Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json)
Hash identifier: tjCFTbIf2yfDkuZvCG/XspQhofxZgbs9ks2tpkqzNbg=
Subject key identifier: 33:56:71:81:65:2F:37:E2:3C:3C:AD:9E:71:7C:B2:E6:73:D9:D4:AF
Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490
Certificate serial: 019E1F115AE977DF1DADB353436E8810D73D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
Manifest number: 0797
Signing time: Wed 13 May 2026 02:01:31 +0000
Manifest this update: Wed 13 May 2026 02:01:31 +0000
Manifest next update: Thu 14 May 2026 02:01:31 +0000
Files and hashes: 1: Bb0AlX7LVs8xu9FbBxHR7jZ41sc.roa (hash: 1RAeUNL+1NswFK++fmlLXs7tYc2gvuypR/zGLkI4pFk=)
2: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: XNu92QzwN1Th5tG7v/tT+Y13hvuXRKIG4UAQyM5U+IE=)
3: wuwvCCyqsgM8AhmBamIU1CDvuC4.roa (hash: 7kzHmkdddwIql7JhhvogOzHNgfL2sl/BzbMljE2+YF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:5a:e9:77:df:1d:ad:b3:53:43:6e:88:10:d7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490
Validity
Not Before: May 13 02:01:31 2026 GMT
Not After : May 14 02:01:31 2026 GMT
Subject: CN=33567181652f37e23c3cad9e717cb2e673d9d4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2c:af:5b:fb:bc:c0:92:f9:0b:6f:c6:3a:9a:
58:c2:8f:5f:7a:f0:c1:9b:be:60:04:7c:e0:a9:d0:
d0:7a:80:f9:28:5f:69:03:6c:cf:a1:5b:af:24:74:
a5:f8:0d:77:e9:c3:2d:b0:ab:24:d7:47:51:e8:fe:
a1:ed:04:cc:0f:7d:51:ab:97:60:ae:1b:11:cf:19:
ba:9b:69:53:98:10:a5:7d:71:b2:46:41:e9:1c:ff:
8d:84:e3:93:af:da:23:af:2a:69:95:1a:ce:69:6a:
68:29:6f:2c:06:dc:d2:1f:78:dc:d1:5e:8b:d4:06:
97:80:17:e2:1f:ef:ac:56:44:d8:10:62:7a:04:31:
da:01:ed:de:18:8e:58:d2:ac:b6:88:c6:31:d0:7a:
be:33:3c:f9:71:95:10:1a:80:03:f2:ca:87:27:84:
02:a0:a7:ea:9f:d8:c6:88:80:92:e0:e0:d1:09:c7:
ee:1f:b2:d9:88:d1:df:fd:6f:80:65:02:ad:7c:38:
19:86:76:10:dd:ac:03:07:32:70:1f:4c:4c:63:e9:
30:4c:2f:79:2c:79:2a:98:e0:d9:86:07:e0:af:d5:
d6:50:46:8f:fd:17:f2:9e:c7:ef:bd:1b:aa:c6:df:
fa:a2:36:42:b3:bb:b4:a9:45:7b:1c:82:ec:9f:36:
72:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:56:71:81:65:2F:37:E2:3C:3C:AD:9E:71:7C:B2:E6:73:D9:D4:AF
X509v3 Authority Key Identifier:
keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:cd:17:de:80:67:87:69:97:98:c6:a8:4c:cd:f9:34:f7:9c:
c2:c4:64:64:64:6c:c4:49:61:73:22:cd:63:2f:2c:aa:6e:7d:
59:9b:64:09:3d:bc:51:34:75:70:8f:08:09:6a:46:8d:86:6c:
05:5a:23:f9:44:66:98:72:1b:bf:26:c8:18:3a:4e:3d:35:0b:
5d:f0:d7:24:56:4d:52:10:57:d6:dc:ca:a7:4d:cf:2e:36:bb:
62:4d:ff:2f:ac:91:4e:84:99:b2:aa:04:6e:21:85:15:fd:21:
77:44:b9:f9:a9:08:d6:3d:04:74:f5:5b:f4:78:f2:e0:c5:13:
dd:26:bb:6b:28:ea:d9:d8:12:22:c2:dd:75:4d:93:17:83:1a:
dc:bf:91:0e:44:55:e6:3c:11:18:52:d7:78:5c:5b:48:93:3d:
f9:0b:c8:cd:1c:20:a9:93:84:64:ca:08:78:36:5e:c1:32:4e:
1d:8a:71:17:6f:42:1a:b1:19:85:f8:fd:ef:4b:ba:f8:a3:3a:
89:66:21:73:01:bb:5a:14:3f:2d:3e:f7:ca:0e:91:66:80:59:
36:8d:90:51:b8:6f:25:52:0f:a4:6c:bc:92:21:f3:fc:21:b1:
bf:3c:25:78:c5:01:eb:14:8b:97:e9:3c:a6:33:41:ca:27:a4:
ff:b3:ac:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:04:09 2026 by rpki-client