Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: togahp+uDSFlRx+j5Ji3lTbXvzKSKh0lGQ4A8pD/qdM=
Subject key identifier: 84:0F:9A:80:75:D4:57:CF:78:ED:4D:AA:40:BA:5B:1E:D0:39:30:EA
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 019DCE2B7AC12B4E0C734BBF7989AF5E2417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 1870
Signing time: Mon 27 Apr 2026 09:00:48 +0000
Manifest this update: Mon 27 Apr 2026 09:00:48 +0000
Manifest next update: Tue 28 Apr 2026 09:00:48 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: 8uO1Yb/V0JjXvUzbTuxhdzchxTZ/Isd35MeaCvoc/Rg=)
2: RpCy1JXxo-ZI0wF9fz-fX4KJGZQ.roa (hash: 3/7dLJaax8heeK87EWODxuRiV6OLm+WDskuSJCjvPmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:7a:c1:2b:4e:0c:73:4b:bf:79:89:af:5e:24:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Apr 27 09:00:48 2026 GMT
Not After : Apr 28 09:00:48 2026 GMT
Subject: CN=840f9a8075d457cf78ed4daa40ba5b1ed03930ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a2:14:12:bb:49:21:cc:10:3b:d9:59:17:03:
b2:a9:f7:15:c7:16:ba:81:07:32:bd:71:56:03:f3:
8e:21:6d:f0:1f:c9:4d:6c:19:bb:e7:a1:1f:62:95:
74:fe:8e:c2:a9:dc:5f:27:46:d2:4e:ce:c5:f4:cb:
29:c4:22:f3:a8:e1:ab:01:c5:20:ac:05:a4:78:9c:
7f:53:ca:14:3f:ab:73:ff:f5:35:b1:11:4c:79:85:
8f:57:43:c7:e5:9f:3d:db:31:8c:a6:f4:32:31:31:
93:77:78:14:29:8a:f8:0d:b9:da:b6:47:82:95:a9:
54:d0:35:22:ee:2d:34:4e:30:d7:de:7a:71:10:6d:
da:96:61:01:9b:b3:31:03:c9:62:20:82:e8:df:fa:
71:58:c0:15:f6:8d:e0:ba:c2:b6:f4:f5:b1:9e:53:
56:0a:cc:b1:9e:48:56:93:a5:36:ed:59:78:4e:10:
c8:55:50:31:6e:5e:df:68:cd:7d:12:39:2f:7e:43:
98:bd:6a:a1:fe:5b:12:bb:4d:20:14:21:9e:f2:2a:
d3:b1:8d:0a:1c:55:74:4c:9e:38:83:59:28:1e:45:
31:30:8c:3b:41:0d:8b:16:17:cb:ec:98:0e:0a:52:
95:db:03:3d:a2:ac:82:de:3b:01:58:e5:c4:ba:ba:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0F:9A:80:75:D4:57:CF:78:ED:4D:AA:40:BA:5B:1E:D0:39:30:EA
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d4:3e:b0:be:d4:b4:8f:e7:e4:ba:4c:20:a0:89:64:5a:4d:
99:cc:2f:40:a7:75:d0:61:fc:34:6a:32:65:22:e3:cb:db:53:
f1:1e:b4:de:e7:06:43:71:d9:79:02:b5:29:d6:b2:32:ba:d6:
6b:f9:44:1f:e1:f8:f2:37:04:6f:85:41:74:4a:2e:74:2e:be:
51:16:33:eb:77:a3:c9:0b:28:e0:b6:fa:52:93:e3:01:cd:65:
e3:66:57:cd:91:06:42:15:f4:f2:4a:d3:20:b2:90:eb:78:72:
c6:ea:7a:be:25:ff:37:d1:82:44:75:36:6a:31:5d:2c:96:e3:
73:c5:d9:bc:f4:12:02:b2:0f:7f:1f:29:1e:c0:c8:3f:df:4f:
0c:8a:40:15:fc:1f:61:cb:20:71:f5:c8:12:29:90:bc:21:3b:
6a:ac:49:76:7a:22:c2:e6:a9:f4:32:8d:61:5e:8c:04:9f:b2:
97:f6:71:ed:03:91:66:2c:ff:8b:a2:4f:42:d4:fd:81:20:fa:
cc:ad:15:eb:d1:7d:4c:b6:2b:60:08:3c:08:de:08:d6:8f:f6:
fb:ae:de:50:6e:b3:73:0d:c4:c6:83:97:33:0e:11:14:40:86:
c1:16:22:d5:6d:e5:fc:fe:be:78:31:d1:fe:07:30:f0:61:0b:
ba:97:10:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:05:31 2026 by rpki-client