Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
File: ILSHOEKpBPGmlyATk-e6YmhC9K8.mft (raw, json)
Hash identifier: kCwToW4L/Xt5eYYNaFOaEnpncV+lASTlPTkDlf6aNps=
Subject key identifier: F0:70:A9:1F:65:34:5B:B7:BC:74:63:BD:05:8F:97:67:D6:E6:F3:58
Authority key identifier: 20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
Certificate issuer: /CN=20b4873842a904f1a697201393e7ba626842f4af
Certificate serial: 019D28163B32216A0582C2199E7086CC6D83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
Manifest number: 03A5
Signing time: Thu 26 Mar 2026 03:00:38 +0000
Manifest this update: Thu 26 Mar 2026 03:00:38 +0000
Manifest next update: Fri 27 Mar 2026 03:00:38 +0000
Files and hashes: 1: HF5zqPXN9kt9inQteOZzFMTE7II.roa (hash: R1fiWZdr3X5ktKLZaP8dhQLpBM9tv/J5IHD5dAofhUY=)
2: ILSHOEKpBPGmlyATk-e6YmhC9K8.crl (hash: Xt0ltlLKDg2l17qj8Jkwwq/VtIko4z0Si1xyDV+kpoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:3b:32:21:6a:05:82:c2:19:9e:70:86:cc:6d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b4873842a904f1a697201393e7ba626842f4af
Validity
Not Before: Mar 26 03:00:38 2026 GMT
Not After : Mar 27 03:00:38 2026 GMT
Subject: CN=f070a91f65345bb7bc7463bd058f9767d6e6f358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:1d:36:64:4d:ff:71:c1:3c:ad:43:4a:0d:
0d:b3:72:6c:56:5c:9d:c7:5c:a5:78:95:a5:e4:e8:
a5:aa:f1:c5:2c:d1:dc:36:3e:21:62:bd:f2:2d:80:
69:2d:73:3a:88:0f:37:bc:33:c0:58:41:ba:07:b1:
47:75:e8:7e:b6:bf:04:a5:e0:7c:2e:5d:f9:23:5f:
62:dc:cf:3a:44:53:55:65:53:9c:7e:e4:cd:e5:6a:
0c:04:e3:45:91:2a:70:54:44:58:1e:6c:e6:25:a1:
3b:f7:62:fa:63:7f:3f:44:ff:e6:14:46:27:a6:3b:
3b:61:40:f7:61:6f:c3:e8:38:42:0e:58:5b:d6:7f:
64:c5:4f:dc:56:c7:a5:30:e8:6a:0e:6c:8e:1b:66:
09:27:db:ec:96:24:de:7c:5d:86:f3:23:d2:db:d4:
3a:96:87:22:03:8d:73:75:83:19:60:af:d8:10:f4:
24:ba:2b:8a:57:c2:58:21:ec:a3:20:a1:5b:85:c3:
1e:24:db:3c:e2:36:65:d7:64:38:81:5a:89:4d:b7:
b7:bc:eb:9c:7e:d4:12:1e:3e:19:31:43:6f:77:4a:
ac:aa:0c:aa:c9:11:b2:2c:15:24:c5:f9:02:f5:fe:
66:94:a5:c2:10:38:41:ee:d4:d8:ea:a2:27:64:13:
54:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:70:A9:1F:65:34:5B:B7:BC:74:63:BD:05:8F:97:67:D6:E6:F3:58
X509v3 Authority Key Identifier:
keyid:20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:62:c3:1e:a3:b8:89:84:21:e2:a4:63:41:ee:da:b0:89:4c:
21:53:3d:e9:9c:b7:20:3c:db:1c:46:c3:d0:d3:57:d6:09:b8:
04:d8:a9:fc:f0:79:b9:30:96:57:35:f8:71:2b:c3:ad:3a:b4:
f8:09:f1:2a:8c:31:e0:04:fb:39:13:49:d0:0a:d8:6c:93:38:
7c:35:a8:7a:34:ed:61:16:5d:97:2b:5b:9f:0f:3b:63:46:f6:
1e:78:a5:ba:8c:b2:b4:fa:a6:8e:43:fb:0f:ae:99:a1:a0:17:
b6:a5:e3:0d:c8:3c:e2:f9:33:16:84:e1:8c:55:f6:12:66:e4:
53:55:5c:01:24:5d:2d:be:b1:ff:53:bd:3c:c1:f2:c3:d6:9a:
e8:5d:0f:40:88:05:08:5c:a0:ed:16:00:de:80:5a:e0:c1:a7:
d0:b3:24:b8:29:fa:06:5e:84:99:ff:b1:c7:be:60:83:84:a3:
46:8f:0e:8e:c6:a7:82:4f:e6:17:32:71:b2:cd:38:ab:c4:34:
da:15:b0:c0:e5:82:20:6f:ec:16:a1:f0:73:0b:e6:4b:85:6c:
53:44:0b:e6:c5:9e:a8:af:4a:45:95:8e:18:80:63:f7:25:40:
a5:56:8b:ee:80:af:83:3d:65:b0:bd:ea:67:5d:17:ad:9b:0d:
19:b8:fa:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:50:40 2026 by rpki-client