Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
File: iDg0C7z4K84GXO6zeMuqR7mjLN0.mft (raw, json)
Hash identifier: A1YyvjPSw7Uy3r+3dSExApGx4d4iNKgRABfOT0IZd04=
Subject key identifier: 86:A3:02:85:89:65:32:95:13:1E:CB:AD:B7:D2:FE:3D:10:A8:71:F2
Authority key identifier: 88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD
Certificate issuer: /CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd
Certificate serial: 019D265F2DDA55445AD854F7A40B15485383
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
Manifest number: D2
Signing time: Wed 25 Mar 2026 19:01:04 +0000
Manifest this update: Wed 25 Mar 2026 19:01:04 +0000
Manifest next update: Thu 26 Mar 2026 19:01:04 +0000
Files and hashes: 1: 82yqy0aGJzKzR4R_K7jhO-MXZ48.asa (hash: QLpjtYyVJWNod7Hjm1qgZ6D0o3OhLnBCKHSjT6fQXEI=)
2: iDg0C7z4K84GXO6zeMuqR7mjLN0.crl (hash: DGIvCw4RFjuq1PdHSRi4Y3jpGnDwqsaB+2kK6thyB/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:2d:da:55:44:5a:d8:54:f7:a4:0b:15:48:53:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd
Validity
Not Before: Mar 25 19:01:04 2026 GMT
Not After : Mar 26 19:01:04 2026 GMT
Subject: CN=86a3028589653295131ecbadb7d2fe3d10a871f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bb:ff:50:80:b4:9d:f4:8b:07:84:1f:04:23:
5f:45:ae:42:65:5c:88:3e:de:b9:8a:a8:4f:06:3d:
4d:41:8e:4a:8b:ce:6c:8a:6a:28:39:b8:59:4d:49:
4b:b1:2d:dd:39:18:f7:db:46:3a:4b:9a:a3:2d:6b:
65:ad:39:fa:67:e2:c2:73:ec:ad:b9:c9:82:7b:2d:
08:ee:62:19:f7:e4:11:97:e8:d7:af:f7:8f:1f:1a:
dd:60:0b:76:93:33:a5:e8:6d:e3:5e:f0:ca:ed:f7:
55:03:60:1b:a3:3e:7a:0b:73:83:42:47:d0:db:a4:
1d:0c:02:1a:58:c6:58:59:d6:e6:9e:f2:e4:2d:7b:
ab:5b:6d:1d:4e:08:14:0f:c2:57:f1:1a:f4:af:b6:
8d:be:fd:ff:b7:86:bd:32:e0:c7:dd:fa:57:d0:03:
06:02:57:79:11:59:03:1c:56:c7:01:0f:64:7d:7b:
93:32:28:b5:93:5c:7c:83:6b:56:e3:45:8f:f8:18:
a0:ad:32:d1:2e:cc:13:c5:8f:29:1b:f0:9e:12:40:
c4:30:57:29:b2:5a:07:61:03:47:d3:58:fe:b7:8a:
cf:e7:8c:6f:3a:8c:94:d4:dd:c8:35:dd:8a:17:c8:
f1:05:fa:b7:9b:2e:e1:6e:9b:5a:da:f9:22:79:86:
d7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A3:02:85:89:65:32:95:13:1E:CB:AD:B7:D2:FE:3D:10:A8:71:F2
X509v3 Authority Key Identifier:
keyid:88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:2d:a2:72:c6:f2:ea:f2:d0:a2:0e:46:de:42:8d:33:e3:90:
c7:39:f7:c1:45:b0:02:1d:eb:60:f1:e8:d7:8e:0c:e7:5b:23:
3b:66:09:8a:36:77:6e:82:dd:e2:33:1b:2a:1d:69:dd:e1:91:
72:9c:86:e5:b6:c1:36:50:10:8c:4a:4c:d6:d4:45:61:1c:4e:
36:8c:e9:da:34:bb:95:d0:48:1f:bb:01:26:38:15:c5:55:21:
df:9a:2c:52:da:0c:6a:3d:fd:95:5b:95:bc:00:37:d2:42:a5:
67:33:b1:73:c4:ba:fe:d5:88:7f:84:e3:a9:59:61:ef:90:bf:
65:5b:d8:41:b0:2c:0d:ca:07:89:fd:76:e3:70:94:df:bc:dd:
90:31:6f:ee:b0:60:78:03:b9:0f:c7:fd:50:99:a1:23:01:04:
6a:9a:68:0a:73:a8:7f:f2:08:08:c6:12:54:63:2d:e7:26:79:
08:72:20:d6:8f:35:c7:6e:fe:72:5f:03:2e:ce:80:31:8d:c4:
ea:e4:6a:a2:c4:9a:50:ee:6c:a5:3c:01:bb:c6:e0:81:6b:f7:
6e:f4:e6:74:5e:bb:0d:d3:62:03:dc:92:5b:53:d9:73:84:ed:
d3:b5:a2:36:a7:58:50:d3:41:69:71:6a:f4:3d:74:ee:67:d2:
9c:ec:8d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:57:02 2026 by rpki-client