Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json)
Hash identifier: CERoNWOBkFZ0/HLyj3SecEFKPKkze2FwBbv9Kz/F2yg=
Subject key identifier: 2B:41:BA:B8:A6:E1:9F:0C:DD:4B:9F:CA:4F:9C:4E:8E:03:F0:5B:2F
Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Certificate serial: 019D27A918322EFF448F1861649A333B6A76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 01:01:26 +0000
Manifest this update: Thu 26 Mar 2026 01:01:26 +0000
Manifest next update: Fri 27 Mar 2026 01:01:26 +0000
Files and hashes: 1: AjtEoktOSuBDBX_1V0FjXtFV21E.roa (hash: FD8hrHR+KRU8ianiGjkPHddLvgxoDCtLslx9ho1BrsI=)
2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: 2jXnHrYrTpm075kaSvlHVzev/afCTZhMHcGoGJejy+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:18:32:2e:ff:44:8f:18:61:64:9a:33:3b:6a:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Validity
Not Before: Mar 26 01:01:26 2026 GMT
Not After : Mar 27 01:01:26 2026 GMT
Subject: CN=2b41bab8a6e19f0cdd4b9fca4f9c4e8e03f05b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:0f:b5:6a:97:56:e8:3f:de:2b:02:fb:3b:79:
84:b3:7e:9a:fb:85:5a:ad:17:c0:52:54:d2:f4:63:
77:7d:a3:8b:ef:23:51:1d:29:f4:01:51:ff:b0:66:
a5:a3:99:f4:db:dd:c2:17:13:eb:c3:ff:d2:89:5d:
00:f2:4e:80:d6:52:17:8c:e6:19:05:c1:ee:a4:84:
5f:d7:15:28:3a:ab:2b:7d:3a:93:db:dd:9c:a9:f9:
1e:cc:1f:31:fe:67:7b:79:15:6c:72:0a:18:21:0b:
1a:fd:2d:ff:a1:17:a5:95:4d:57:be:dd:72:80:1e:
b1:71:5c:82:db:aa:93:1e:56:c8:a3:f0:c4:4d:0c:
5a:e4:7b:b6:70:7c:c2:7f:7a:fb:51:cb:d5:38:5e:
a2:c9:af:1f:f5:58:bb:fe:1a:db:5f:4d:7b:53:d9:
82:58:74:c3:9a:d0:99:a7:7d:7a:e8:66:96:d6:d1:
a4:56:00:a5:2f:fa:7c:27:68:dd:db:db:e7:b6:75:
c2:ed:93:1d:7b:ce:4b:75:43:e5:4c:ac:0f:9d:ca:
ea:fb:ba:eb:0f:96:26:84:05:eb:ac:2c:91:c5:c5:
34:95:ff:8a:28:6c:72:26:a2:97:c7:06:40:fa:38:
5e:3c:09:86:c4:56:91:d2:d5:86:f4:d0:e5:a7:bc:
f6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:41:BA:B8:A6:E1:9F:0C:DD:4B:9F:CA:4F:9C:4E:8E:03:F0:5B:2F
X509v3 Authority Key Identifier:
keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:fa:61:41:4f:4c:7c:ec:01:87:fd:4c:7a:36:27:5b:a9:21:
43:b2:43:ba:34:4c:93:30:93:de:96:de:44:2b:72:d6:bc:e3:
47:ce:76:b3:8c:4b:6d:d9:cf:dc:fc:6f:b9:aa:63:ab:a5:1e:
dd:43:81:cd:1e:b1:18:ea:59:8c:17:7c:9b:48:88:43:c0:85:
3e:fd:57:d7:71:fd:1b:42:f3:93:02:15:0a:9b:7a:c5:a5:7a:
b6:d3:da:bc:6f:65:fc:89:70:b5:4a:3c:a1:2c:0e:a9:8e:7e:
82:2a:ab:8b:dd:93:c9:b4:71:cc:b2:37:0d:4e:6c:b0:28:22:
e8:b1:73:31:8f:15:3a:d1:3c:1e:a9:6d:e3:76:5a:45:bc:de:
14:b3:16:db:8f:06:2d:9f:45:24:b3:b4:38:01:8a:a1:d1:78:
38:a6:e2:a4:52:c8:ee:a2:30:c6:d8:c7:31:ce:a0:6a:66:6d:
0a:0a:12:02:9e:6d:ba:b4:8b:bd:21:f0:63:3b:f2:c6:33:af:
a5:e5:7b:dc:9b:96:94:1b:1d:32:27:e2:7f:6c:b2:21:88:77:
ba:63:6f:b3:a0:2d:a3:f5:18:f9:3d:18:2b:ac:4f:bb:d9:88:
7c:22:c1:a4:46:da:40:3d:d4:b7:34:88:52:88:22:fc:fd:7a:
c9:ed:f9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:23:28 2026 by rpki-client