Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: xLtw9jlyE6cHogRsVYDxY6XK3EXDcZkkmmQtZ/LKVhY=
Subject key identifier: 8D:17:19:79:FB:D9:AC:2C:80:95:02:3B:6B:EB:89:3F:D3:8F:1C:A5
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019D27E005C5A8E2C0CAC8CDF35E3C2E4244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0BE6
Signing time: Thu 26 Mar 2026 02:01:26 +0000
Manifest this update: Thu 26 Mar 2026 02:01:26 +0000
Manifest next update: Fri 27 Mar 2026 02:01:26 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: PdoVJUvhjohPNcCFEPAiQ0uEPgD8sMvcluXaZhE7vTk=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
7: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:05:c5:a8:e2:c0:ca:c8:cd:f3:5e:3c:2e:42:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Mar 26 02:01:26 2026 GMT
Not After : Mar 27 02:01:26 2026 GMT
Subject: CN=8d171979fbd9ac2c8095023b6beb893fd38f1ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5e:83:24:8a:09:2a:3c:54:1e:15:3f:47:eb:
77:2c:51:ab:86:3f:06:4f:4c:ce:9e:a4:6f:59:ad:
d3:31:e4:ca:0b:e8:3d:64:cd:b6:26:c6:fb:66:5c:
d0:16:61:72:3b:cb:ab:a1:fe:83:15:c1:22:34:bc:
d9:be:cd:2f:16:c4:d7:39:0e:72:bd:75:11:62:94:
59:66:b0:23:9d:32:1a:d1:60:d9:f2:d9:db:7e:b6:
c4:30:0e:40:36:91:e4:90:95:b7:75:c3:96:8f:62:
14:a8:bb:48:75:b0:ff:5a:ac:63:40:6b:e9:28:a2:
ff:ef:79:6e:1d:43:ef:3c:8e:c4:d4:29:57:1c:46:
b6:ed:68:0f:5c:d9:fe:f2:68:10:8e:06:55:63:e2:
e1:32:88:e0:f1:f9:9b:f3:20:b3:ee:77:85:00:c9:
06:74:e4:72:a8:72:6d:92:87:08:e9:0a:36:e6:a5:
cc:0f:c2:d8:0f:d3:27:f8:3c:0b:e3:70:36:ca:61:
78:33:df:0b:60:01:b6:2b:02:ba:da:2e:4e:a7:0b:
92:10:fa:4e:22:f6:69:b3:4a:da:f3:36:1a:da:e5:
b8:00:b8:3a:5c:64:60:c7:54:e9:dc:ac:0e:fc:42:
98:57:b8:a6:3d:03:b7:3e:9b:6e:3b:a1:b8:3f:8c:
0d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:17:19:79:FB:D9:AC:2C:80:95:02:3B:6B:EB:89:3F:D3:8F:1C:A5
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:8a:52:6f:df:60:6d:18:af:20:ac:6d:20:2c:69:d0:7d:67:
ca:93:38:e0:68:39:44:08:4e:81:a3:08:ab:8a:29:c6:f6:8f:
8a:d2:f5:04:3e:b2:62:5f:c1:51:cf:19:ef:51:f1:65:5f:d7:
26:2c:53:e5:a5:14:9f:20:81:5c:da:f5:07:ad:58:f5:a1:5e:
0e:20:a2:47:84:0f:ea:51:7e:60:d4:97:23:61:17:4a:d0:12:
24:6b:c7:f5:30:d6:a8:29:3e:98:73:00:7b:c1:bb:59:77:d8:
70:df:f1:11:0c:f6:e4:4b:e1:a0:84:34:b3:d8:cc:99:4e:ce:
62:30:90:22:2c:1e:36:07:47:97:6c:92:44:8e:4f:55:dc:4b:
74:34:2a:85:93:65:b9:27:29:27:34:42:90:21:09:4d:f4:c2:
87:6d:8a:8f:28:fc:3e:af:c0:36:74:7f:24:f9:e6:f8:51:32:
e8:ba:51:ae:72:60:e1:65:65:81:1a:75:0e:8c:69:63:a7:9f:
23:85:88:bd:b9:0c:73:13:13:9c:19:85:41:bb:a3:aa:eb:ae:
f6:5e:d9:89:5b:6b:5e:6a:16:36:5c:f7:7b:a0:ff:f0:30:ae:
36:aa:b9:46:07:2a:ee:f9:f3:28:e2:5e:a4:20:5c:63:56:b1:
9a:a7:51:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:58:13 2026 by rpki-client