Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: dYapcSZSGxFuYgYksGyiFiDwEzTMiVH5tqr4fIC/sNI=
Subject key identifier: AA:19:C1:3F:5B:80:6C:B2:57:3D:56:C0:D5:86:61:03:CA:D0:B6:98
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 019D25F1BCEB954C2309BB43A40C4E3781AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 17:01:32 +0000
Manifest this update: Wed 25 Mar 2026 17:01:32 +0000
Manifest next update: Thu 26 Mar 2026 17:01:32 +0000
Files and hashes: 1: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: p9emRRV0HFT/bFWcpRZauvob+6Dxya6joExLlszAaUQ=)
2: ToOm_DRG8L881LK0bTvQrJEi9zE.roa (hash: DCNqoXRqfdwODxjtc8J2/AVxGOKRF24UDLD2fHtc4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:bc:eb:95:4c:23:09:bb:43:a4:0c:4e:37:81:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Mar 25 17:01:32 2026 GMT
Not After : Mar 26 17:01:32 2026 GMT
Subject: CN=aa19c13f5b806cb2573d56c0d5866103cad0b698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:01:bc:53:29:c3:1d:62:16:5c:d0:e2:4b:
86:0f:a3:b9:c5:28:d4:ea:48:54:f3:06:84:68:8b:
f8:29:9b:df:cc:5d:08:9b:8f:fe:5b:bc:7c:23:30:
d2:bb:b2:95:58:ee:56:22:2b:64:15:1e:8c:e1:6d:
40:d8:45:a1:d8:2b:27:6b:f9:7a:1e:d5:68:dd:66:
e1:5b:2b:40:a7:63:f5:f7:a5:83:02:84:95:e0:79:
c1:d4:e0:1a:81:b0:24:3d:20:46:45:29:72:28:88:
e6:78:18:64:9a:98:91:12:73:fd:86:b6:ae:b6:4e:
28:1f:62:1f:47:66:fa:c1:e4:e1:69:2d:32:c5:a5:
d1:e8:50:5d:13:23:da:5a:08:61:3d:7e:3c:ba:a9:
e8:bf:1f:1b:97:cc:b0:02:ea:28:a2:b5:58:e0:cd:
ee:68:51:3b:25:ef:84:aa:53:58:df:07:bd:89:e4:
c7:b8:a8:79:6f:7b:ac:5d:3f:9c:eb:50:34:ca:2b:
d1:d1:f5:9c:55:ee:75:11:8f:df:c8:c4:d9:6a:27:
82:92:33:0b:00:5e:75:d0:85:4e:36:b1:ec:2b:ce:
a8:38:0a:c6:aa:42:bb:d7:e2:ff:b5:39:39:de:23:
72:43:68:64:cb:62:cc:a7:c8:77:dc:7f:12:4c:0c:
25:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:19:C1:3F:5B:80:6C:B2:57:3D:56:C0:D5:86:61:03:CA:D0:B6:98
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:11:70:a7:b0:7a:da:67:fa:08:bf:88:ae:75:9f:44:da:07:
9f:4f:34:0a:ab:aa:19:09:5b:a0:02:4d:77:a9:22:04:d8:3b:
72:42:80:5e:a2:7b:88:02:5d:5a:7b:c9:ec:c0:68:e0:1d:bf:
d9:ee:ee:28:c3:fd:7a:fa:a0:f0:83:13:a2:bc:f2:59:1e:25:
2f:cc:e6:f9:27:fd:47:e8:fb:46:56:3b:bc:5b:2f:ad:d9:6e:
a6:b6:95:f6:0d:56:5d:97:df:84:35:87:5a:2e:1b:1f:ec:a2:
fc:88:b9:a1:76:07:80:e6:23:78:a8:c6:d0:92:c4:23:b3:f6:
69:31:7c:98:41:90:ed:49:5f:1c:c7:62:de:f5:de:34:92:b2:
86:a5:11:d1:7c:75:c2:42:25:32:89:e0:42:c2:cb:23:82:49:
f3:c4:2b:d0:4e:47:fc:1e:dc:37:0f:0f:27:cb:5d:f9:74:23:
57:c6:9d:15:ff:bd:1e:45:b3:a0:f3:52:52:46:8c:8f:af:4c:
51:4b:15:13:d9:e6:ea:a3:c7:7a:6b:15:6a:af:1e:c4:14:61:
2b:5a:33:78:62:ee:2a:05:c8:84:57:7d:a1:dd:61:4c:2b:e3:
8b:84:11:4b:d6:f8:c2:00:45:e2:6e:5f:1e:9b:b7:8f:f0:86:
50:b2:6f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:53:00 2026 by rpki-client