Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: d5hfYKXxlRXiGEl3l8oZ6ljzKC7eS0eZtmRLtSU6nlY=
Subject key identifier: 0E:18:5D:31:B3:10:69:34:B7:61:22:70:D8:CB:CA:CB:0F:9B:DA:00
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019D2B4E465EEF1778DF7E5DA852650AB6F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 033C
Signing time: Thu 26 Mar 2026 18:00:43 +0000
Manifest this update: Thu 26 Mar 2026 18:00:43 +0000
Manifest next update: Fri 27 Mar 2026 18:00:43 +0000
Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: iKDSIaZ0IV6BqcIDCOQXuRSuUkTHDBh6GipsFx8t0mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:46:5e:ef:17:78:df:7e:5d:a8:52:65:0a:b6:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Mar 26 18:00:43 2026 GMT
Not After : Mar 27 18:00:43 2026 GMT
Subject: CN=0e185d31b3106934b7612270d8cbcacb0f9bda00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:5f:1b:c9:dd:f0:e7:93:76:ea:2c:43:06:
a0:a3:5b:04:bf:e7:b7:6d:2b:50:44:e4:9b:2b:d9:
82:5c:bd:15:fa:49:32:fb:c3:50:af:0c:51:71:90:
5c:b4:02:f3:43:1f:22:1a:da:0b:17:a3:10:a0:01:
e3:7c:ef:7f:f1:06:b8:be:60:3c:54:2b:75:ea:ac:
c5:cc:85:6b:37:ec:5d:9b:83:3b:d5:de:a7:a8:77:
0d:f7:34:4a:b9:78:51:3d:85:96:25:25:57:00:0c:
d6:d0:00:36:1f:d6:1f:ef:c9:02:23:6a:ab:09:a4:
9e:68:10:41:2c:d0:6e:0d:b8:e9:53:48:ba:f4:b4:
2f:bc:74:94:32:0f:3f:ae:c8:32:90:9f:9d:c7:5b:
8c:0e:c7:fd:2e:15:14:72:a5:55:85:c1:4e:31:c9:
00:44:7f:ef:a9:42:09:dc:c6:33:c1:73:67:17:e5:
54:f2:c5:1a:88:cd:57:1c:dc:f1:09:b7:d9:9f:22:
1c:f1:92:8e:62:ec:1f:93:a1:38:e7:52:a0:34:3c:
33:06:e5:f0:80:ed:4f:ed:e9:e8:d2:98:8a:94:22:
65:65:8b:c6:ea:8b:ba:6e:ad:7a:69:db:f0:d2:2d:
6c:fe:00:02:24:b6:9e:46:4f:4a:fa:b8:6f:98:0c:
7e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:5D:31:B3:10:69:34:B7:61:22:70:D8:CB:CA:CB:0F:9B:DA:00
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:d4:ec:74:f3:c6:6e:04:6c:6f:3f:06:6b:1b:90:61:1e:e6:
70:b4:d4:9c:d5:23:a7:59:c0:60:ab:1e:82:c8:a1:c6:68:b2:
22:d4:e5:fd:2b:e3:41:3b:fc:fd:29:dd:3f:87:18:0a:64:c1:
ae:9d:bc:8b:6a:29:3f:02:aa:32:c4:73:ba:ae:d3:e0:43:74:
07:b6:27:30:6b:24:fa:65:1b:b1:7b:86:a3:b5:ef:c6:79:5c:
7f:80:06:d6:00:ec:4d:af:02:4f:88:70:1f:81:2b:73:cf:39:
a9:0d:5d:bb:df:fa:cd:a9:ea:04:06:6a:dc:64:e3:61:bd:4d:
ae:cc:1a:26:95:9c:24:6f:96:9e:d3:59:87:bd:16:23:48:85:
46:64:fa:ee:4f:63:4e:b4:53:76:f4:cb:66:04:5b:c3:96:6a:
f4:45:44:ee:3f:5a:8d:07:fc:d3:5e:ce:cf:fb:d2:56:10:b2:
1c:d0:fc:60:4e:0e:de:64:7f:d7:62:de:95:7f:e4:4f:cd:e7:
56:43:84:a1:13:95:e0:c4:92:ac:29:08:05:4a:01:51:28:54:
05:3b:3b:57:31:32:eb:be:73:9d:78:7e:ef:b4:9c:98:c9:30:
91:d7:76:5c:24:35:26:82:8b:c4:ac:43:2b:41:f5:cd:4e:93:
2b:3c:bb:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:39:02 2026 by rpki-client