Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: yWduNZOaR9dpfVD0QcOvc71d4/kpJdVRCG6vw13E49s=
Subject key identifier: C9:AF:40:51:0C:F7:3D:20:76:79:AB:B4:BD:D0:90:82:60:1C:4B:60
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019D38D36EC1520A970C42335BB85069CF27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 18AD
Signing time: Sun 29 Mar 2026 09:01:13 +0000
Manifest this update: Sun 29 Mar 2026 09:01:13 +0000
Manifest next update: Mon 30 Mar 2026 09:01:13 +0000
Files and hashes: 1: 8JTBQJyqUxIFa2P7t0W6NdfJ7CI.roa (hash: bvR7uwT6CerdByDmx1xzty2bHjJMPuqJsJHdeopKM9Y=)
2: IAcgHGi2lFpmozwldAdI6otCCf8.roa (hash: BMvZpTPd4wPptVWAuFWagP2MsiisY343W0Dlxwe5jk8=)
3: PGdzQPbVNWOAAR-X1BVXtgxofwg.roa (hash: dnLVHCkUAzZBzW5KJgWgdjrJ3f9Bmjq6lfV0HEQ9YaI=)
4: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: dIBtBP3BPNEVVB2n5WHvYTBlp2n63Fum1c1okGpfe7k=)
5: UeKejWBuRMBTzBVkphHiwU6F1G4.roa (hash: 4Va/WDHUaUbqMZBtGC/uemvvWN5D2KRgvotniu/r8z8=)
6: bspFglFUNNfB3BfctmrtidkBJJ0.roa (hash: b4qzed65X33LBM+fRSUuJ6eNd3msfTHJCKt5GOuVSMY=)
7: qz9PIkYKwP9WQn8ECobRGBHsRvQ.roa (hash: UZfIONpLoP6LhX/7gUJb7axOulXZjtNAWJUg7Z+a+S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:6e:c1:52:0a:97:0c:42:33:5b:b8:50:69:cf:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Mar 29 09:01:13 2026 GMT
Not After : Mar 30 09:01:13 2026 GMT
Subject: CN=c9af40510cf73d207679abb4bdd09082601c4b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ff:3e:65:ca:cf:aa:f4:c5:3c:d1:c4:7a:b1:
ec:98:6a:54:55:3a:e0:ac:52:d5:95:76:4b:37:21:
ff:e0:df:48:fc:d5:a4:3c:2c:f2:36:08:77:04:4a:
8f:5b:7f:93:fd:7d:d2:61:f5:8a:e7:03:9b:26:0a:
1f:56:c6:0b:a5:07:93:66:74:9c:47:6f:d6:96:6b:
dd:db:7c:ae:a6:52:88:bf:a7:9a:5f:f8:70:05:d4:
7d:5a:cb:88:aa:b4:f3:17:15:56:a1:78:6b:f0:df:
02:ce:a5:2c:5a:a0:9b:35:6b:d0:2b:38:b4:79:81:
7b:b8:69:fb:34:cf:1c:08:8c:95:03:bd:78:66:11:
21:84:44:9d:18:05:f5:44:94:57:a0:1e:94:4e:ea:
40:d0:42:b9:59:a7:1a:53:93:c4:eb:31:86:4a:69:
98:ce:e9:cc:4e:34:19:c4:18:08:39:99:63:2c:66:
50:02:d0:86:38:80:73:f8:0a:30:9c:02:87:5b:b6:
f2:da:05:bc:2a:4a:89:cb:7b:9f:db:a9:2a:3e:59:
5d:82:23:5b:cd:d8:69:5a:1e:37:b0:1b:51:be:64:
fe:e3:6a:83:a3:ab:be:27:6a:a1:9c:d3:30:7f:b0:
9d:da:17:02:d1:42:a9:40:a3:6c:46:9b:94:59:e7:
bd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AF:40:51:0C:F7:3D:20:76:79:AB:B4:BD:D0:90:82:60:1C:4B:60
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:73:a1:5b:c0:03:e2:09:80:6c:c4:6f:a9:13:c5:f9:ef:85:
18:6f:ab:9f:be:b1:4c:02:f1:f9:29:10:14:5a:f7:de:23:ba:
56:ea:4b:17:ca:d9:13:94:8a:6b:43:4b:ee:64:b2:7f:21:dd:
c2:30:0a:08:19:0d:1a:94:4a:e2:3d:f4:e5:52:2e:f0:8f:e4:
80:37:28:73:3d:8a:92:80:59:a5:ca:02:ce:51:56:58:50:70:
f9:c0:e5:29:53:68:4a:a0:2f:75:a0:da:c2:c1:00:3a:2a:31:
c1:55:a8:25:fe:61:37:21:09:67:8e:42:bb:6b:1c:80:f9:22:
34:33:56:08:3c:1f:14:99:6a:c3:c0:4d:81:08:6e:b7:c4:2a:
bf:67:81:2a:6b:f1:50:42:1f:86:01:70:e9:b2:28:9b:75:5b:
2a:85:cb:23:2f:88:6b:c6:bb:7e:52:0f:af:73:05:c9:83:51:
c3:52:d3:0c:d8:7d:0a:90:de:a9:62:cf:0f:c1:81:2f:dd:68:
93:27:ef:61:c4:6b:26:4e:2f:31:23:c6:a5:19:37:e8:eb:9d:
77:03:c6:9c:9b:1a:ca:c4:fa:e3:dd:66:a4:05:ab:ee:33:83:
d8:b3:16:ee:39:dd:cf:bd:11:ef:6e:57:2e:fa:4f:95:ce:b7:
62:e9:16:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:19 2026 by rpki-client