Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
File: iWkzRGOKywU2WC-rCJh2V472vFY.mft (raw, json)
Hash identifier: Fuiqw6uo6E6XHEIv5F5bIeTXhu13Oq1bfJmNNL2Q8FI=
Subject key identifier: ED:32:F1:6C:C2:97:77:9C:7B:21:55:D6:8D:51:CC:FB:E2:94:DB:71
Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56
Certificate serial: 019D33E3EEA26303BEE9E1D441C5A2D1E99E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
Manifest number: 188E
Signing time: Sat 28 Mar 2026 10:01:08 +0000
Manifest this update: Sat 28 Mar 2026 10:01:08 +0000
Manifest next update: Sun 29 Mar 2026 10:01:08 +0000
Files and hashes: 1: NDwNFZEXkfQJUDkRKdNYGoT-CYs.roa (hash: MgEstRhz+rsVJ145O8dZD+Rboj459K59VW57okQlLvE=)
2: iWkzRGOKywU2WC-rCJh2V472vFY.crl (hash: MSazROHdR2kpRQPBBFoyvELRE7Gc3HD8rWQeC6Fz0D4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:e3:ee:a2:63:03:be:e9:e1:d4:41:c5:a2:d1:e9:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89693344638acb0536582fab089876578ef6bc56
Validity
Not Before: Mar 28 10:01:08 2026 GMT
Not After : Mar 29 10:01:08 2026 GMT
Subject: CN=ed32f16cc297779c7b2155d68d51ccfbe294db71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:01:58:ec:2f:98:e6:ab:79:b3:0a:08:f2:
00:a5:15:25:4c:c4:e6:60:77:6b:52:12:06:17:f7:
86:e3:d8:97:93:31:d1:ec:33:c2:84:f0:81:f7:87:
d5:2b:51:0e:71:06:f8:2c:04:6d:d1:aa:c0:c6:a2:
f0:3a:5a:bc:5b:98:99:c2:45:44:e7:82:9b:dd:53:
2a:9b:15:1b:8a:69:f9:38:a3:67:ae:14:26:73:93:
4f:38:69:bd:51:ea:94:0f:78:db:78:ca:72:02:17:
ae:de:4d:96:04:66:fb:f6:dc:93:ed:6f:bf:e3:c1:
6c:aa:85:86:05:53:1a:20:cb:46:4c:87:bd:8d:eb:
18:1c:cb:83:c6:28:05:09:ba:8d:c1:24:2b:db:ab:
9b:06:1f:e4:07:9e:fa:1c:8c:64:eb:87:e4:00:ab:
75:32:4a:9b:2c:33:fd:1a:2e:25:0d:1b:7d:65:4a:
db:21:4d:18:72:b4:34:f0:f0:93:50:83:b4:dd:35:
a8:3c:49:d0:45:eb:1a:e8:d6:5c:65:bf:51:3c:21:
0b:82:c5:0e:e3:97:9c:ce:8c:ad:68:da:a5:f7:be:
43:97:f1:65:8b:58:fb:00:5b:71:27:56:80:57:6b:
85:a3:c1:18:46:a1:33:37:17:0a:92:bb:fe:0a:cb:
1b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:32:F1:6C:C2:97:77:9C:7B:21:55:D6:8D:51:CC:FB:E2:94:DB:71
X509v3 Authority Key Identifier:
keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:43:00:39:17:72:f9:40:72:7f:bc:9a:73:fd:4d:2c:33:b2:
32:3c:52:13:d0:31:b8:1a:46:53:05:d4:a5:96:8b:e2:71:cc:
f9:73:fe:46:13:c3:89:e8:2f:82:f2:79:60:7a:ed:58:16:5f:
19:48:39:e2:79:34:bd:eb:e9:a0:82:3b:13:2b:81:35:dd:f5:
9c:95:49:af:31:88:66:fa:db:62:8c:34:de:dc:c8:89:1d:f2:
b1:68:d6:53:2e:00:7b:e2:49:1f:79:cc:75:7c:78:df:2e:39:
ca:31:28:89:5f:c0:75:5b:bb:94:09:10:40:30:ca:d6:45:37:
77:3e:0e:3e:b9:7a:cc:ee:d8:8a:c8:21:04:7c:4c:88:ef:b5:
e0:e8:b9:8c:7d:5c:dd:cf:cf:a7:27:77:f5:70:88:14:f1:c8:
11:21:0b:13:4e:20:e2:f6:e8:23:74:08:8b:53:50:0d:11:9d:
12:9d:9f:0c:fa:21:69:56:24:cc:18:41:d0:15:c2:91:b0:56:
1f:e5:1d:30:c9:30:3e:5e:a4:62:19:c5:1a:03:e4:8a:6c:a8:
e1:7a:a7:4c:91:f2:ed:1f:23:c1:cf:b0:ef:74:1f:f7:dc:d5:
6e:41:af:e8:4b:40:d4:5a:e1:5a:d8:ed:79:06:00:df:c5:73:
52:72:d2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:05 2026 by rpki-client