Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: 9CFRl6GnZGg9bVJztqcxJNWekmkczwwGnJb/vnr8ElI=
Subject key identifier: 98:8E:94:69:2F:ED:A9:3C:88:DD:43:26:01:54:92:5C:02:32:3F:91
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 019D329AF2FA586F5694D412F53493682932
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0F47
Signing time: Sat 28 Mar 2026 04:01:48 +0000
Manifest this update: Sat 28 Mar 2026 04:01:48 +0000
Manifest next update: Sun 29 Mar 2026 04:01:48 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: blR/Vwsxw3jktYh0Flrh0BKiQ4ZMvKCwMxBMxUN+7kE=)
2: dCLnn7sgK5v7oJDUJbrjvWO6u5U.roa (hash: BC/yFL0CMfvt5OiaE+u7P/nSsti8Z5g8EroFC8bwyK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:9a:f2:fa:58:6f:56:94:d4:12:f5:34:93:68:29:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Mar 28 04:01:48 2026 GMT
Not After : Mar 29 04:01:48 2026 GMT
Subject: CN=988e94692feda93c88dd43260154925c02323f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:80:9d:f7:9b:e4:9d:7f:a0:cc:25:57:18:44:
70:a6:ae:ea:fc:7b:02:64:77:5a:58:4c:73:fe:73:
4d:ca:96:9e:80:d1:1b:02:44:79:05:1a:4b:f2:75:
70:e4:34:61:0c:5c:33:26:8d:e5:f2:c5:0c:1c:d2:
a9:99:e7:8f:e8:8f:1d:a1:ee:8c:ab:fb:c6:14:b7:
3c:b7:19:74:c3:ae:61:7b:14:12:dd:34:23:45:d9:
3c:46:b3:9b:e5:e6:36:c2:bb:93:11:63:f8:af:0f:
b8:ca:b1:64:d6:4e:fa:4b:ed:21:5a:62:19:db:fe:
be:5c:68:20:0f:e7:c5:59:a0:8d:44:71:9a:d1:5d:
c4:81:75:d4:61:db:37:4f:2f:c4:50:0c:3e:b7:06:
46:9f:32:37:3f:34:40:7b:d8:73:53:a8:da:2e:24:
9b:86:0f:35:82:64:af:b8:ed:85:f1:25:e1:9b:a7:
38:a1:18:2f:13:97:18:a5:81:d3:8c:19:39:51:d1:
27:97:ff:42:d4:c4:0f:ee:ce:d4:9b:d9:09:28:09:
86:ff:b5:02:b7:68:82:25:db:d4:0b:59:22:38:fa:
72:fd:3c:32:3a:0f:ed:59:8c:ab:a1:4b:6b:fd:d7:
c2:54:11:a4:26:58:61:d2:58:c9:a3:30:71:ec:25:
bd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8E:94:69:2F:ED:A9:3C:88:DD:43:26:01:54:92:5C:02:32:3F:91
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:6a:7b:6a:ad:b4:87:8a:28:e7:63:6d:12:25:c6:33:91:c1:
70:db:50:c3:ce:00:bd:b9:4e:5e:e9:6f:b4:d1:c2:e3:65:58:
da:00:86:f3:ef:f3:9d:2e:f5:a1:bc:c3:03:c2:35:63:eb:c7:
57:ad:5c:c6:d0:7a:94:a7:f7:1e:a5:b6:cb:0a:c1:11:72:4a:
1c:38:ba:ab:6b:ea:90:2b:26:27:91:14:c4:ee:ae:a9:cf:ec:
cb:12:33:fc:60:5c:04:3c:2e:f4:59:82:a5:01:29:6b:68:2e:
89:00:99:f8:06:4b:c9:49:0b:19:05:5d:25:bf:10:e1:64:19:
4c:e6:0b:fb:a5:99:c6:52:49:36:e5:aa:15:22:67:f8:bb:2c:
f5:fe:75:10:f2:60:11:b8:dc:3f:9f:84:79:16:27:b1:58:2b:
69:d9:01:0c:f9:94:17:a8:0e:17:e0:b0:f7:f0:9c:cb:d0:c1:
05:52:b4:47:32:5d:d8:a8:06:25:ca:fc:5f:8d:fc:ae:32:35:
0f:b7:e7:b5:e9:57:c5:b3:2e:0d:51:f4:60:a2:be:10:c2:50:
39:90:08:c1:a5:c9:0e:bd:0c:f0:6b:33:44:d6:2a:e3:d2:67:
6f:31:b3:22:33:08:9a:ce:6c:42:0c:be:7b:8d:93:fa:5f:24:
f7:76:75:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ymvL6WG9WlNQS9TSTaCkyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGIyYzZhMWE2MWExN2JhYjdjMDMyMDgwYWEzYmYyNDQ3
OGI2ZGQwHhcNMjYwMzI4MDQwMTQ4WhcNMjYwMzI5MDQwMTQ4WjAzMTEwLwYDVQQD
Eyg5ODhlOTQ2OTJmZWRhOTNjODhkZDQzMjYwMTU0OTI1YzAyMzIzZjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYCd95vknX+gzCVXGERwpq7q/HsC
ZHdaWExz/nNNypaegNEbAkR5BRpL8nVw5DRhDFwzJo3l8sUMHNKpmeeP6I8doe6M
q/vGFLc8txl0w65hexQS3TQjRdk8RrOb5eY2wruTEWP4rw+4yrFk1k76S+0hWmIZ
2/6+XGggD+fFWaCNRHGa0V3EgXXUYds3Ty/EUAw+twZGnzI3PzRAe9hzU6jaLiSb
hg81gmSvuO2F8SXhm6c4oRgvE5cYpYHTjBk5UdEnl/9C1MQP7s7Um9kJKAmG/7UC
t2iCJdvUC1kiOPpy/TwyOg/tWYyroUtr/dfCVBGkJlhh0ljJozBx7CW9NQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJiOlGkv7ak8iN1DJgFUklwCMj+RMB8GA1UdIwQY
MBaAFCGLLGoaYaF7q3wDIICqO/JEeLbdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQt
Yjk5MzE2OGJjNTkzLzEvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQtYjk5MzE2OGJjNTkz
LzEvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC2p7aq20
h4oo52NtEiXGM5HBcNtQw84AvblOXulvtNHC42VY2gCG8+/znS71obzDA8I1Y+vH
V61cxtB6lKf3HqW2ywrBEXJKHDi6q2vqkCsmJ5EUxO6uqc/syxIz/GBcBDwu9FmC
pQEpa2guiQCZ+AZLyUkLGQVdJb8Q4WQZTOYL+6WZxlJJNuWqFSJn+Lss9f51EPJg
EbjcP5+EeRYnsVgradkBDPmUF6gOF+Cw9/Ccy9DBBVK0RzJd2KgGJcr8X438rjI1
D7fntelXxbMuDVH0YKK+EMJQOZAIwaXJDr0M8GszRNYq49JnbzGzIjMIms5sQgy+
e42T+l8k93Z1hw==
-----END CERTIFICATE-----
Generated at Sat Mar 28 08:43:55 2026 by rpki-client