Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json)
Hash identifier: +Z0m7p1ama8xhKCpwgUAOWL5kPdVb1stHny6EavTqqw=
Subject key identifier: C3:0C:CD:56:DA:79:C5:D7:19:92:FC:7C:A1:65:07:36:FD:2B:55:52
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 019D26CDA342D04C705C3C4F604EBA15E662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
Manifest number: 185D
Signing time: Wed 25 Mar 2026 21:01:43 +0000
Manifest this update: Wed 25 Mar 2026 21:01:43 +0000
Manifest next update: Thu 26 Mar 2026 21:01:43 +0000
Files and hashes: 1: bze-DpbDaFlTujNEYrBpzXK9-lM.roa (hash: ooe09J/1o8+6+gKFLqTffzTatPXG8lw2mIe4kZHRs+0=)
2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: sByeHq067sypBnELsoKmcTSUwhVjYABadnKkWY3ibkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:a3:42:d0:4c:70:5c:3c:4f:60:4e:ba:15:e6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: Mar 25 21:01:43 2026 GMT
Not After : Mar 26 21:01:43 2026 GMT
Subject: CN=c30ccd56da79c5d71992fc7ca1650736fd2b5552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dd:07:22:40:0b:25:5f:46:44:7e:06:fe:05:
e1:77:68:49:30:78:d1:29:e1:9b:5f:1f:26:60:3a:
4c:11:92:1e:69:72:ad:ca:0a:fe:3f:42:c9:d8:e0:
15:e7:83:9f:f5:3b:41:03:01:df:2a:7a:bf:45:a8:
07:c6:f7:88:8f:49:f3:97:cc:37:d5:87:7e:4f:e1:
db:0c:8d:60:d5:b8:5f:05:25:8b:d3:df:7f:71:17:
ac:1e:9d:41:86:b5:ce:46:23:6c:9a:cf:ba:0c:ea:
2d:2c:6f:97:86:55:27:31:86:f9:3b:48:de:c9:2b:
10:ec:5e:ca:3b:e5:d1:43:e6:a5:0e:84:f9:21:48:
82:83:82:bd:cb:28:68:3f:2c:cc:0d:bd:86:37:55:
60:79:cd:91:32:94:cf:37:b1:3d:08:55:e0:bb:84:
ae:18:53:2b:7b:c0:9a:e2:66:e7:a1:63:b6:ee:9c:
fe:75:9c:8a:09:14:97:20:10:36:f7:8d:91:79:cd:
e6:10:4a:05:2c:a8:a1:ce:1b:02:93:37:e6:6a:a2:
5c:ec:59:da:95:d2:e3:26:76:ed:69:e2:87:c5:27:
29:ef:1d:fa:3b:63:9d:3e:d5:c4:70:78:4d:0d:28:
66:28:dc:74:73:26:af:ce:a6:8c:87:b1:11:c1:07:
65:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0C:CD:56:DA:79:C5:D7:19:92:FC:7C:A1:65:07:36:FD:2B:55:52
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:4d:7d:6d:8b:76:2d:ca:92:24:30:ae:b9:4a:f7:fd:96:b7:
ee:c3:47:1a:23:22:57:16:80:cc:e4:11:d7:67:3c:68:cd:1f:
e6:12:5a:56:d3:e3:ff:33:40:d8:3f:25:ef:4a:e4:e5:83:c1:
2d:ec:b7:9c:58:26:1f:be:5a:40:5d:a6:a6:a0:85:5c:7e:35:
b3:69:cb:f9:f2:ce:0d:27:53:4c:b7:bf:74:5b:8f:ce:ed:8d:
37:a6:4f:0e:52:fe:87:6e:3e:b5:a0:28:5f:00:21:d1:cd:f2:
a5:cd:13:3c:e9:ab:7a:88:9e:a2:b5:65:2f:97:17:eb:91:a8:
c2:a5:96:f6:8d:f9:07:57:36:9b:4b:33:3f:88:9a:0f:d0:9f:
ce:d4:72:96:89:36:a1:c6:5e:98:27:92:48:f1:97:c8:4c:a6:
b6:a9:8a:89:86:16:6f:77:90:a1:6c:64:68:81:7a:61:ad:dd:
45:e9:6d:e1:d0:dc:19:1e:ef:b7:dc:5d:77:c0:4b:2a:6d:62:
d3:68:68:f0:f5:f6:0d:9f:5f:04:96:41:e9:ed:6d:f3:1d:c4:
d6:68:d3:95:17:21:71:25:14:f2:a9:3d:19:55:58:76:14:cd:
92:f4:53:0b:eb:cc:5c:7c:9d:d0:fe:6b:7a:b9:7d:56:4b:1e:
b8:30:69:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzaNC0ExwXDxPYE66FeZiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OTM5ZmYxMjkzYjdlMjI3NzlmYzU1YjRjODNmMTNlNTJl
OTQ0MjgwHhcNMjYwMzI1MjEwMTQzWhcNMjYwMzI2MjEwMTQzWjAzMTEwLwYDVQQD
EyhjMzBjY2Q1NmRhNzljNWQ3MTk5MmZjN2NhMTY1MDczNmZkMmI1NTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnt0HIkALJV9GRH4G/gXhd2hJMHjR
KeGbXx8mYDpMEZIeaXKtygr+P0LJ2OAV54Of9TtBAwHfKnq/RagHxveIj0nzl8w3
1Yd+T+HbDI1g1bhfBSWL099/cResHp1BhrXORiNsms+6DOotLG+XhlUnMYb5O0je
ySsQ7F7KO+XRQ+alDoT5IUiCg4K9yyhoPyzMDb2GN1Vgec2RMpTPN7E9CFXgu4Su
GFMre8Ca4mbnoWO27pz+dZyKCRSXIBA2942Rec3mEEoFLKihzhsCkzfmaqJc7Fna
ldLjJnbtaeKHxScp7x36O2OdPtXEcHhNDShmKNx0cyavzqaMh7ERwQdleQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMMMzVbaecXXGZL8fKFlBzb9K1VSMB8GA1UdIwQY
MBaAFImTn/EpO34id5/FW0yD8T5S6UQoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYt
MGU2ODAwMGIzNTM3LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYtMGU2ODAwMGIzNTM3
LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARE19bYt2
LcqSJDCuuUr3/Za37sNHGiMiVxaAzOQR12c8aM0f5hJaVtPj/zNA2D8l70rk5YPB
Ley3nFgmH75aQF2mpqCFXH41s2nL+fLODSdTTLe/dFuPzu2NN6ZPDlL+h24+taAo
XwAh0c3ypc0TPOmreoieorVlL5cX65GowqWW9o35B1c2m0szP4iaD9CfztRylok2
ocZemCeSSPGXyEymtqmKiYYWb3eQoWxkaIF6Ya3dRelt4dDcGR7vt9xdd8BLKm1i
02ho8PX2DZ9fBJZB6e1t8x3E1mjTlRchcSUU8qk9GVVYdhTNkvRTC+vMXHyd0P5r
erl9VkseuDBp2Q==
-----END CERTIFICATE-----
Generated at Thu Mar 26 04:11:40 2026 by rpki-client