Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json)
Hash identifier: xdqh8YIYHgvPrfZoJuDlVlqzB9KuarSxKs32tJJYnAA=
Subject key identifier: 51:27:E3:05:4D:1D:39:99:1C:A5:3E:96:AC:0D:03:81:E6:21:55:FD
Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Certificate serial: 019D292980CDEF0443A97EAB9E2D3F826B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
Manifest number: 05CB
Signing time: Thu 26 Mar 2026 08:01:18 +0000
Manifest this update: Thu 26 Mar 2026 08:01:18 +0000
Manifest next update: Fri 27 Mar 2026 08:01:18 +0000
Files and hashes: 1: 4GRqDQUSb-zxr8Uio1ztz9ttwpQ.roa (hash: ATHhAZBwTjYGOPvU16akA/fsoKv3w9kmqPeuvaUthH0=)
2: EdRGRNAOunRYG7-_JByQf_-npzI.roa (hash: hCZ1ruXMfJaNp5NsNXemKDBnVae+viS5ZTIr51GpNRQ=)
3: On2nk-aByUGs4ZA6emj31XEJdso.roa (hash: DD3HadfYy5dPFXQsNsDN3ezTTc4+paMyIyZQDpChk8M=)
4: QmnB2CMIfe5umcxczxRujV0wYEk.roa (hash: lwZAzq1D6hmN+6U+dqklR1EjzUoOQPeBNTMLHAdXkGQ=)
5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: +IPNXUic1aJiH+ZG+7U5bxn523h3+mxSNxlB5y5wxyE=)
6: tsHmi25vrKfns5kPGhl6myHWaVw.roa (hash: 8MIMAYAM0/jsI9v0uOOSYvki5uUrLoYRmY+NS2ZIDRg=)
7: vX_8fXaxigdlWpe1tG-xpUdtIoQ.roa (hash: XxkJj1YMXQmGGy2zQBCP59NASJ3xuWotiNT/aTYNmvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:80:cd:ef:04:43:a9:7e:ab:9e:2d:3f:82:6b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Validity
Not Before: Mar 26 08:01:18 2026 GMT
Not After : Mar 27 08:01:18 2026 GMT
Subject: CN=5127e3054d1d39991ca53e96ac0d0381e62155fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:46:bc:9e:b6:1a:f9:49:ef:10:3a:73:e9:07:
8d:3e:b0:0f:80:29:0e:02:e5:16:49:2e:00:81:db:
70:d1:0c:26:e9:7f:0a:0d:c7:e6:92:80:a2:ce:f7:
91:1f:dc:46:a4:78:35:2b:53:7f:b6:19:e4:df:24:
40:48:3c:90:75:52:98:b7:db:69:0f:31:e8:f2:ab:
16:96:52:01:e8:45:fb:51:2e:d4:d0:d8:43:68:f5:
53:79:c5:af:31:8a:5c:26:f6:1b:01:80:1d:69:84:
6a:95:e9:42:47:6e:b5:49:b2:24:17:3b:bc:57:70:
c5:c9:ea:21:96:49:82:16:44:17:f7:3b:af:46:48:
56:d5:28:fd:68:78:3c:a0:5c:1e:ce:60:88:f7:f9:
33:67:81:f4:0a:7b:e9:d2:0c:c9:d1:56:50:0a:fe:
41:fa:61:a8:a0:5a:c0:fc:37:96:64:1f:bb:73:1d:
5c:b3:f8:92:cb:d7:64:90:96:e2:37:33:0b:8b:f0:
91:4f:8d:f7:fd:9e:54:fb:d2:36:44:06:96:c8:d2:
44:34:ab:e0:f7:a1:ad:2e:18:26:28:ff:8e:3b:16:
85:66:48:9c:f5:8f:24:ac:de:16:51:9e:bc:16:29:
b8:5b:5f:1c:d6:f7:77:3c:6a:ad:f4:d2:9f:ff:80:
e0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:27:E3:05:4D:1D:39:99:1C:A5:3E:96:AC:0D:03:81:E6:21:55:FD
X509v3 Authority Key Identifier:
keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:4a:b0:1a:aa:de:fb:a1:4c:dd:77:cd:b6:2c:9a:0a:52:d6:
b2:64:ed:07:a5:46:71:9c:f5:cb:4b:51:9d:e7:7c:69:d0:6c:
e3:71:5b:8f:20:96:53:95:20:fb:a3:66:1f:1c:1c:87:33:84:
e4:0e:a0:19:35:40:02:06:68:25:07:98:6b:3a:f2:ec:b7:87:
ad:0c:c5:36:67:2b:2c:c8:87:0a:2b:05:c5:fe:bc:a8:87:e3:
e5:8e:20:8a:d7:8a:38:ee:21:63:f6:61:b8:b5:75:7c:d0:31:
84:5b:a8:65:dc:d4:8c:4b:d5:95:aa:24:d8:17:c4:48:1a:06:
86:15:8b:c6:43:ab:21:3e:d5:c3:3d:ac:75:74:c9:49:07:51:
c7:53:c6:98:4b:f1:a7:69:33:e8:f5:80:03:01:67:57:c5:4b:
6d:49:96:7c:ea:49:06:3c:a4:9c:de:fb:89:2f:e1:b4:47:50:
93:a1:9e:64:d7:e0:40:9f:0b:c7:b4:8c:45:3b:68:99:da:4c:
fd:c8:3e:ca:0f:f3:06:f4:55:c2:3c:25:32:c0:91:ce:59:01:
13:5f:a8:1f:92:cf:f5:9a:c0:54:90:10:54:18:f7:3b:c5:32:
d0:5c:0d:35:fb:ff:66:d7:bc:07:5a:53:c3:eb:5a:95:37:39:
ae:e3:60:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKYDN7wRDqX6rni0/gmtBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4
ZTQ1MGEwHhcNMjYwMzI2MDgwMTE4WhcNMjYwMzI3MDgwMTE4WjAzMTEwLwYDVQQD
Eyg1MTI3ZTMwNTRkMWQzOTk5MWNhNTNlOTZhYzBkMDM4MWU2MjE1NWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUa8nrYa+UnvEDpz6QeNPrAPgCkO
AuUWSS4Agdtw0Qwm6X8KDcfmkoCizveRH9xGpHg1K1N/thnk3yRASDyQdVKYt9tp
DzHo8qsWllIB6EX7US7U0NhDaPVTecWvMYpcJvYbAYAdaYRqlelCR261SbIkFzu8
V3DFyeohlkmCFkQX9zuvRkhW1Sj9aHg8oFwezmCI9/kzZ4H0Cnvp0gzJ0VZQCv5B
+mGooFrA/DeWZB+7cx1cs/iSy9dkkJbiNzMLi/CRT433/Z5U+9I2RAaWyNJENKvg
96GtLhgmKP+OOxaFZkic9Y8krN4WUZ68Fim4W18c1vd3PGqt9NKf/4DglwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFEn4wVNHTmZHKU+lqwNA4HmIVX9MB8GA1UdIwQY
MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt
NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3
LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoUqwGqre
+6FM3XfNtiyaClLWsmTtB6VGcZz1y0tRned8adBs43FbjyCWU5Ug+6NmHxwchzOE
5A6gGTVAAgZoJQeYazry7LeHrQzFNmcrLMiHCisFxf68qIfj5Y4giteKOO4hY/Zh
uLV1fNAxhFuoZdzUjEvVlaok2BfESBoGhhWLxkOrIT7Vwz2sdXTJSQdRx1PGmEvx
p2kz6PWAAwFnV8VLbUmWfOpJBjyknN77iS/htEdQk6GeZNfgQJ8Lx7SMRTtomdpM
/cg+yg/zBvRVwjwlMsCRzlkBE1+oH5LP9ZrAVJAQVBj3O8Uy0FwNNfv/Zte8B1pT
w+talTc5ruNgUQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:55:58 2026 by rpki-client