Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft
File: itkoGq_vyDda2LS35gSJlVWVIjc.mft (raw, json)
Hash identifier: 7LTAhb6DT2Ypkr8T+ABmmcR8DWj3W21/efyoKdhjFcg=
Subject key identifier: 59:29:B1:A1:FA:69:A3:C6:3C:EA:12:FA:AC:29:6D:FB:30:6A:67:EF
Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237
Certificate serial: 019D2A3BAA0D683967763086FC73FF5D2C70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 13:00:46 +0000
Manifest this update: Thu 26 Mar 2026 13:00:46 +0000
Manifest next update: Fri 27 Mar 2026 13:00:46 +0000
Files and hashes: 1: 3ysBshLGfFUkO4R9WFntyTKDLJg.roa (hash: o/4zJLtevorj8ig3Iu9MQ3MlmidPOIfdoU+Dc49NbUo=)
2: EbE_4FlcTeGEtF61cdD338tmF78.roa (hash: UyLGRhRXp3uuZDt1rn1PuLux78VD/m3miAA3O+vEphU=)
3: KrSk2jRU2oEHfGvgx800e5GKxhA.roa (hash: Kyx+62+FYOcUJqo2tHJtaKxWwFEQu2NCl98mkWMufAs=)
4: RMVjby5XmGEGFEWAsZ-rMJCgUuI.roa (hash: 8V+ZY4rClYbDacZGSf5P4gTGWDrq9UPHV6tcofi/O1Q=)
5: TQRQUvnH1PO5qcuLM2kiPL408f4.roa (hash: 1Z+GYULrtYzOcdfSIr9RZ1XILJVYjGdvmENAEPPng/M=)
6: itkoGq_vyDda2LS35gSJlVWVIjc.crl (hash: SmtpjSLarajkmSSlsynWWwgTihrMaTTOnDzEorct8bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:aa:0d:68:39:67:76:30:86:fc:73:ff:5d:2c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237
Validity
Not Before: Mar 26 13:00:46 2026 GMT
Not After : Mar 27 13:00:46 2026 GMT
Subject: CN=5929b1a1fa69a3c63cea12faac296dfb306a67ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e3:64:e5:08:f8:e3:10:9c:83:a3:12:b0:64:
ec:1d:fd:d8:3e:2e:8d:a1:3d:43:e5:ce:67:45:e3:
26:f9:31:4f:c8:34:67:aa:24:7b:a9:14:81:93:28:
0a:93:3b:a5:0b:2a:2f:9f:9f:9c:4e:68:83:e0:13:
df:2a:36:90:4b:be:52:09:ea:7f:75:4a:32:36:2d:
01:a4:34:b2:36:64:32:26:7a:9f:e6:5a:ee:2d:66:
35:6f:8f:b3:6d:95:e0:0e:7b:b0:0b:ea:1a:d5:fa:
36:ca:f6:7e:5b:76:95:6a:08:9b:94:47:d4:0b:47:
34:4d:d9:ad:e2:30:63:ff:67:f0:0e:29:ee:fd:e5:
ff:3e:92:85:cf:e8:84:01:fb:1a:ef:0d:d8:19:06:
4c:ec:80:00:e1:52:f7:5e:53:96:59:da:2f:e8:f7:
f2:86:3a:3b:f3:eb:46:40:c7:aa:8b:7f:b0:06:79:
ba:d8:1d:d6:88:44:15:f2:9e:ff:e1:a1:cb:c9:bb:
a5:cf:71:49:20:82:70:13:a4:6b:f6:6a:5c:46:e1:
81:23:b7:fb:d8:43:e0:13:5e:ee:c1:1d:78:ce:97:
10:56:9c:dd:17:3c:8f:ad:ef:62:49:ce:30:21:4b:
79:a2:a1:dc:5d:2f:16:54:ec:7c:63:c3:eb:e5:64:
2a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:29:B1:A1:FA:69:A3:C6:3C:EA:12:FA:AC:29:6D:FB:30:6A:67:EF
X509v3 Authority Key Identifier:
keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:48:a8:2b:dc:30:2e:a8:a0:85:30:93:d2:93:fe:68:33:13:
84:9c:34:51:ea:bd:cc:8d:b2:34:6d:0e:68:f4:48:85:91:a7:
3a:e5:d3:d2:ed:46:07:16:d2:16:33:c2:64:0b:27:ae:dd:f5:
c8:a7:4f:c8:03:2b:e8:fe:14:a3:f3:13:26:eb:13:d8:3a:73:
01:0e:1d:ac:9a:89:18:02:6f:80:e7:12:ca:88:73:06:d3:a3:
c0:77:c5:dd:3a:94:b8:e5:56:3b:36:5c:2d:5b:4e:0b:dd:71:
91:8f:61:ec:91:37:71:18:01:06:f7:b4:c2:9e:56:81:36:96:
53:3d:39:79:75:87:96:9e:a2:87:b8:ac:43:32:d8:f6:15:a1:
63:c7:6e:65:c1:56:09:c3:20:7a:96:7d:e5:32:2e:77:33:15:
2d:09:4e:6b:51:38:b5:3c:b2:80:73:91:73:f9:4d:7f:e4:58:
45:11:98:e4:66:63:44:d0:f4:b5:1a:95:84:58:2b:62:f3:e0:
ea:b0:4b:54:21:2f:04:bf:43:c0:73:2c:f6:a4:fc:bf:c3:ac:
f1:cd:ed:df:8b:4e:7a:b8:92:05:4b:f2:3c:df:56:91:0c:39:
be:20:ae:2d:35:c0:1f:6f:c6:ed:81:f5:6e:6a:c5:3b:ea:51:
24:2b:e0:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO6oNaDlndjCG/HP/XSxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZDkyODFhYWZlZmM4Mzc1YWQ4YjRiN2U2MDQ4OTk1NTU5
NTIyMzcwHhcNMjYwMzI2MTMwMDQ2WhcNMjYwMzI3MTMwMDQ2WjAzMTEwLwYDVQQD
Eyg1OTI5YjFhMWZhNjlhM2M2M2NlYTEyZmFhYzI5NmRmYjMwNmE2N2VmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvONk5Qj44xCcg6MSsGTsHf3YPi6N
oT1D5c5nReMm+TFPyDRnqiR7qRSBkygKkzulCyovn5+cTmiD4BPfKjaQS75SCep/
dUoyNi0BpDSyNmQyJnqf5lruLWY1b4+zbZXgDnuwC+oa1fo2yvZ+W3aVagiblEfU
C0c0Tdmt4jBj/2fwDinu/eX/PpKFz+iEAfsa7w3YGQZM7IAA4VL3XlOWWdov6Pfy
hjo78+tGQMeqi3+wBnm62B3WiEQV8p7/4aHLybulz3FJIIJwE6Rr9mpcRuGBI7f7
2EPgE17uwR14zpcQVpzdFzyPre9iSc4wIUt5oqHcXS8WVOx8Y8Pr5WQqvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFkpsaH6aaPGPOoS+qwpbfswamfvMB8GA1UdIwQY
MBaAFIrZKBqv78g3Wti0t+YEiZVVlSI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQt
OGM3NGY5ZGQ2N2ZjLzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQtOGM3NGY5ZGQ2N2Zj
LzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfEioK9ww
LqighTCT0pP+aDMThJw0Ueq9zI2yNG0OaPRIhZGnOuXT0u1GBxbSFjPCZAsnrt31
yKdPyAMr6P4Uo/MTJusT2DpzAQ4drJqJGAJvgOcSyohzBtOjwHfF3TqUuOVWOzZc
LVtOC91xkY9h7JE3cRgBBve0wp5WgTaWUz05eXWHlp6ih7isQzLY9hWhY8duZcFW
CcMgepZ95TIudzMVLQlOa1E4tTyygHORc/lNf+RYRRGY5GZjRND0tRqVhFgrYvPg
6rBLVCEvBL9DwHMs9qT8v8Os8c3t34tOeriSBUvyPN9WkQw5viCuLTXAH2/G7YH1
bmrFO+pRJCvgEg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:52:16 2026 by rpki-client