Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: PVLXSCujE6YRzatNZuFgYDI0J5szjNYXQqkbXZQxiTY=
Subject key identifier: FF:90:D6:44:10:91:42:11:49:D3:22:44:2A:9B:1D:49:C0:58:27:56
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 019D2A04BA57D1C6EDA40A4BAEA3569530DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 14BC
Signing time: Thu 26 Mar 2026 12:00:45 +0000
Manifest this update: Thu 26 Mar 2026 12:00:45 +0000
Manifest next update: Fri 27 Mar 2026 12:00:45 +0000
Files and hashes: 1: 0POn4eiSe4D7lLX8DICoyCNVffg.roa (hash: IuTOIfnYnKgQ1QMnujowbH+xUlcXahzENOK89qB7q6Y=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: tDSoyniMAIGA2OjElZ6xHibg1KlCgk4OpGj99xIK9Io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:ba:57:d1:c6:ed:a4:0a:4b:ae:a3:56:95:30:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Mar 26 12:00:45 2026 GMT
Not After : Mar 27 12:00:45 2026 GMT
Subject: CN=ff90d6441091421149d322442a9b1d49c0582756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:72:01:8c:39:3c:de:32:75:58:fc:90:06:88:
cc:07:fa:ea:f3:b1:26:22:82:e2:a9:74:e0:ad:89:
85:7b:8b:b6:3f:43:6c:80:e2:fc:ac:1a:69:4b:a0:
47:dc:16:12:4b:57:8d:50:be:8f:48:71:35:0a:c0:
60:8f:f9:1b:ff:63:51:43:90:4f:f1:0e:d8:a1:0c:
76:4f:45:5a:0e:5e:a4:99:7f:89:7e:17:d5:d6:e9:
df:ec:ec:4c:85:14:5c:a9:ee:65:33:bf:10:e9:a5:
75:62:03:50:42:65:4c:a5:b0:31:a8:f6:89:e5:78:
09:0a:cb:7c:0f:4c:fa:04:9d:10:49:d3:59:1f:ab:
d3:1c:b8:1d:ec:8b:c8:48:95:7a:db:5c:7e:5e:7e:
b4:24:3e:91:cf:35:b6:d8:4b:91:dc:81:af:37:8f:
01:b3:19:71:e5:c8:6f:57:fe:7d:ee:f1:a7:9e:28:
27:7c:5a:9c:2a:25:98:16:52:8e:19:e1:c2:6b:c2:
2e:38:49:ae:2d:05:6e:81:64:87:ab:68:cf:a1:1d:
df:5f:36:d0:fd:3e:22:e1:78:35:d2:2f:3c:41:1c:
ce:4d:0c:b6:82:36:12:93:56:e6:2c:e3:eb:ea:db:
e1:07:03:56:a9:63:d0:dc:9b:7f:2c:c5:fa:44:09:
ec:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:90:D6:44:10:91:42:11:49:D3:22:44:2A:9B:1D:49:C0:58:27:56
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:b4:1a:2c:7f:25:37:b9:60:5b:32:bc:48:e3:1d:32:87:1d:
3c:15:ea:97:74:b0:b7:bd:1c:40:94:87:16:37:59:33:39:e6:
bf:98:3c:35:fe:0b:3a:09:e2:d5:76:5e:23:4f:46:63:3d:6a:
82:bb:d8:69:85:48:f2:fc:3d:85:20:bf:c8:44:00:9c:a0:2b:
3c:86:55:d2:42:eb:1b:49:e3:62:61:8d:0d:7d:62:be:06:2a:
d4:2e:34:a2:c6:38:f0:92:47:ff:43:6f:a2:38:c9:e1:3b:79:
07:b6:06:b1:79:06:71:15:0c:7a:2d:9e:f8:7a:98:15:f1:af:
93:b3:e9:ec:20:5b:81:ff:b9:9d:48:f5:e1:a3:af:c6:c3:6b:
e8:c5:48:7a:ff:3b:f1:f5:a7:ce:44:c0:a4:74:b3:c2:58:50:
c6:24:2a:2e:90:f7:4c:c3:80:7d:c2:85:a9:87:f9:2e:3d:77:
b6:b1:fb:8c:0a:7d:5d:5e:2d:b7:4c:1d:2d:d4:67:00:bd:d2:
46:84:4f:49:cf:09:3c:0f:62:1e:30:af:b1:b1:2f:7a:17:cf:
65:bd:2b:2a:99:15:70:ce:a2:c9:34:09:c9:45:f6:17:ea:b8:
20:bd:39:dd:b5:cc:f5:e5:8b:de:d8:c9:d2:41:53:7b:0b:5e:
32:b0:68:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qBLpX0cbtpApLrqNWlTDeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMjFmZmFkZTkzMGJkMWZkMmUxNzg4Y2ZmNDA3ZDlkMzQx
MzRlMTcwHhcNMjYwMzI2MTIwMDQ1WhcNMjYwMzI3MTIwMDQ1WjAzMTEwLwYDVQQD
EyhmZjkwZDY0NDEwOTE0MjExNDlkMzIyNDQyYTliMWQ0OWMwNTgyNzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3IBjDk83jJ1WPyQBojMB/rq87Em
IoLiqXTgrYmFe4u2P0NsgOL8rBppS6BH3BYSS1eNUL6PSHE1CsBgj/kb/2NRQ5BP
8Q7YoQx2T0VaDl6kmX+JfhfV1unf7OxMhRRcqe5lM78Q6aV1YgNQQmVMpbAxqPaJ
5XgJCst8D0z6BJ0QSdNZH6vTHLgd7IvISJV621x+Xn60JD6RzzW22EuR3IGvN48B
sxlx5chvV/597vGnnignfFqcKiWYFlKOGeHCa8IuOEmuLQVugWSHq2jPoR3fXzbQ
/T4i4Xg10i88QRzOTQy2gjYSk1bmLOPr6tvhBwNWqWPQ3Jt/LMX6RAnsNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP+Q1kQQkUIRSdMiRCqbHUnAWCdWMB8GA1UdIwQY
MBaAFIsh/63pML0f0uF4jP9AfZ00E04XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85Y2UwZWItM2FiYS00YjM2LWI3YzQt
NDI1YzUxZDc4ODhiLzEvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi85Y2UwZWItM2FiYS00YjM2LWI3YzQtNDI1YzUxZDc4ODhi
LzEvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMrQaLH8l
N7lgWzK8SOMdMocdPBXql3Swt70cQJSHFjdZMznmv5g8Nf4LOgni1XZeI09GYz1q
grvYaYVI8vw9hSC/yEQAnKArPIZV0kLrG0njYmGNDX1ivgYq1C40osY48JJH/0Nv
ojjJ4Tt5B7YGsXkGcRUMei2e+HqYFfGvk7Pp7CBbgf+5nUj14aOvxsNr6MVIev87
8fWnzkTApHSzwlhQxiQqLpD3TMOAfcKFqYf5Lj13trH7jAp9XV4tt0wdLdRnAL3S
RoRPSc8JPA9iHjCvsbEvehfPZb0rKpkVcM6iyTQJyUX2F+q4IL053bXM9eWL3tjJ
0kFTewteMrBoWQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 20:37:16 2026 by rpki-client