Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: W2ksA7lLn8udgUcV6Eu8cadvo4bLE23YiYS/8aSq35Y=
Subject key identifier: 55:3A:49:4A:F5:7E:AD:31:08:FD:F1:4D:77:06:74:0A:F2:CA:AC:3A
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 019D28BB7EA460366E2EAE6D18C20805C63F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 1528
Signing time: Thu 26 Mar 2026 06:01:09 +0000
Manifest this update: Thu 26 Mar 2026 06:01:09 +0000
Manifest next update: Fri 27 Mar 2026 06:01:09 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: 70Ef5PlIYIobgqSMMlvGPptzpQqQ/6NZp3DdVNfJ2kM=)
2: hnmnA26xKXY54jFPUcSN_0PAckk.roa (hash: iZnIOMbwxqj7gdSqvCeT/1vFVrhvoJ0Z39/9nmcH68s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:7e:a4:60:36:6e:2e:ae:6d:18:c2:08:05:c6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Mar 26 06:01:09 2026 GMT
Not After : Mar 27 06:01:09 2026 GMT
Subject: CN=553a494af57ead3108fdf14d7706740af2caac3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:63:3f:d1:04:2d:1e:01:91:62:1f:78:01:41:
71:f2:36:27:c4:ec:87:1e:80:c2:e2:8b:f5:61:13:
f9:4e:e8:a1:de:52:fa:81:8c:44:98:10:e3:94:78:
b5:38:34:54:bd:da:8d:78:68:e0:f8:e2:0c:fb:b2:
11:39:1d:47:a1:37:00:c4:43:ca:b9:38:24:0b:c0:
ac:6a:bf:a0:f2:a4:47:e5:96:3b:48:28:a2:ef:6a:
3b:58:9f:73:2a:66:e8:64:6c:ce:15:ec:7d:b8:a2:
b0:ce:d5:02:c7:20:11:48:55:1b:af:1c:d9:29:2c:
1b:a4:57:67:ea:76:ab:b5:39:b1:48:30:54:d8:e7:
6e:8c:ec:af:66:43:39:ea:e9:f5:cb:41:96:25:05:
9b:e6:7b:56:c3:d6:0b:f7:ed:3e:9c:15:1d:63:ed:
38:9b:66:30:6a:59:b7:32:37:eb:7d:4a:64:51:0d:
08:58:34:be:31:12:63:c2:73:77:44:b3:9b:0c:12:
d0:5f:58:a3:9a:02:16:af:5f:64:af:30:f7:2d:7b:
8f:08:72:c9:b1:3a:f6:da:8b:01:e4:e1:b5:75:83:
04:81:f6:84:ef:31:15:95:b2:9a:4e:e0:31:02:98:
93:00:c1:83:95:a6:35:62:8c:19:8e:4e:14:57:19:
ad:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3A:49:4A:F5:7E:AD:31:08:FD:F1:4D:77:06:74:0A:F2:CA:AC:3A
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:5e:74:11:6e:56:f2:ea:1a:ef:ed:84:88:e4:7e:f1:08:34:
50:a0:1d:78:b6:7e:49:a2:2c:f6:05:b1:f4:e2:0f:cb:d4:c4:
a0:48:9d:52:59:07:0d:c3:3e:db:6e:88:2c:e9:86:f1:d7:f7:
17:5a:cd:8f:cf:f2:98:52:1c:37:cd:d6:25:f0:f3:04:b0:61:
05:28:72:78:4e:f6:1a:94:89:79:1b:f3:a7:08:6a:b5:a2:64:
7b:a1:44:3f:d0:fe:b3:cd:59:a3:72:2e:b2:c6:5e:0f:d5:90:
ce:97:0d:d9:5f:5b:7a:03:41:7f:60:4c:cf:fa:cc:8d:c2:82:
94:f6:de:d8:9e:e6:5a:16:cc:5e:fe:96:f6:32:06:2b:dd:f4:
28:60:58:00:fe:16:68:35:27:74:7d:68:39:86:3b:eb:a3:3b:
e5:8a:0c:38:18:23:0b:e4:da:14:3b:5f:37:b6:a2:fd:8d:97:
6f:53:bc:03:86:d7:8a:3f:1d:1f:5b:ae:8c:98:ea:4f:52:67:
4b:3a:a4:e0:26:d7:c5:f6:73:63:3f:20:21:9b:a7:5f:a6:12:
76:6e:a5:1c:6a:52:64:20:a7:fc:6e:08:8d:f7:36:fe:b5:88:
2c:80:ec:7f:52:7c:c0:47:27:0c:82:67:00:63:81:a9:86:2e:
9d:31:82:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou36kYDZuLq5tGMIIBcY/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy
MDcxZDkwHhcNMjYwMzI2MDYwMTA5WhcNMjYwMzI3MDYwMTA5WjAzMTEwLwYDVQQD
Eyg1NTNhNDk0YWY1N2VhZDMxMDhmZGYxNGQ3NzA2NzQwYWYyY2FhYzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GM/0QQtHgGRYh94AUFx8jYnxOyH
HoDC4ov1YRP5Tuih3lL6gYxEmBDjlHi1ODRUvdqNeGjg+OIM+7IROR1HoTcAxEPK
uTgkC8Csar+g8qRH5ZY7SCii72o7WJ9zKmboZGzOFex9uKKwztUCxyARSFUbrxzZ
KSwbpFdn6nartTmxSDBU2OdujOyvZkM56un1y0GWJQWb5ntWw9YL9+0+nBUdY+04
m2Ywalm3MjfrfUpkUQ0IWDS+MRJjwnN3RLObDBLQX1ijmgIWr19krzD3LXuPCHLJ
sTr22osB5OG1dYMEgfaE7zEVlbKaTuAxApiTAMGDlaY1YowZjk4UVxmtZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFU6SUr1fq0xCP3xTXcGdAryyqw6MB8GA1UdIwQY
MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt
NGVmOWNjNzUxNTE3LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3
LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbF50EW5W
8uoa7+2EiOR+8Qg0UKAdeLZ+SaIs9gWx9OIPy9TEoEidUlkHDcM+226ILOmG8df3
F1rNj8/ymFIcN83WJfDzBLBhBShyeE72GpSJeRvzpwhqtaJke6FEP9D+s81Zo3Iu
ssZeD9WQzpcN2V9begNBf2BMz/rMjcKClPbe2J7mWhbMXv6W9jIGK930KGBYAP4W
aDUndH1oOYY766M75YoMOBgjC+TaFDtfN7ai/Y2Xb1O8A4bXij8dH1uujJjqT1Jn
Szqk4CbXxfZzYz8gIZunX6YSdm6lHGpSZCCn/G4Ijfc2/rWILIDsf1J8wEcnDIJn
AGOBqYYunTGCAg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:59:06 2026 by rpki-client