Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
File: IkI4OfIQchYnZBrmtszqzujZBns.mft (raw, json)
Hash identifier: CWpNnGQJAf6O27Ee1SVIN/8R8jQLBB6EMjyYa8O/pxo=
Subject key identifier: 5F:A0:6B:B7:A6:B0:A0:01:EF:76:09:3B:49:73:F5:BD:96:E9:C1:53
Authority key identifier: 22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
Certificate issuer: /CN=22423839f210721627641ae6b6cceacee8d9067b
Certificate serial: 019D26965421322BAC4BFE1339E814760937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
Manifest number: 0DC9
Signing time: Wed 25 Mar 2026 20:01:19 +0000
Manifest this update: Wed 25 Mar 2026 20:01:19 +0000
Manifest next update: Thu 26 Mar 2026 20:01:19 +0000
Files and hashes: 1: IkI4OfIQchYnZBrmtszqzujZBns.crl (hash: LHXp6JccpLXWCoDZBxDOo/EXKx9knSFw33tE4IR6biU=)
2: sojMdgVzKQwkqrETNbM2QVHp_oA.roa (hash: Z2UII6RbUrfp+wZL3LL7DVhq4lhmq9mEWIUdqO9gofc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:54:21:32:2b:ac:4b:fe:13:39:e8:14:76:09:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22423839f210721627641ae6b6cceacee8d9067b
Validity
Not Before: Mar 25 20:01:19 2026 GMT
Not After : Mar 26 20:01:19 2026 GMT
Subject: CN=5fa06bb7a6b0a001ef76093b4973f5bd96e9c153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:fa:83:b6:cf:24:cd:f7:03:49:c9:7f:cf:
b4:fd:d1:81:53:2e:2a:c0:16:17:75:ba:8f:a7:c2:
e8:f6:e5:a8:c2:49:d1:98:1b:28:8e:51:58:9c:c6:
ef:65:28:09:af:f0:f5:30:af:cd:c2:87:ee:58:00:
1d:9d:22:bf:73:45:1a:dd:c7:31:1a:8a:75:27:30:
6d:e2:df:4f:c5:42:27:d5:e8:4b:ce:bb:a5:7a:85:
45:28:17:c8:0d:ef:a3:fe:31:ac:99:13:cf:20:02:
b4:30:d1:20:88:d1:06:b5:58:54:01:b1:04:39:53:
76:af:01:3d:ed:f5:f5:af:0f:4e:2f:6f:78:bd:2b:
05:29:05:d0:64:74:1c:cc:49:cb:d8:40:88:fe:42:
35:d9:9d:8d:b1:b3:aa:a8:ee:2a:af:fe:a5:88:a8:
10:b6:c1:b3:c5:41:99:57:29:dc:b4:0b:5d:18:63:
aa:cb:db:ad:36:66:1a:23:13:06:ff:07:e4:85:0e:
2e:83:bc:a4:47:f1:02:a4:a6:3a:d3:36:26:cd:6b:
6e:a3:be:4b:a7:97:1f:a0:05:d2:b9:d4:12:c0:4b:
9f:ff:58:57:f4:f3:4b:82:28:58:a1:c1:c7:2e:72:
2f:87:60:c2:5d:bc:fb:5d:16:79:c6:fd:f8:41:1c:
81:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A0:6B:B7:A6:B0:A0:01:EF:76:09:3B:49:73:F5:BD:96:E9:C1:53
X509v3 Authority Key Identifier:
keyid:22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:4c:8c:ea:21:97:be:cf:d1:e3:c0:4f:0b:63:b2:e8:35:44:
38:60:5b:bc:39:49:34:06:b1:31:ea:1b:d2:54:dc:43:b2:d9:
de:53:33:53:34:58:4c:3f:eb:7e:0d:8e:87:11:92:0c:5e:bb:
a1:9d:ee:df:18:f1:58:52:b3:f2:d0:1b:25:ee:f4:c9:9c:81:
a6:8e:dd:10:86:6f:bf:fd:24:5d:49:76:79:3a:79:34:b6:3c:
54:37:7c:b4:93:27:16:e8:e8:aa:be:08:45:f1:f4:09:f6:0c:
4e:23:cb:07:a7:cb:a1:f1:74:34:e5:76:d9:6e:30:d5:b1:d6:
d1:4c:7c:17:64:0b:b6:79:91:04:d6:71:72:8d:10:d7:15:3f:
b1:c6:45:88:34:74:e3:d3:02:9b:1c:bf:3e:3d:fe:1a:ae:23:
44:ab:ae:57:ca:a6:1d:cf:3a:6c:65:f2:27:e8:38:5a:11:a1:
54:78:65:63:16:d1:f0:c8:ad:d2:16:18:fe:a5:ba:c8:44:73:
fd:19:19:17:5e:fe:4e:b1:5a:58:d2:8b:ba:ec:b5:4f:7f:63:
66:e7:4a:04:22:f4:8b:84:c2:79:e4:54:d6:06:98:6e:7b:15:
f2:a3:68:ec:75:d0:ec:1e:8b:56:3c:fc:ec:7f:ad:ce:25:24:
31:db:a7:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mllQhMiusS/4TOegUdgk3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDIzODM5ZjIxMDcyMTYyNzY0MWFlNmI2Y2NlYWNlZThk
OTA2N2IwHhcNMjYwMzI1MjAwMTE5WhcNMjYwMzI2MjAwMTE5WjAzMTEwLwYDVQQD
Eyg1ZmEwNmJiN2E2YjBhMDAxZWY3NjA5M2I0OTczZjViZDk2ZTljMTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6D6g7bPJM33A0nJf8+0/dGBUy4q
wBYXdbqPp8Lo9uWowknRmBsojlFYnMbvZSgJr/D1MK/NwofuWAAdnSK/c0Ua3ccx
Gop1JzBt4t9PxUIn1ehLzruleoVFKBfIDe+j/jGsmRPPIAK0MNEgiNEGtVhUAbEE
OVN2rwE97fX1rw9OL294vSsFKQXQZHQczEnL2ECI/kI12Z2NsbOqqO4qr/6liKgQ
tsGzxUGZVynctAtdGGOqy9utNmYaIxMG/wfkhQ4ug7ykR/ECpKY60zYmzWtuo75L
p5cfoAXSudQSwEuf/1hX9PNLgihYocHHLnIvh2DCXbz7XRZ5xv34QRyBxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+ga7emsKAB73YJO0lz9b2W6cFTMB8GA1UdIwQY
MBaAFCJCODnyEHIWJ2Qa5rbM6s7o2QZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYt
OThjODc1YWUzNWM5LzEvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYtOThjODc1YWUzNWM5
LzEvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALEyM6iGX
vs/R48BPC2Oy6DVEOGBbvDlJNAaxMeob0lTcQ7LZ3lMzUzRYTD/rfg2OhxGSDF67
oZ3u3xjxWFKz8tAbJe70yZyBpo7dEIZvv/0kXUl2eTp5NLY8VDd8tJMnFujoqr4I
RfH0CfYMTiPLB6fLofF0NOV22W4w1bHW0Ux8F2QLtnmRBNZxco0Q1xU/scZFiDR0
49MCmxy/Pj3+Gq4jRKuuV8qmHc86bGXyJ+g4WhGhVHhlYxbR8Mit0hYY/qW6yERz
/RkZF17+TrFaWNKLuuy1T39jZudKBCL0i4TCeeRU1gaYbnsV8qNo7HXQ7B6LVjz8
7H+tziUkMdundA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:43:55 2026 by rpki-client