
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft
File: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft (raw, json)
Hash identifier: whv0MYLNaLfVkQba1p3XKxgMJ0GZDYVXPQhbaLB8+Zw=
Subject key identifier: FD:A2:CA:66:72:37:EA:B8:52:EA:45:4E:F2:B7:A9:37:AF:E3:5A:30
Authority key identifier: D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A
Certificate issuer: /CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a
Certificate serial: 775449C2E298F5E251A5726BBBE596A976BE08CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft
Manifest number: 0141
Signing time: Fri 10 Jul 2026 13:39:22 +0000
Manifest this update: Fri 10 Jul 2026 13:34:22 +0000
Manifest next update: Sat 11 Jul 2026 14:25:22 +0000
Files and hashes: 1: 3139332e3130362e36342e302f32342d3234203d3e203630383630.roa (hash: G3H4jbMqiw5DQSMLQn1fJ6uJtDMGKpTXzheKy4E+Q/Y=)
2: 3139332e3130362e36352e302f32342d3234203d3e203630383630.roa (hash: fqNRaoLtdl8BsIrfiu4PvyRr6AhuFheEHGA8K066NQ0=)
3: 3139332e3130362e36372e302f32342d3234203d3e203630383630.roa (hash: AR/qw0HziLw8HHdQriZPc+gMCtTCe+FKN/BuvJjupJg=)
4: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl (hash: sXdU/e6DFb4PDu7Iw/B2CkquqFWXuGw6xzV8FEaDZWE=)
5: 3139332e3130362e36362e302f32342d3234203d3e203630383630.roa (hash: 6C7y+fYBD1VfGU5aOUC6YEoLG1qQiLffBU7c4ztP4Ek=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl
rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:54:49:c2:e2:98:f5:e2:51:a5:72:6b:bb:e5:96:a9:76:be:08:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a
Validity
Not Before: Jul 10 13:34:22 2026 GMT
Not After : Jul 11 14:25:22 2026 GMT
Subject: CN=FDA2CA667237EAB852EA454EF2B7A937AFE35A30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:bf:91:f4:2a:1f:29:6c:d8:5b:55:68:7b:
c9:72:aa:9a:2d:33:a4:2a:d5:db:e1:9e:18:07:fa:
fa:b0:08:60:8f:56:e7:c7:9d:2f:b5:3d:0c:e9:73:
e3:b5:7f:d2:90:37:2f:b4:6e:c3:cc:c3:1d:64:b9:
18:89:93:8d:4e:12:5c:d1:e7:44:11:19:15:fe:04:
bb:96:7c:8e:db:cb:f3:0d:86:31:4d:5c:db:3d:75:
a3:1a:85:de:80:4b:f0:ba:f7:31:81:fc:0c:a4:8f:
02:68:dc:b7:35:6a:31:01:e6:29:a8:44:3f:8f:b8:
9f:a0:67:0b:75:6b:e7:61:15:a2:32:b0:6f:59:d5:
49:0f:5d:ac:10:c3:cb:4c:7c:ef:76:3a:0f:73:fb:
24:6e:a9:35:29:4f:e6:e1:da:83:c4:8d:96:31:e9:
e4:9c:fe:f8:0d:61:8d:e5:2f:d6:fb:28:fc:44:5f:
d8:93:17:57:10:ce:ea:00:ae:11:85:1f:67:c9:5f:
8e:dd:f3:47:54:49:ae:b1:06:34:56:ff:4b:a4:79:
a3:5d:43:c6:16:ba:64:7c:1b:f7:25:0b:ea:08:5a:
d8:e8:a9:16:a4:35:f6:a4:5e:9a:00:3d:4a:03:98:
4b:95:7f:48:02:7e:49:2d:28:0c:aa:93:24:a3:e4:
ae:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A2:CA:66:72:37:EA:B8:52:EA:45:4E:F2:B7:A9:37:AF:E3:5A:30
X509v3 Authority Key Identifier:
keyid:D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:5d:57:04:95:95:52:a8:8e:fa:6d:54:93:2d:42:25:35:e3:
f1:3f:b9:1a:c8:46:94:4b:57:7a:fd:c1:54:63:b4:05:36:c6:
22:0c:c5:d9:48:ec:ee:2d:9d:0a:c9:9b:24:c7:f3:88:14:6a:
74:c3:2b:67:58:bd:a6:3b:89:1a:18:bc:8b:b1:1c:8a:3c:46:
45:15:6b:ec:72:6e:a7:71:ab:a2:ca:31:7e:fb:9d:28:a8:30:
1d:f5:8f:78:52:dc:64:c2:f8:30:df:0f:28:3d:19:3f:53:ef:
ee:82:57:50:47:bc:e4:26:94:f8:1b:30:f8:5c:74:0a:cd:26:
dc:1e:b6:c0:c8:b2:8f:e5:36:f8:ad:61:51:63:d0:3c:92:0d:
0c:0d:e2:2d:ae:26:c2:03:46:b4:7a:12:18:e0:c0:8f:6d:a6:
18:2a:48:c6:47:84:41:25:c8:cf:bc:2f:6b:2f:9f:20:5f:90:
00:3d:b3:05:e3:b9:1d:d7:17:1e:0e:87:bf:04:24:f2:10:b2:
5c:18:0e:51:bd:d4:c4:5d:d9:43:5f:2c:e1:88:7d:4a:1e:aa:
2b:e5:a8:9b:10:af:67:ce:b6:6c:ee:0d:32:da:b0:e5:50:b6:
9b:4f:ed:d2:a3:d3:3f:19:a6:34:84:32:5f:84:94:98:ad:9b:
f7:cb:69:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 16:24:47 2026 by rpki-client