Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: 0tmAFhiu2XZwShgeSeVURG7B1LNL0qeX/PZ2TzVa/sg=
Subject key identifier: 5B:11:6B:EF:D7:F2:1C:FB:35:F2:5A:41:B1:F1:0A:B0:29:84:24:B8
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 019D265F8A4959BD4D14F7A7F56281545314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 19:01:28 +0000
Manifest this update: Wed 25 Mar 2026 19:01:28 +0000
Manifest next update: Thu 26 Mar 2026 19:01:28 +0000
Files and hashes: 1: FzaSctWTm436xTaHu7cLIoR3zuI.roa (hash: ZWQNCmBRzSOXikzbY8uxPHONXN2ergkv72vrvK6pGEg=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: ponIJdTU4poMMR/BPpxd0ouTOOesMsP3ovOokw4sCPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:8a:49:59:bd:4d:14:f7:a7:f5:62:81:54:53:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Mar 25 19:01:28 2026 GMT
Not After : Mar 26 19:01:28 2026 GMT
Subject: CN=5b116befd7f21cfb35f25a41b1f10ab0298424b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:13:e2:bc:67:0c:37:b1:1f:a4:b7:74:f2:2b:
ec:7e:37:dc:d0:73:99:33:ea:fe:13:df:8b:c0:b1:
3e:3b:d9:46:10:31:a5:c6:10:2c:67:db:51:76:80:
b9:b7:c5:4e:9a:51:03:c2:6b:1f:e7:cb:ed:4f:8f:
7d:0b:f2:45:dd:7a:f3:85:09:a8:a9:c8:7e:a0:09:
ae:5c:45:cf:12:0a:2a:51:32:89:a5:3b:f2:82:55:
d2:ef:ec:6b:c8:7a:63:20:a3:7b:16:18:98:f2:66:
1b:1e:b7:8a:8b:83:05:90:f6:fb:26:f4:9b:dd:00:
8e:ec:67:3b:27:4b:82:a6:65:31:f6:33:9f:1f:07:
18:47:24:e7:16:a9:54:f8:4b:96:b0:b3:81:65:f1:
f5:75:31:88:99:9e:11:c9:5c:c2:0c:6f:c0:1f:27:
bf:99:f1:7f:b0:e5:08:e2:9b:99:61:20:ff:e2:85:
b2:86:2c:37:f2:d6:d7:6b:7a:9b:a6:b0:bd:22:59:
40:92:9d:d1:41:f7:82:5b:08:1e:2b:30:ed:c7:12:
dc:1b:a5:14:d0:85:33:c9:3e:7b:2e:32:08:bc:98:
3b:6c:13:77:ae:9e:98:e7:ba:6b:c8:d0:ec:ea:ba:
c3:af:dd:81:4f:51:34:fc:7f:5f:ec:f4:ca:13:15:
b9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:11:6B:EF:D7:F2:1C:FB:35:F2:5A:41:B1:F1:0A:B0:29:84:24:B8
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:f7:55:37:d5:5a:b3:cd:8d:75:7e:af:49:30:cb:96:63:15:
a7:53:19:60:0e:f9:b4:cb:25:7d:ad:f5:5f:48:3b:92:53:be:
91:bb:68:c3:f1:2b:ea:8c:f4:a8:50:82:ba:a4:8c:10:2a:00:
95:97:7c:8f:20:fa:82:ca:02:65:ff:1c:91:2e:68:75:ef:f7:
10:55:dc:b6:67:d6:e4:ef:5b:a1:4b:6e:5d:2c:1b:a0:75:45:
f5:d8:b5:e5:86:2f:9f:6c:10:4a:14:2d:6c:db:ef:a4:a1:7b:
74:b2:7e:99:06:a1:e2:4f:aa:e6:53:56:64:6e:07:b8:61:13:
59:e0:ca:d5:cc:0e:6d:eb:94:aa:24:a4:e2:92:25:2c:60:7a:
1f:e1:33:67:c1:86:d6:3e:f2:66:bd:70:2a:08:51:17:c1:79:
1c:7d:1e:96:44:19:e4:ba:35:48:a3:81:9c:ba:02:30:e2:69:
ea:0e:0b:29:61:d3:a3:81:eb:03:26:cd:29:28:6f:9d:62:c3:
af:05:55:f6:4a:88:28:e3:fe:3f:eb:85:51:4a:39:49:79:72:
8c:67:1b:79:a3:f6:1b:5c:70:72:50:8d:14:e5:70:8e:0e:87:
36:a7:89:f6:a9:db:06:f4:fe:6b:f4:3b:61:e4:13:36:77:ff:
a5:64:b5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:53 2026 by rpki-client