b4:25:79:5e:37:4e:23:0e:df:fa:f4:28:29:
33:61:a8:ee:57:c7:34:c5:48:a9:57:ea:56:38:f6:7d:92:1a:
95:af:d8:9e:61:3e:6d:99:ce:91:75:cc:82:94:4b:fb:97:0f:
98:83:a6:e1:ac:df:f1:f2:ee:8b:ac:a6:94:56:93:af:09:72:
94:60:78:84:4f:74:c2:74:fc:0b:a7:88:b1:8a:04:61:3c:dc:
0f:a5:3e:93:09:59:12:f7:93:f0:0a:d6:b9:35:35:21:f8:9b:
e0:4b:79:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:50:01 2026 by rpki-client