Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: fBXG7rtovyCT2L9270iPZTUr5tutUhTC2VXYcR1T79g=
Subject key identifier: AD:9D:C5:37:33:8B:8E:87:FB:C7:9E:3D:E2:7A:16:B4:97:FC:EE:A7
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019D28BBB063DE1E9D7EAB252308E270896D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 1082
Signing time: Thu 26 Mar 2026 06:01:21 +0000
Manifest this update: Thu 26 Mar 2026 06:01:21 +0000
Manifest next update: Fri 27 Mar 2026 06:01:21 +0000
Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: kGm0Uc+/wGF5VJgkX6PAB6mZQtLzOqxggZ6Tn2O5Vjc=)
2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:b0:63:de:1e:9d:7e:ab:25:23:08:e2:70:89:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Mar 26 06:01:21 2026 GMT
Not After : Mar 27 06:01:21 2026 GMT
Subject: CN=ad9dc537338b8e87fbc79e3de27a16b497fceea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:29:e2:e0:24:31:36:39:ce:c1:51:5d:9f:cb:
b9:12:06:d3:28:7a:1b:e0:11:42:1e:19:5e:cb:90:
e7:b0:76:bc:a7:cf:6c:fe:cd:10:46:b8:f3:10:a1:
a5:e8:38:db:66:fd:67:da:17:ce:26:1c:ac:46:a8:
f7:5b:9f:11:d4:74:3b:52:81:ec:69:a8:65:f9:a2:
39:a7:8e:3e:b2:13:05:ee:d2:bb:7d:ee:32:94:e0:
b4:78:51:52:00:e2:b0:d3:7f:f7:26:2c:c9:20:5c:
3d:7c:97:1f:9c:d0:95:39:af:bf:af:5b:8c:60:e0:
94:e9:5a:0a:3d:65:c4:e1:e5:b9:aa:74:cb:8c:3a:
5e:22:34:8d:a2:76:c3:a7:4a:14:26:b8:ea:54:2a:
3c:3c:e2:5e:33:bd:e3:33:fb:c6:4a:98:30:1c:93:
49:3c:55:7c:fc:b1:41:ee:ff:28:53:43:62:df:3f:
71:6e:72:9b:ec:be:55:5f:c6:3a:f0:10:3c:79:82:
ac:52:8c:0c:2c:8c:f4:6e:78:0b:7d:a1:0f:14:11:
cf:45:a7:0a:26:0f:0c:27:88:0e:87:2a:37:3d:34:
6c:d8:77:73:1f:ed:1d:70:16:75:9d:2a:52:81:da:
ee:d3:4c:5b:66:ee:b7:68:a1:d4:32:a8:a9:f4:6f:
14:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9D:C5:37:33:8B:8E:87:FB:C7:9E:3D:E2:7A:16:B4:97:FC:EE:A7
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:61:af:61:36:4a:ed:79:57:d3:b0:b1:4d:7c:33:f6:39:ff:
a8:76:b9:ec:8c:ae:ea:4d:da:02:bb:30:0b:f2:04:c4:02:50:
3e:9b:5b:e1:15:78:77:ec:67:82:fb:b0:01:9f:d0:1b:6e:42:
1d:ad:b0:0b:6e:9e:be:95:1b:9f:48:68:d6:f2:1a:8c:e2:6f:
52:79:90:52:77:f3:91:50:df:be:80:d4:7f:27:a2:9c:4e:f5:
eb:3a:95:7a:4c:cd:c5:c1:7d:33:cb:71:ca:02:c3:eb:5b:8a:
d6:90:77:c1:4f:b1:f4:9f:c1:86:4c:79:0f:48:40:3a:51:97:
4a:5e:d7:d2:f8:e2:f3:be:55:b4:cb:26:b8:d9:4f:ac:18:ee:
ed:49:fd:16:02:0d:a0:02:e6:fe:c0:d9:4c:c9:b1:be:7c:b6:
74:c0:45:b0:ae:dc:54:5a:3d:c5:76:fc:2c:b8:ad:35:c1:d2:
f1:a9:2f:fb:97:67:a7:0d:59:61:57:5c:d9:47:f1:1f:5e:cd:
85:8f:c3:ea:61:85:e6:5b:b2:fb:ed:45:16:6f:0a:d7:9c:ac:
27:92:23:dc:ba:b2:f6:d4:3a:86:c3:1d:a3:00:6b:09:97:30:
17:7e:10:6b:e8:16:c5:44:5d:71:24:25:65:22:c8:6e:95:93:
94:10:65:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:41:59 2026 by rpki-client