Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: UriwpqT3S4EN7k09gOpteZUIWolHTTyd4taIfeb1sd0=
Subject key identifier: 74:D7:86:BD:C0:03:68:3C:52:BB:30:74:CB:7E:3E:02:27:E8:F4:52
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 019DB3FEA1D0982E452537C370A21C8C0C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 120E
Signing time: Wed 22 Apr 2026 07:01:42 +0000
Manifest this update: Wed 22 Apr 2026 07:01:42 +0000
Manifest next update: Thu 23 Apr 2026 07:01:42 +0000
Files and hashes: 1: rFQ04GqSU9DTULqn8_NPkqKbWSc.roa (hash: 8XgwklO153GBrJc2s4PKkyGugWT/fq0MyA5r4Aq8lKY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: VAyfM5M3anBmqYkKaBxOUn2P1tKs0D0H5d7LJden93M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b3:fe:a1:d0:98:2e:45:25:37:c3:70:a2:1c:8c:0c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Apr 22 07:01:42 2026 GMT
Not After : Apr 23 07:01:42 2026 GMT
Subject: CN=74d786bdc003683c52bb3074cb7e3e0227e8f452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8e:0a:40:d5:59:00:06:8f:00:c1:0e:1f:28:
0c:a2:00:5e:73:30:21:1a:fb:43:b6:28:ad:81:a7:
b5:2f:90:05:63:52:d3:df:d1:dc:f3:e1:c5:ca:99:
d3:3d:1a:78:d9:e3:d2:08:24:74:4f:a4:8b:ce:e7:
f2:c1:43:16:57:ee:c4:a6:99:bd:e1:dd:97:20:5b:
0d:15:4b:5d:bf:bb:bf:ec:2e:15:12:9f:12:4b:be:
70:71:a8:46:2a:db:c3:ec:e8:40:5d:1b:5d:34:02:
f8:e5:dc:37:9a:f1:6b:28:70:d7:91:98:41:d9:51:
62:e3:ea:c6:0b:ab:f9:3a:ba:36:5c:1d:86:64:4a:
94:03:d8:2c:0b:f6:d5:02:2f:b6:26:e6:62:b8:64:
8f:f8:08:c6:86:2d:6e:1c:1f:40:6b:a2:0f:64:a3:
d7:a8:f7:bc:a4:be:2b:4b:18:00:07:5b:65:1e:3c:
e8:8f:d3:a8:4f:78:fa:6e:b2:73:33:b2:81:34:0a:
e0:48:c5:1d:af:e5:f8:d7:b2:e0:6b:50:9e:2f:65:
37:4c:67:8a:0e:13:29:77:92:ca:ca:64:41:45:2d:
e1:c3:ab:3e:85:95:83:97:2d:ae:c6:47:c3:b1:59:
3a:82:c5:7b:54:26:42:0d:d1:f1:fd:6e:87:5c:10:
aa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D7:86:BD:C0:03:68:3C:52:BB:30:74:CB:7E:3E:02:27:E8:F4:52
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d1:9d:25:d4:86:f6:aa:be:69:1b:93:26:ef:dd:aa:d6:ac:
9b:88:f0:35:05:f1:24:56:86:80:58:ee:09:21:e3:e2:8a:2e:
15:55:d2:0a:6c:c6:10:c7:d0:fb:ec:a2:fe:f3:cb:70:4a:ea:
f2:34:a6:1d:8e:61:9c:dd:eb:cd:b0:8a:6a:32:4a:65:b1:64:
19:70:dd:8d:25:d5:ba:69:1b:e3:5f:95:7c:b0:ab:86:e7:b8:
86:79:15:8d:3c:84:1f:56:71:45:4d:5f:b9:78:95:9d:f4:e4:
45:cc:88:e7:4f:b8:3a:53:c2:f4:a4:0a:92:ce:2e:4f:07:f4:
65:bc:f6:e4:94:4d:a4:ee:e7:18:af:39:01:ae:44:c1:e9:6a:
78:22:ea:d4:63:78:42:31:5f:43:d0:5e:79:70:fd:01:b3:38:
07:4b:93:f8:3d:69:94:8b:d7:f0:dc:a9:83:ce:20:cb:a1:f2:
4c:09:31:e3:21:2f:bf:3f:c2:d6:5f:78:e2:ed:dc:e7:44:4a:
c1:ca:d5:cd:b1:8d:a9:c7:6a:f4:2a:07:96:30:f4:c9:ac:8b:
63:b7:e4:99:49:19:cf:ed:40:cd:a3:be:f2:74:ca:c5:93:d2:
f0:f2:d0:49:02:bc:f2:64:2c:ea:e9:3b:74:68:72:b0:4d:3d:
18:e4:7e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 10:26:30 2026 by rpki-client