Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: fxSQ99y5/NOV1Ko9v8a/aEegEhz76h4VQtPMlzJRDP0=
Subject key identifier: B1:B9:88:FF:FA:5B:D3:DF:CB:21:1C:2D:DA:7A:D1:AC:6A:D5:2A:A2
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 019D26CD8A66B37C3C72ACDEF3B81BE096A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 11EF
Signing time: Wed 25 Mar 2026 21:01:37 +0000
Manifest this update: Wed 25 Mar 2026 21:01:37 +0000
Manifest next update: Thu 26 Mar 2026 21:01:37 +0000
Files and hashes: 1: bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa (hash: ZMo0HqpRxUY5NsvyrYlzQ++ahmncMXJuDazn/I+//9I=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: VRGM1G7pr1p68jsUOWrjYMjehFfxUVFwd/3vTywZ7+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:8a:66:b3:7c:3c:72:ac:de:f3:b8:1b:e0:96:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Mar 25 21:01:37 2026 GMT
Not After : Mar 26 21:01:37 2026 GMT
Subject: CN=b1b988fffa5bd3dfcb211c2dda7ad1ac6ad52aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3e:31:85:11:c6:1b:bc:ba:e2:7c:16:43:ae:
c9:7a:db:f4:14:4b:99:39:a0:b2:30:a8:91:a8:11:
0b:23:e2:5f:6f:91:a6:ea:1e:6e:d3:3a:ca:af:5a:
48:e9:d9:67:ce:9c:39:b4:46:fa:07:f1:54:f9:fa:
26:9e:f6:0a:33:12:95:24:5f:73:ef:57:a3:06:21:
15:41:52:27:80:12:f8:19:ce:1f:84:cc:6f:d8:1c:
1e:3c:ff:ab:be:58:80:9d:7e:30:a5:cb:59:d8:76:
0a:fb:99:da:54:fb:32:d3:d2:f8:02:a9:65:6a:1a:
6e:97:fa:3a:3b:71:d3:f0:3a:35:72:0d:12:af:40:
94:12:37:2d:75:2e:93:6f:53:01:2a:c5:75:7b:04:
19:99:e1:c5:12:5f:97:35:56:7f:8e:f7:38:8e:1d:
05:c3:8f:c3:11:ff:70:d0:a6:8e:11:23:08:fa:be:
a0:12:8a:3d:e7:6e:86:24:df:13:88:47:a8:37:b8:
0f:9a:8e:c0:c8:12:d2:f5:90:be:3a:87:14:43:57:
92:7b:17:1e:9f:0b:a4:91:2f:9f:ef:cd:77:b0:89:
98:e0:81:30:09:f9:cd:36:af:27:b4:99:dc:f4:48:
10:09:f4:33:50:b4:e7:7c:9c:d1:37:0f:6e:14:ef:
72:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B9:88:FF:FA:5B:D3:DF:CB:21:1C:2D:DA:7A:D1:AC:6A:D5:2A:A2
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:e3:ff:be:8f:f6:52:da:76:48:97:2f:0c:57:d9:16:40:b0:
78:c9:c1:13:6c:94:8e:6a:f2:b9:3a:54:2f:10:85:84:0d:9b:
ec:42:6d:c3:78:e2:b8:e4:e8:4d:f3:d2:8f:5c:63:5c:29:87:
d5:8d:35:ed:e9:9a:ad:2b:36:dd:14:62:21:7d:f8:5e:8b:18:
06:0e:41:1d:e4:66:9c:5b:6d:33:16:b1:1d:b5:08:e6:1e:aa:
9d:f8:7c:06:c9:9d:bd:2d:8e:a5:3d:79:eb:98:3a:42:8c:04:
a4:9c:7c:d9:55:96:37:52:2f:d5:c1:d5:47:57:9b:9b:52:25:
af:25:fc:c4:86:a6:f2:ca:20:c8:97:f1:aa:53:77:bb:f4:57:
fe:01:ce:86:75:1a:9a:b1:db:e6:39:70:d7:5f:35:ec:e8:d5:
93:6f:0a:9f:d6:a0:9b:e4:3d:bc:c1:66:68:17:87:c1:d2:4e:
37:21:d4:19:f7:9c:5a:d6:d6:d0:5b:8c:4a:34:93:f4:13:96:
0d:52:d0:27:60:fe:b5:1d:d9:52:d1:2e:1d:f4:a8:f2:9c:a5:
88:1c:ac:52:46:8f:f1:fa:b6:41:13:49:51:c9:82:c0:f8:99:
26:4e:82:40:1f:55:74:b3:69:4c:25:8d:69:08:af:19:97:b9:
ca:0f:28:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:08 2026 by rpki-client