Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
File: iWxjRnXxe_ak81-hi7hVYBoYpbU.mft (raw, json)
Hash identifier: yv+JxLgp76mL6C1wcq5ZKTLWBxPeiooKCx7OwW//9O0=
Subject key identifier: A1:F8:BB:4B:8F:DD:14:EB:C0:78:95:9A:D1:A7:A9:04:7D:BE:78:3D
Authority key identifier: 89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5
Certificate issuer: /CN=896c634675f17bf6a4f35fa18bb855601a18a5b5
Certificate serial: 019D26289F26BA53C1E1AA45ADF5AAE53B7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
Manifest number: 0238
Signing time: Wed 25 Mar 2026 18:01:29 +0000
Manifest this update: Wed 25 Mar 2026 18:01:29 +0000
Manifest next update: Thu 26 Mar 2026 18:01:29 +0000
Files and hashes: 1: YR3MJhayMOIcEgDa7WoFB8LAJdE.roa (hash: DbVHQlQH+oPthovWmJ2MpgFJQxLVITiApa5PfX6MwT0=)
2: iWxjRnXxe_ak81-hi7hVYBoYpbU.crl (hash: zdc4RP+G7Tab+wxqNy8WXeht6bPJb0XaNGR2E0U2Kso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:9f:26:ba:53:c1:e1:aa:45:ad:f5:aa:e5:3b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896c634675f17bf6a4f35fa18bb855601a18a5b5
Validity
Not Before: Mar 25 18:01:29 2026 GMT
Not After : Mar 26 18:01:29 2026 GMT
Subject: CN=a1f8bb4b8fdd14ebc078959ad1a7a9047dbe783d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bc:6b:b4:7b:ef:4f:67:0e:28:0f:93:af:0f:
b4:94:53:10:51:fe:83:cc:ad:6c:3a:e2:20:b2:12:
94:d0:84:17:43:22:05:c2:9f:00:3a:55:33:8c:86:
21:8f:23:05:ea:e5:1c:68:68:35:57:f7:0f:ac:54:
50:ba:1e:15:e6:5f:b3:a5:d5:dc:c4:58:d5:47:63:
db:6b:34:81:04:ce:7b:8b:35:aa:19:7c:17:51:5b:
5b:50:f1:6e:97:09:25:fe:f8:21:98:e6:15:04:b2:
c7:3b:3c:69:f2:62:1e:36:04:6c:13:2c:b8:a7:16:
99:2c:66:c6:b5:ed:1f:b6:d3:e2:f3:67:af:a2:04:
42:ac:dd:be:01:07:d5:06:d9:8f:22:b9:a3:1b:25:
56:4e:4a:72:5a:dd:ea:e0:a3:0e:54:89:eb:3f:b7:
fc:cd:cc:2f:57:40:4c:d8:fe:f8:4c:79:26:12:da:
a7:20:00:94:a8:ee:62:04:74:f5:49:82:aa:cc:8b:
b1:5a:ce:98:c9:ef:66:fc:43:10:ab:41:89:3a:43:
db:32:42:ad:b2:e4:4d:9f:e8:56:d3:26:94:de:60:
29:26:6d:b8:23:93:4a:26:71:99:9c:b6:3b:64:b7:
0b:e3:f9:6d:37:87:87:5a:f8:cf:90:d8:98:93:e2:
ec:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F8:BB:4B:8F:DD:14:EB:C0:78:95:9A:D1:A7:A9:04:7D:BE:78:3D
X509v3 Authority Key Identifier:
keyid:89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d2:9f:92:fe:85:f5:30:44:f3:b9:2d:c8:8a:a8:d4:f7:f4:
cf:91:48:98:d7:08:12:d3:e1:6f:49:9c:28:43:36:10:39:a0:
3a:09:8d:a7:f5:84:9e:a7:f8:8d:8d:02:36:b7:6f:a6:41:72:
99:d9:cd:67:b7:1f:a2:b0:25:22:d2:99:4e:64:3e:c9:d6:26:
5c:eb:74:d0:2c:7e:42:ad:37:e7:7a:3c:6d:e2:a6:77:44:d9:
d0:c0:57:cb:75:4b:2c:db:cd:3d:9e:d8:86:b0:02:ee:17:e7:
10:79:6b:0b:1f:b5:75:27:e0:a6:fc:82:37:3d:f5:ef:33:d3:
98:05:78:27:58:ef:17:21:11:c6:3e:c9:3a:46:84:10:cd:80:
de:c1:07:5c:44:64:2d:ac:da:ca:07:16:f4:73:64:21:4a:c9:
31:9a:29:23:40:6c:4f:b7:5f:a8:e1:56:b4:c5:eb:3e:83:c2:
e9:15:64:4d:8b:b8:94:3d:80:2d:2e:5f:e2:c3:a2:3a:f7:a7:
bb:38:67:8e:fb:66:6b:2f:23:e0:a3:55:be:7b:d5:70:26:8c:
e1:57:17:8a:04:5d:ad:22:52:04:3e:2c:5d:f1:15:c7:9b:5f:
1d:32:90:d1:7e:8e:a1:29:9f:5f:d2:1f:39:21:d8:0b:03:fd:
0a:e2:36:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:42:44 2026 by rpki-client