Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: fLto6EmCfHgOUzamwdU6X4v6W9iTE5RJEdEf667l/PQ=
Subject key identifier: DD:7E:98:3A:E7:6C:ED:FC:8D:06:51:02:AD:58:F5:97:05:F4:AA:75
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019D2771E476CBC13B95CF29FF41728BDE3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0C6E
Signing time: Thu 26 Mar 2026 00:01:08 +0000
Manifest this update: Thu 26 Mar 2026 00:01:08 +0000
Manifest next update: Fri 27 Mar 2026 00:01:08 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: Gcp3T0ytuQMaPUhQi0QfxrROCdqBWE4+O3IH6triZRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:e4:76:cb:c1:3b:95:cf:29:ff:41:72:8b:de:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Mar 26 00:01:08 2026 GMT
Not After : Mar 27 00:01:08 2026 GMT
Subject: CN=dd7e983ae76cedfc8d065102ad58f59705f4aa75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:da:34:18:29:42:fe:fd:b7:18:5d:60:e8:e5:
09:29:f0:fe:21:1e:a9:29:55:4c:16:1d:db:ee:99:
7a:ee:7c:c9:ef:03:fc:fe:aa:75:84:df:46:86:52:
36:48:1b:bd:98:15:de:2d:35:7b:02:c6:af:f8:12:
ad:8a:6c:93:70:4f:0e:c0:6b:bb:ef:45:6d:c8:9e:
9c:00:c0:4f:e5:76:72:b9:2b:53:2c:bd:6e:b6:1d:
78:ff:16:bc:f9:19:ff:cb:ae:15:0c:94:0b:94:52:
7f:63:d2:fc:00:43:8f:9a:a6:36:56:3a:28:25:df:
06:97:f4:fc:42:49:ba:38:7c:b0:fb:39:f0:29:eb:
0b:fc:1b:a9:79:f6:6c:d2:cd:45:7f:63:de:56:30:
98:37:45:7f:4c:96:69:6e:b5:88:9b:14:26:23:79:
2a:a5:30:5f:15:99:b9:0a:10:cd:7e:be:97:0d:b8:
04:c1:2e:5f:ec:fa:d8:c9:08:20:b8:f5:65:3b:26:
6e:68:03:6e:c2:ec:da:ab:2e:24:1c:86:2b:4a:bf:
a9:aa:06:3b:0d:57:ed:02:ca:d4:cd:2f:55:98:c0:
5e:c2:e6:52:5f:e9:af:6a:9c:b1:02:20:65:01:62:
31:d4:e5:f3:0b:19:5b:52:2a:df:52:d6:98:8d:68:
fa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7E:98:3A:E7:6C:ED:FC:8D:06:51:02:AD:58:F5:97:05:F4:AA:75
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:98:c4:3a:9b:14:26:1c:8c:32:7a:0b:34:90:f7:aa:64:ca:
ae:a3:c0:f5:ae:3e:2a:64:ad:8e:e9:08:dc:10:52:95:dc:b6:
45:e7:c9:cd:d5:49:1b:d2:2c:08:8d:3a:70:9a:8c:2f:fc:9b:
bb:38:1d:fa:a6:58:37:16:67:3d:3d:10:48:6d:1a:ba:ff:0c:
b6:f9:ad:b1:b4:9b:c2:ba:ad:5e:b6:c5:4d:fa:a1:01:d5:ea:
4c:6c:64:65:53:9d:59:a0:04:1e:eb:a8:13:48:8a:e2:ee:e5:
61:27:19:d7:ea:52:01:a3:a5:4b:0c:84:38:6f:e2:4f:24:ab:
3d:55:1b:30:3f:41:2d:65:cc:8e:85:04:39:77:50:db:a5:98:
9b:3a:81:49:30:44:54:6b:60:44:c3:d6:d1:fa:a4:01:5f:e5:
09:4f:a6:c3:d5:a2:e5:3d:46:7d:40:31:67:6f:32:a0:cb:f5:
f6:9f:ab:99:33:96:e8:cf:bb:81:57:42:96:0d:e3:14:ef:fd:
2a:4b:b9:64:70:72:c5:77:f0:03:85:e9:66:fd:62:6b:a8:5e:
c7:9b:bb:0a:53:ab:7a:ae:d9:d1:eb:3c:d1:0a:ca:6a:cc:93:
e7:fd:fc:60:38:b6:82:19:af:41:a9:ae:d4:75:11:d2:0f:9d:
8b:09:41:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:55:38 2026 by rpki-client