Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: /seUKcUwLg+86ubUBHWe/c0XJVhqtAfZOlMIut9XcNI=
Subject key identifier: F0:94:61:65:4E:32:15:B3:E0:68:97:BA:01:19:F7:39:FF:19:AD:27
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 019D265F324AE31E7D3349904805D8734486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 1890
Signing time: Wed 25 Mar 2026 19:01:05 +0000
Manifest this update: Wed 25 Mar 2026 19:01:05 +0000
Manifest next update: Thu 26 Mar 2026 19:01:05 +0000
Files and hashes: 1: QACcx3bmkYq5FVm71dmit53bn4Q.roa (hash: oQ/m7QfRfNheRWfUqid3dTy2xJX9VnnT62jOhchvHuk=)
2: gux-IxdkibcThQl39PWiMsakK0g.roa (hash: xADBPDkQYtVHScAVn2k1rTwtjm/TxC5Y/n4oo7GBk1E=)
3: jpvZw7M6HWfeaPP7BBGWUfnUPW8.roa (hash: m69AM/qWHvVH8vQjk7f2bA/DtDMk2TIVp7SRlmCI4co=)
4: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: MbDQiuEgweFETWNbekSiHwd0uQBFhoy1weyipp9skPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:32:4a:e3:1e:7d:33:49:90:48:05:d8:73:44:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Mar 25 19:01:05 2026 GMT
Not After : Mar 26 19:01:05 2026 GMT
Subject: CN=f09461654e3215b3e06897ba0119f739ff19ad27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ce:da:02:3f:a9:18:11:2e:cf:02:29:85:d4:
0a:e0:62:95:8e:f2:66:05:f9:3a:81:8c:52:37:c0:
79:f3:9f:c7:65:54:1e:9b:32:73:fd:5f:ab:8b:8d:
68:05:04:f0:f0:bd:c5:eb:9d:28:22:68:f2:be:e6:
b4:75:53:ab:b7:c7:96:f2:db:88:bf:a4:44:f0:66:
28:0a:b8:53:1d:94:32:00:ac:d5:56:3f:59:91:7d:
39:78:58:08:0a:4d:24:6d:a1:b7:89:67:8b:e1:e1:
ce:db:2f:7a:2e:81:f6:74:a5:80:90:9b:30:0e:85:
92:16:18:48:78:22:2f:e5:df:75:89:3f:04:db:97:
4c:1c:62:56:84:76:35:35:25:30:9d:ad:b2:84:6f:
ad:d6:60:82:2b:e3:c3:7e:f5:47:02:18:cd:d4:bd:
d2:21:48:1d:e9:a1:30:27:2a:4d:8d:38:be:cd:61:
b8:96:5e:7c:7a:44:1e:ee:1c:95:e3:6d:e1:6e:59:
39:8c:25:d5:71:39:5c:12:ed:9a:10:35:53:d6:d2:
2e:c7:f2:c8:38:21:41:46:be:03:bc:2f:13:1b:a7:
a9:55:57:36:f9:b3:3d:95:0f:70:67:02:3a:c7:3f:
77:f5:66:31:e5:20:fe:80:ac:a1:58:1c:8e:3d:9c:
0f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:94:61:65:4E:32:15:B3:E0:68:97:BA:01:19:F7:39:FF:19:AD:27
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:02:46:7d:63:93:2e:35:49:2c:05:08:cd:f1:92:80:3f:de:
e3:bd:d5:02:27:f0:8e:55:a5:1e:5b:d7:89:23:63:0c:91:3c:
92:84:aa:74:27:2f:6d:02:53:a1:44:15:14:bf:86:a4:fa:2b:
f5:dd:53:33:45:96:9b:88:15:81:f7:56:d3:f5:fd:9f:ea:1b:
d9:e0:a1:4d:c4:2c:18:5b:fe:84:01:a7:e3:64:5d:5c:25:f0:
cf:71:7c:60:aa:e2:74:83:dc:34:49:b0:71:31:eb:74:4a:16:
c4:a5:33:9a:54:fe:1e:b7:23:0b:5f:c7:eb:6b:58:62:ac:71:
72:c2:8b:29:49:5c:1e:fd:40:01:88:e9:ff:5f:9d:33:0e:8a:
cb:59:68:c2:55:c9:34:2e:bc:46:36:6f:55:40:7d:a3:4f:6f:
32:6e:37:4e:98:2d:9f:0f:1c:e6:5a:a3:9c:1b:79:fe:57:d7:
de:db:fb:73:eb:2e:6e:97:1e:93:4a:56:f1:80:8c:e3:08:cc:
ca:21:8c:c0:9c:e0:84:53:7b:34:1a:45:5a:ca:7f:55:90:14:
c8:52:21:4b:1f:79:07:2d:7d:04:aa:bb:17:f7:a2:09:a7:ff:
93:ee:2a:f1:b8:db:db:f2:0b:8a:52:a6:bb:4d:50:58:67:05:
13:f9:88:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:22 2026 by rpki-client