Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
File: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft (raw, json)
Hash identifier: XOXBWn8qC2UqoXISCBqyBYe1ws/onMGxdRz69MfIAqY=
Subject key identifier: DD:48:05:46:92:7A:44:F0:7D:38:D1:42:03:14:30:2C:F5:7D:98:1C
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 019D26CCE578BD77570E38C19D6DE02D3AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
Manifest number: 1889
Signing time: Wed 25 Mar 2026 21:00:55 +0000
Manifest this update: Wed 25 Mar 2026 21:00:55 +0000
Manifest next update: Thu 26 Mar 2026 21:00:55 +0000
Files and hashes: 1: VzL5RLnlQJ3wSeF6IZXD0hLHbzI.roa (hash: rYHDP0eMxniB9OvjMw+m6Idpm0cWRBfVpSJ7IC660D8=)
2: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl (hash: CpzSmfaGvZ4P1ddJvG9hywBVDa5CaZVyTlUknPPkULg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:e5:78:bd:77:57:0e:38:c1:9d:6d:e0:2d:3a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: Mar 25 21:00:55 2026 GMT
Not After : Mar 26 21:00:55 2026 GMT
Subject: CN=dd480546927a44f07d38d1420314302cf57d981c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:47:cf:50:15:0f:1a:77:8b:bc:fb:30:73:
29:bf:15:45:cf:70:cb:9d:50:97:8f:d8:0d:2d:f7:
1c:e8:f3:94:af:5c:2e:13:c6:c5:e1:05:a8:09:a9:
ff:50:d1:72:79:7f:46:23:96:a6:fa:74:a7:a0:ed:
37:a3:e3:d3:38:f3:20:24:32:8a:b5:4c:fb:d1:08:
f3:9e:b1:42:3f:19:30:2b:de:49:71:89:c3:70:c6:
fc:62:5e:6b:aa:0f:59:e0:71:a3:dd:de:96:5f:d7:
60:07:a7:69:86:38:07:c1:bb:a2:36:2e:03:7a:83:
c7:8e:a5:aa:10:a3:8c:fb:f8:af:5b:70:a3:68:5b:
83:18:af:8f:57:c1:1b:47:5e:d0:3d:a7:4e:81:17:
c0:b6:f6:3e:06:b7:a0:e7:b6:85:74:7b:68:ca:db:
0a:f3:bd:24:4d:5b:30:b6:ac:9b:0f:de:b5:93:a0:
7d:3f:c5:c2:61:ea:83:53:27:7f:23:96:b0:66:80:
65:3e:b7:05:8d:44:1f:e9:d1:31:7b:fa:1d:1d:f3:
54:f1:95:d5:fd:2a:31:93:6d:8f:62:d1:95:0e:26:
06:b9:13:79:fb:6b:fe:78:7f:a6:aa:2f:55:3b:47:
98:1e:16:a3:e4:04:6f:e8:53:7e:88:0f:8f:58:df:
6d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:48:05:46:92:7A:44:F0:7D:38:D1:42:03:14:30:2C:F5:7D:98:1C
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:d4:4e:04:cb:9a:4e:bb:9c:07:f3:55:72:eb:d2:9f:f5:ce:
29:6b:ba:58:93:a3:1f:7d:aa:7c:66:47:f6:7e:b0:d4:9a:90:
3e:4d:bd:b7:10:a3:54:91:00:33:3f:b2:09:5a:37:b1:cf:b5:
11:ba:26:40:df:95:60:0a:da:c0:f7:44:43:f9:af:b0:8f:99:
eb:23:b4:11:5b:9b:db:c5:40:f6:c9:48:db:d1:f0:38:6b:85:
e9:00:8f:db:ba:1a:ba:4b:73:72:83:56:fc:cf:aa:90:34:e6:
69:24:36:38:d1:e4:98:1e:bb:fa:74:b4:fb:15:dd:ac:e4:cd:
15:56:13:45:b5:8a:7c:b8:04:87:1c:a4:9b:44:40:93:24:ec:
7d:14:37:17:f9:be:ee:e4:1e:a4:72:0e:23:ad:c8:83:27:bb:
ae:69:91:cc:b3:12:a2:09:38:91:18:c1:5d:e0:e2:b1:18:b4:
f3:25:f9:82:69:d7:bc:d7:8f:70:fd:91:7e:3d:9b:b5:55:8a:
b6:c7:7c:c5:99:ac:f6:20:50:f7:ae:b0:ee:ad:d4:4f:96:59:
f6:0a:bd:4e:0b:0c:7a:d4:12:d5:6d:25:52:16:ec:31:3d:2b:
fd:c7:5f:fd:e6:0e:fb:81:a5:d6:77:fe:9f:f9:97:c9:73:45:
f5:94:f9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:16 2026 by rpki-client