Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json)
Hash identifier: VFr+zwlATkUlXsA0om2yswrEgZNr/cV5+nIEC6Qwqvw=
Subject key identifier: FA:0A:57:FE:AA:85:64:86:C0:61:CA:7A:89:76:A4:35:E3:9F:4E:FF
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 019D27E0750A516113EDB9CB87F14B30F481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
Manifest number: 1471
Signing time: Thu 26 Mar 2026 02:01:54 +0000
Manifest this update: Thu 26 Mar 2026 02:01:54 +0000
Manifest next update: Fri 27 Mar 2026 02:01:54 +0000
Files and hashes: 1: AXDbFHRRURCQerpRgnAggK7Ta-Y.roa (hash: p8zZBqBwXmRPjDHpTUw1CzO1XmAgl9lFsGmMaXiazxE=)
2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: 1xpSy/BSh2/EpgQEsSEI85eAEOJxtT3EyPxkl1AvI6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:75:0a:51:61:13:ed:b9:cb:87:f1:4b:30:f4:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: Mar 26 02:01:54 2026 GMT
Not After : Mar 27 02:01:54 2026 GMT
Subject: CN=fa0a57feaa856486c061ca7a8976a435e39f4eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:27:4f:72:c8:63:f6:22:b0:9e:b6:da:75:
62:8f:32:d8:52:e8:79:f7:21:25:c1:8e:d2:d0:c8:
85:a8:e3:1c:a2:2a:d6:2e:a2:24:95:f1:9f:92:31:
06:c3:06:97:65:9a:c0:be:3d:9a:c4:c6:02:71:43:
6f:f8:05:2f:23:f6:d8:a6:6e:5e:18:ec:73:3a:84:
9b:3f:cf:1e:8c:cd:f3:53:0a:fa:9c:1c:69:d1:ca:
3b:a5:da:9c:55:f5:ca:39:c4:70:a2:fc:f7:f7:f4:
36:38:c5:17:62:3b:6f:af:eb:f7:07:42:88:0c:f9:
89:fd:08:b2:d5:0b:ef:b6:9f:0c:9d:b7:44:04:4c:
d2:b2:c8:5a:ed:28:62:d8:5d:36:17:10:bf:74:d1:
35:7d:e6:a6:3d:4b:9a:96:25:3e:3f:a5:d7:47:b6:
f5:b5:57:b2:2d:35:0d:65:39:ff:0a:21:94:16:11:
c7:9a:65:f4:85:21:0e:f0:12:02:a1:a8:33:cc:28:
86:8f:f9:b5:f2:06:28:b5:95:c9:a1:67:9e:5e:63:
47:f1:ec:3f:9c:9c:40:9a:c5:9c:11:0c:de:cf:c9:
62:48:25:1c:40:92:bd:4e:f3:b1:53:48:9d:6c:4b:
cc:35:77:0f:aa:66:8c:91:44:bf:d6:de:2d:34:55:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:0A:57:FE:AA:85:64:86:C0:61:CA:7A:89:76:A4:35:E3:9F:4E:FF
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:94:8e:cd:d0:4b:a1:bc:4f:55:83:40:b6:4d:26:0b:8f:5a:
ca:44:95:2e:9d:7d:e4:ab:ca:ab:32:36:d9:8f:76:46:f6:10:
5b:66:da:cd:91:43:de:0e:79:17:8f:1f:9e:ed:f8:92:a0:4a:
65:a6:4f:00:a3:ae:db:06:b9:ae:49:81:25:57:7a:76:a5:2f:
50:d7:00:fc:4d:1f:2a:13:ca:1a:19:af:30:71:ac:62:dd:f7:
e3:d0:93:fe:d8:e1:77:04:bd:b2:da:0e:29:74:e3:b2:fb:e3:
a2:02:b2:5c:6b:f3:6c:0a:9d:f8:96:ba:cf:4d:f0:a5:b2:61:
b6:2f:90:aa:4b:41:85:f9:d5:c7:c6:40:9e:d3:b4:74:4d:fb:
0e:46:98:7d:b3:69:86:74:9a:9c:6f:68:ff:3b:33:a6:a3:59:
f3:5c:24:70:aa:85:af:9a:a3:d4:c3:ad:69:33:94:93:e6:39:
d2:55:f0:bf:e5:e4:ad:2b:4d:23:25:93:e8:b4:b8:3d:cd:5c:
4e:8c:b2:fc:e5:cf:aa:d7:15:26:8f:aa:47:54:e4:76:1e:7a:
ed:dd:be:d4:e1:d9:a9:9a:ef:f3:6b:2b:a3:74:ba:8c:bd:08:
d0:a6:87:fe:8a:97:5e:c9:47:ba:37:ed:3e:f0:61:8e:10:ca:
4d:5c:8b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:42:59 2026 by rpki-client