Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json)
Hash identifier: dym7VL110FikoKdXlNK5iizfGMbYQ9sq0Qt+pAzAews=
Subject key identifier: DD:24:7B:39:BC:00:68:D8:F0:E7:8D:A6:E2:7B:8E:F5:6A:4B:03:CD
Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Certificate serial: 019D6C53BA27707111D11AA2EE1FBEEAE708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
Manifest number: 18CC
Signing time: Wed 08 Apr 2026 09:01:59 +0000
Manifest this update: Wed 08 Apr 2026 09:01:59 +0000
Manifest next update: Thu 09 Apr 2026 09:01:59 +0000
Files and hashes: 1: 16oj0KN5oVRu5RHVQyd660OcQhs.roa (hash: TLQlSbdPdjZyztttOHY25ysKwRVnJ6KupToVN+WGfno=)
2: 3vf-Yp-2fomUCGxxsuFuZBkPGGQ.roa (hash: LZ4veM7bkOEXkp7bq57kS6QDZIvIWlhUv4Gp6OCzQzs=)
3: YbRyztzAYyU1EQ0U7vEJD7T7-GQ.roa (hash: lc8H8Or878nYqwgvLpQaR10DBBjaXOJCSgikSKNMpVE=)
4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: GGXSBArdXs3HNLc6RqZl3WVO/CZXc9UUcVj8KyED8S0=)
5: z-6NzODp7V-uHJv_U1uqHFUWgdY.roa (hash: Wpr01XsM6HL09hxowv58BJM3hnt+sJz/9fzPyIg61hU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Apr 2026 09:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6c:53:ba:27:70:71:11:d1:1a:a2:ee:1f:be:ea:e7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39
Validity
Not Before: Apr 8 09:01:59 2026 GMT
Not After : Apr 9 09:01:59 2026 GMT
Subject: CN=dd247b39bc0068d8f0e78da6e27b8ef56a4b03cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c9:fb:79:56:81:86:b5:cb:67:c4:07:4e:78:
5e:5f:6b:bb:ae:67:4c:a0:70:92:d9:f9:4f:90:c0:
63:71:63:36:cf:73:e6:17:b2:34:23:c7:33:5e:a2:
59:3d:13:1c:6d:2c:21:d6:92:97:b2:04:10:f8:03:
36:a2:14:b2:0a:97:a8:4d:a0:89:67:d1:89:5f:c8:
96:cc:f7:db:4f:5f:40:fd:b9:b6:b2:bd:de:2f:2e:
bb:14:d4:fd:cb:db:7b:27:00:f7:d7:ff:ee:21:58:
8a:76:41:dc:6d:9d:32:7f:7b:76:bb:a8:67:5d:9e:
72:58:42:b0:98:ad:cc:26:8f:e2:7d:51:41:06:4a:
08:79:65:99:8b:17:5b:d9:d6:79:b5:3c:cc:60:40:
3c:22:8f:2b:26:0c:e6:04:52:9c:82:8a:78:2b:d3:
0f:7c:e4:87:f5:c0:e2:be:48:10:02:ee:32:84:09:
d2:cc:de:da:f8:3f:cb:34:1b:18:9d:14:7c:01:19:
b0:37:9c:e7:9f:d0:4c:80:f7:25:b8:33:2c:b9:08:
6d:e9:4d:c7:71:3d:63:cc:1b:38:d8:53:1e:4e:fc:
b4:5b:bd:41:3c:bc:58:fc:58:fa:d6:a5:31:45:04:
b1:5b:6f:b0:86:bb:9b:45:82:dc:f7:b6:e9:7a:b1:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:24:7B:39:BC:00:68:D8:F0:E7:8D:A6:E2:7B:8E:F5:6A:4B:03:CD
X509v3 Authority Key Identifier:
keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8b:37:59:b4:5e:c4:9a:bc:43:2b:9c:c2:da:77:d5:1d:d2:
f1:38:e8:47:81:80:ee:0a:d5:c6:ec:c9:2a:ec:f7:da:34:0f:
d4:28:a9:a0:2e:84:03:30:03:75:6d:cd:e2:f6:81:aa:49:27:
3e:42:61:61:8c:a6:5c:96:bb:e2:3a:d1:85:0c:6a:a9:be:1b:
94:54:1a:b0:de:a8:50:5d:60:3a:35:88:4b:09:66:be:e4:3c:
4a:3a:bc:5f:02:f7:f3:c9:f9:8f:85:04:ae:05:e6:d0:18:66:
6a:8a:3d:6f:47:9a:eb:05:e2:1c:5a:9a:b1:93:b5:bc:b8:e7:
30:0e:ce:83:bd:93:b0:a0:89:13:7f:3c:0a:fc:fa:ae:52:0d:
83:51:74:e8:72:10:12:c6:05:37:fd:62:c4:fa:92:9f:fd:3a:
7d:42:79:23:57:3b:a4:aa:58:80:dd:a2:d1:e2:c1:8f:27:e6:
74:3c:86:d6:7d:c1:11:41:63:4c:1e:8a:34:52:e8:3a:44:44:
f6:e4:33:e4:23:53:c2:a6:a6:e6:48:bd:fe:9d:4f:13:6b:c7:
91:ad:bf:ff:17:5b:f8:b6:ce:36:5c:7c:c8:3d:cd:82:d5:40:
4d:d6:eb:c1:11:17:55:60:97:80:bc:2f:3a:35:df:94:4a:8b:
0b:0a:50:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 8 17:00:26 2026 by rpki-client