Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: zCmbvSQy1DDJIupd54Cuwng5SgPz6hAGi/cV/D4cpkw=
Subject key identifier: 78:20:BB:4A:4E:BD:47:9F:C8:FD:02:5A:56:AC:2D:DB:E6:E8:AB:45
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019E28B9794C1920DC3262DB021DEB09428B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 18A0
Signing time: Thu 14 May 2026 23:01:44 +0000
Manifest this update: Thu 14 May 2026 23:01:44 +0000
Manifest next update: Fri 15 May 2026 23:01:44 +0000
Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: ZUVOilbr/MqUt3PkmEo5RFAuchtrPQFMvaG7p78RdwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 23:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b9:79:4c:19:20:dc:32:62:db:02:1d:eb:09:42:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: May 14 23:01:44 2026 GMT
Not After : May 15 23:01:44 2026 GMT
Subject: CN=7820bb4a4ebd479fc8fd025a56ac2ddbe6e8ab45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:53:50:3d:36:7c:2e:94:28:7e:4d:42:27:bf:
52:c3:2e:32:63:99:81:bf:c5:c5:b0:33:f4:37:f1:
fc:ad:8a:9d:a8:0c:96:c9:2b:e1:c2:2c:60:1c:b5:
c6:d4:66:bc:81:65:96:f4:f7:a7:42:54:26:40:a8:
8f:b9:65:81:6b:27:4d:b7:e0:51:d8:5e:e8:f9:49:
2a:8e:4e:5c:04:04:af:5c:97:a5:93:d8:ca:8e:2f:
63:12:65:1e:2c:e6:4c:ae:11:00:fd:57:a7:cd:31:
d3:36:d5:e9:38:fb:63:76:d3:3c:10:64:61:bb:a3:
d0:b2:72:5e:1f:6e:15:53:2c:7f:89:91:36:2e:0d:
9b:05:66:cf:5f:d7:f1:07:a7:c6:29:b4:41:9a:bb:
ba:57:48:9d:d7:53:e1:1e:22:ab:7d:64:2a:4b:9d:
0c:fe:29:86:6b:f4:bf:fd:86:2e:1c:e9:7e:8d:76:
c1:38:99:0f:67:98:da:7b:9f:46:0c:04:b6:71:f9:
ef:2e:fd:73:db:48:3c:31:b1:d6:62:a9:a3:da:1f:
5e:e6:25:59:e4:3e:ef:6a:3a:6d:6e:2c:f4:21:92:
7b:54:20:b9:3f:5f:d4:c0:7b:ff:4d:b1:90:ab:bd:
d6:46:69:3d:8b:bb:e3:a1:91:78:49:68:dc:28:40:
9e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:20:BB:4A:4E:BD:47:9F:C8:FD:02:5A:56:AC:2D:DB:E6:E8:AB:45
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:93:83:72:e0:4b:49:83:76:98:d6:1b:25:f9:e9:57:af:0d:
c4:61:a1:89:48:66:fc:ed:87:be:e5:54:9d:3e:ab:02:01:cf:
c4:37:4d:da:0b:f5:9d:be:b6:47:c7:bb:15:b6:28:82:4e:86:
8f:8c:00:e9:11:8c:52:13:68:28:f7:ce:b9:19:fd:e9:82:32:
db:31:29:8f:b6:3e:b5:14:ae:69:b2:c2:51:47:1b:e4:6b:ba:
a1:55:bc:d4:07:df:15:29:65:d7:c6:a8:af:05:11:22:eb:d8:
47:4f:bd:b5:d7:fd:62:0f:a4:55:ee:7a:b5:c3:7c:ac:04:21:
5e:e4:ae:e1:27:29:44:93:52:b5:8d:46:40:ce:ec:f5:99:1d:
e2:16:3d:02:e2:f6:b0:73:d0:06:37:44:57:58:3c:f9:b6:97:
ce:57:7b:d9:08:0a:f6:83:47:de:17:e9:bc:29:2d:fd:79:e2:
8f:84:fd:43:74:3d:1b:65:44:ca:13:35:9e:fe:e5:43:5f:88:
5b:84:34:3c:43:06:f5:78:aa:2e:82:57:2b:a3:dd:f6:70:d1:
1a:f9:dc:bd:d8:88:97:83:11:a0:fe:aa:46:24:1c:b4:7a:9b:
9a:ae:21:a3:4a:49:f1:52:e3:10:29:94:1b:17:7d:df:d3:ad:
90:24:8f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:07:02 2026 by rpki-client