Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: ffcH+9w6XdzRdpQ4Ng8Ym6XmseQldM59LPUsojz7uYw=
Subject key identifier: 04:A3:25:A9:6B:29:D8:09:B5:3C:00:F4:81:2A:CF:09:B1:78:44:78
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019E20919B51C4C14F4CCA3721F34E05E609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 03BB
Signing time: Wed 13 May 2026 09:01:13 +0000
Manifest this update: Wed 13 May 2026 09:01:13 +0000
Manifest next update: Thu 14 May 2026 09:01:13 +0000
Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: T6yVAx0F1OuHtojE5KJyYpFExi/RSYjPWGFy/4Pg2Bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:9b:51:c4:c1:4f:4c:ca:37:21:f3:4e:05:e6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: May 13 09:01:13 2026 GMT
Not After : May 14 09:01:13 2026 GMT
Subject: CN=04a325a96b29d809b53c00f4812acf09b1784478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:86:46:30:1d:93:14:44:5b:d1:af:4a:0a:
93:25:ee:ff:44:72:50:76:de:09:fc:21:95:7c:92:
5e:a8:ff:53:39:84:e0:9b:76:d3:c1:5c:d7:b4:2f:
94:b2:f4:b1:33:33:a1:1b:af:95:21:63:31:72:74:
39:0a:be:c3:c9:2e:1c:1d:4c:61:2e:0b:c6:b6:6c:
c8:5c:70:95:86:ef:e8:72:a4:fb:8c:40:28:fa:77:
72:d7:6b:d7:64:40:01:0a:33:f6:bf:4e:b2:e0:61:
b4:70:94:6b:2b:fc:5a:a7:af:2c:9e:a1:e9:b1:8d:
eb:bf:d1:08:41:4d:f0:17:9f:f3:a0:8a:d9:94:93:
f3:60:4c:0e:df:82:b1:55:f4:ce:46:9f:4f:f6:fd:
9e:66:09:d7:7e:92:59:b1:41:fc:97:35:87:d0:6a:
bc:17:31:88:0c:10:79:a1:d7:e2:19:df:3d:a7:f4:
c8:db:74:16:8d:44:34:9e:08:63:09:c8:0d:5e:ee:
c3:10:ae:89:85:d2:ae:94:fe:bb:36:81:9c:6a:06:
3c:82:68:d9:ef:6b:b9:03:32:7f:00:d8:8c:76:d8:
d5:df:2a:5a:56:9b:a3:d1:87:9e:97:cb:6e:c8:d1:
20:a6:58:53:66:c2:fd:cc:98:11:21:ba:c5:d0:91:
d8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A3:25:A9:6B:29:D8:09:B5:3C:00:F4:81:2A:CF:09:B1:78:44:78
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:39:fd:ab:e4:4c:53:12:7f:80:99:aa:05:dc:9c:e0:23:86:
fc:9d:cc:ae:d8:2f:2f:38:03:36:fa:e2:62:e0:1e:00:11:8a:
85:e2:bf:05:be:9c:73:d0:72:b5:3b:fa:fb:65:a3:96:50:3d:
26:f8:1b:96:f0:38:62:d4:83:90:1e:4e:d5:93:bb:46:96:d8:
29:5d:69:86:cd:67:3c:1e:ff:96:e1:ac:a5:d1:6d:17:98:11:
e4:23:bb:99:fd:13:4e:de:14:ae:03:49:80:78:ab:93:e5:4c:
d7:25:aa:68:a7:ee:5b:75:ab:29:ff:20:dc:df:90:c1:dd:a3:
8e:3c:06:63:1b:1c:22:17:2b:d4:aa:f3:27:88:55:e2:22:fa:
03:86:3d:f9:89:55:97:9a:fd:33:20:27:19:16:be:b7:5b:3a:
9a:6f:2c:11:42:01:04:aa:89:74:29:d9:ad:52:66:2c:92:ba:
3e:56:0e:75:58:78:7e:bb:e2:5f:4a:2b:03:d3:f6:16:41:80:
fc:80:14:7b:68:80:d9:c1:6f:f8:ab:a5:71:29:f5:d7:64:9d:
86:a9:cc:b0:ce:c5:b3:28:fc:88:34:f0:17:53:1a:df:4f:9a:
68:7a:5b:4f:4a:c7:bf:29:e7:b8:4d:cd:17:be:19:6c:1f:e4:
4c:83:f9:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gkZtRxMFPTMo3IfNOBeYJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NWMwOTUyMmY2MzVmY2FmYTI5YmNlYmFjNzJjODk0ZTRm
ZmVlZDIwHhcNMjYwNTEzMDkwMTEzWhcNMjYwNTE0MDkwMTEzWjAzMTEwLwYDVQQD
EygwNGEzMjVhOTZiMjlkODA5YjUzYzAwZjQ4MTJhY2YwOWIxNzg0NDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV2GRjAdkxREW9GvSgqTJe7/RHJQ
dt4J/CGVfJJeqP9TOYTgm3bTwVzXtC+UsvSxMzOhG6+VIWMxcnQ5Cr7DyS4cHUxh
LgvGtmzIXHCVhu/ocqT7jEAo+ndy12vXZEABCjP2v06y4GG0cJRrK/xap68snqHp
sY3rv9EIQU3wF5/zoIrZlJPzYEwO34KxVfTORp9P9v2eZgnXfpJZsUH8lzWH0Gq8
FzGIDBB5odfiGd89p/TI23QWjUQ0nghjCcgNXu7DEK6JhdKulP67NoGcagY8gmjZ
72u5AzJ/ANiMdtjV3ypaVpuj0Yeel8tuyNEgplhTZsL9zJgRIbrF0JHY7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFASjJalrKdgJtTwA9IEqzwmxeER4MB8GA1UdIwQY
MBaAFIhcCVIvY1/K+im866xyyJTk/+7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDct
ZjgzYjhkMDQwODdjLzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDctZjgzYjhkMDQwODdj
LzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDn9q+RM
UxJ/gJmqBdyc4COG/J3MrtgvLzgDNvriYuAeABGKheK/Bb6cc9BytTv6+2WjllA9
JvgblvA4YtSDkB5O1ZO7RpbYKV1phs1nPB7/luGspdFtF5gR5CO7mf0TTt4UrgNJ
gHirk+VM1yWqaKfuW3WrKf8g3N+Qwd2jjjwGYxscIhcr1KrzJ4hV4iL6A4Y9+YlV
l5r9MyAnGRa+t1s6mm8sEUIBBKqJdCnZrVJmLJK6PlYOdVh4frviX0orA9P2FkGA
/IAUe2iA2cFv+KulcSn112SdhqnMsM7Fsyj8iDTwF1Ma30+aaHpbT0rHvynnuE3N
F74ZbB/kTIP5cg==
-----END CERTIFICATE-----
Generated at Wed May 13 18:08:39 2026 by rpki-client