Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
File: ilUt2GldSD1Hzkz4RbkGsXUnalw.mft (raw, json)
Hash identifier: JeHQEvvzZD0keeRp9bThpD0+PRn9q9N3KoQKsXXvPy4=
Subject key identifier: 00:45:09:78:DE:53:4E:E3:29:18:AE:CA:06:D8:76:B1:71:83:3A:AE
Authority key identifier: 8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C
Certificate issuer: /CN=8a552dd8695d483d47ce4cf845b906b175276a5c
Certificate serial: 019D27040455465067EA6C0409385CF3B4D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
Manifest number: 0222
Signing time: Wed 25 Mar 2026 22:01:07 +0000
Manifest this update: Wed 25 Mar 2026 22:01:07 +0000
Manifest next update: Thu 26 Mar 2026 22:01:07 +0000
Files and hashes: 1: 3d8cRCvZgk2jZJwzRqwjJ7kOG9Q.roa (hash: Sh3IYzZ1zQ9r12wJte75WaIR+93O150+ToROD8zLC3s=)
2: ilUt2GldSD1Hzkz4RbkGsXUnalw.crl (hash: DdrttzO6n8wz6hWKRBtam4T8usk9QTEJVELX2+Q8mcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:04:55:46:50:67:ea:6c:04:09:38:5c:f3:b4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552dd8695d483d47ce4cf845b906b175276a5c
Validity
Not Before: Mar 25 22:01:07 2026 GMT
Not After : Mar 26 22:01:07 2026 GMT
Subject: CN=00450978de534ee32918aeca06d876b171833aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:46:69:05:c1:ed:23:80:fc:bf:ac:46:7a:2b:
55:08:78:95:7e:cb:1a:43:9a:86:37:d3:29:e1:12:
dc:9e:b8:23:a3:1e:e3:21:4f:c1:78:d2:5b:78:32:
78:ae:97:dd:e8:be:5f:5c:e6:c1:73:bb:14:07:db:
88:35:a1:18:ef:09:56:71:3a:0f:dd:c6:26:6f:70:
c5:d3:73:35:44:43:f9:2b:d0:66:96:8d:59:ce:5f:
99:33:e9:b8:ea:1f:d8:81:5c:7b:8e:9f:2e:ad:58:
fe:a8:55:9f:c9:71:31:3a:9d:ad:6c:e5:8b:6f:ae:
e9:d6:9b:c1:60:9c:bc:6e:e7:5d:4f:69:92:e4:46:
ef:01:18:bd:1f:74:8b:4a:16:2b:98:c3:3e:98:ec:
2b:cb:e0:48:92:10:b8:e1:b9:95:ea:38:49:7c:a4:
bc:20:ea:62:94:c8:dd:e7:0a:ae:27:bb:41:fb:4e:
e1:6a:db:c3:74:d3:d7:db:56:2a:62:e5:ff:85:6b:
b9:57:cb:19:62:8a:ba:69:f4:ff:fb:db:f3:f2:e3:
aa:e2:05:f7:6e:75:fd:d1:45:3c:2d:7b:52:11:70:
3c:d2:4e:18:03:03:de:76:97:7a:92:e3:2f:f1:57:
2c:ab:dd:e8:b2:f6:df:67:07:21:51:5b:a5:8a:e4:
19:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:45:09:78:DE:53:4E:E3:29:18:AE:CA:06:D8:76:B1:71:83:3A:AE
X509v3 Authority Key Identifier:
keyid:8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:37:2f:c4:ad:d5:d4:b2:6b:ae:fd:ef:89:89:b2:21:a6:fc:
d9:37:86:2b:55:e7:91:38:f0:e7:be:a2:72:a0:20:fe:5d:77:
ce:e5:46:6a:23:76:4f:1b:d2:55:3a:a2:45:7d:ce:2e:29:c9:
6a:88:55:e0:5f:55:43:13:00:50:40:e8:e8:fa:af:3d:47:61:
07:ca:ae:ad:39:01:39:58:2f:2c:bc:7c:0f:b2:3d:cf:b3:8b:
a9:08:df:43:c4:ca:5a:d0:da:d2:51:d0:16:c1:11:00:1a:43:
93:5d:7c:42:bb:6a:d6:66:19:c9:31:7d:55:ee:ce:88:e6:17:
61:6a:66:06:e1:c1:95:75:1f:fa:f3:c6:bd:b0:c5:92:ca:e6:
2f:19:47:f0:e3:da:5f:b6:3f:b9:89:d8:46:57:97:a4:1e:70:
a6:1b:2a:cb:9c:13:41:ee:05:5c:ed:50:3b:b1:69:3f:e5:fe:
ca:5e:49:40:b5:03:01:0c:2e:d2:dc:a7:cb:62:64:5f:b7:00:
73:fa:28:dd:09:13:bc:6e:86:ca:8f:fe:1c:ca:fc:61:e9:8a:
ee:c6:de:dc:29:6f:00:8a:26:8c:9f:b7:9e:6f:dc:fa:93:0c:
e1:d7:6c:18:9c:c4:b3:22:b7:3d:f4:7c:db:7b:c9:6a:89:4c:
ab:3d:00:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBARVRlBn6mwECThc87TUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNTUyZGQ4Njk1ZDQ4M2Q0N2NlNGNmODQ1YjkwNmIxNzUy
NzZhNWMwHhcNMjYwMzI1MjIwMTA3WhcNMjYwMzI2MjIwMTA3WjAzMTEwLwYDVQQD
EygwMDQ1MDk3OGRlNTM0ZWUzMjkxOGFlY2EwNmQ4NzZiMTcxODMzYWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0ZpBcHtI4D8v6xGeitVCHiVfssa
Q5qGN9Mp4RLcnrgjox7jIU/BeNJbeDJ4rpfd6L5fXObBc7sUB9uINaEY7wlWcToP
3cYmb3DF03M1REP5K9Bmlo1Zzl+ZM+m46h/YgVx7jp8urVj+qFWfyXExOp2tbOWL
b67p1pvBYJy8buddT2mS5EbvARi9H3SLShYrmMM+mOwry+BIkhC44bmV6jhJfKS8
IOpilMjd5wquJ7tB+07hatvDdNPX21YqYuX/hWu5V8sZYoq6afT/+9vz8uOq4gX3
bnX90UU8LXtSEXA80k4YAwPedpd6kuMv8Vcsq93osvbfZwchUVuliuQZnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFABFCXjeU07jKRiuygbYdrFxgzquMB8GA1UdIwQY
MBaAFIpVLdhpXUg9R85M+EW5BrF1J2pcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAt
MjliM2YwMjcyYjlmLzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAtMjliM2YwMjcyYjlm
LzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDcvxK3V
1LJrrv3viYmyIab82TeGK1XnkTjw576icqAg/l13zuVGaiN2TxvSVTqiRX3OLinJ
aohV4F9VQxMAUEDo6PqvPUdhB8qurTkBOVgvLLx8D7I9z7OLqQjfQ8TKWtDa0lHQ
FsERABpDk118Qrtq1mYZyTF9Ve7OiOYXYWpmBuHBlXUf+vPGvbDFksrmLxlH8OPa
X7Y/uYnYRleXpB5wphsqy5wTQe4FXO1QO7FpP+X+yl5JQLUDAQwu0tyny2JkX7cA
c/oo3QkTvG6Gyo/+HMr8YemK7sbe3ClvAIomjJ+3nm/c+pMM4ddsGJzEsyK3PfR8
23vJaolMqz0A7g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:12 2026 by rpki-client