Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
File: IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft (raw, json)
Hash identifier: FDJIre+H9gr3cj3lpiMoHJRcvHvVyIhqtbuKNS9ROZo=
Subject key identifier: 64:B2:42:2C:96:7C:F5:10:1D:6B:9A:FC:4B:08:E8:6F:81:B6:58:92
Authority key identifier: 20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
Certificate issuer: /CN=20820f796481ac0e9637c962414597b1fe227c24
Certificate serial: 019D2996F694483B1D0CE56C57889351910B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
Manifest number: 039D
Signing time: Thu 26 Mar 2026 10:00:52 +0000
Manifest this update: Thu 26 Mar 2026 10:00:52 +0000
Manifest next update: Fri 27 Mar 2026 10:00:52 +0000
Files and hashes: 1: IAWiQMEI7lBYE-yiLrq0N4vd600.roa (hash: 7MWeCmwerIQVPacLYiQfFeLxjpHdbEK+iRaLdCOlJtE=)
2: IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl (hash: fufNJeobl+yNixeGZtOIASJUp0TLCLXhHXdNsZ9PfHM=)
3: NHFVYka2133iQXjNTWLuhJeJRYs.roa (hash: r4c2sIYwncDluECLH+MlpQyTtLc+nzIN7UPvDkikTYQ=)
4: gvthCNIXZpaMb2ZutbDvX6DCkBk.roa (hash: tPtLLMo+LPUP4l2VgdhxLWlnMKhOqjN726EsOHNpydc=)
5: yZlYavUaF5ZkpQPJOyNlBAVw7XY.roa (hash: Mu3AswMCG2U7NEViX0UJQTVg05J0CMB40dFTF5KkWro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:f6:94:48:3b:1d:0c:e5:6c:57:88:93:51:91:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20820f796481ac0e9637c962414597b1fe227c24
Validity
Not Before: Mar 26 10:00:52 2026 GMT
Not After : Mar 27 10:00:52 2026 GMT
Subject: CN=64b2422c967cf5101d6b9afc4b08e86f81b65892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:20:25:a2:1b:62:7e:f2:46:b0:53:67:7f:29:
a2:27:6f:99:00:5e:cb:9a:17:0b:4e:12:7e:01:87:
af:43:89:8d:ab:8d:27:e2:74:78:cf:ec:3a:4c:64:
8c:30:07:b0:f7:11:24:4e:36:36:33:fb:a5:fe:44:
16:6f:ca:40:a4:3b:8e:36:6c:ab:72:09:d5:65:f6:
43:8c:56:bd:03:13:5d:4d:7e:f8:d9:51:70:7f:40:
65:f2:d9:ec:66:bd:c7:a2:c1:0f:1f:4b:62:2e:ae:
37:98:87:a6:dd:f6:17:9f:06:e1:2e:13:3c:c6:15:
de:6e:f6:dd:bf:26:36:5b:e3:21:f2:f0:b1:81:e9:
7f:5e:75:a8:22:94:b3:21:bc:40:d9:bb:77:0b:a1:
bb:3c:67:4b:8c:34:d6:50:d3:13:cc:3d:30:ec:27:
b9:a6:c0:bc:b9:47:12:76:8e:de:11:68:e2:fb:7f:
e0:5a:b0:d7:65:5e:2f:d3:08:34:9a:e8:85:b9:82:
43:00:98:5e:3a:dd:27:d4:ea:0f:fd:2e:27:8c:6a:
7d:9b:62:d6:0c:a6:d4:9a:86:f9:34:9d:57:8f:e4:
f4:60:01:3a:7a:24:78:f8:4b:33:87:14:db:64:2e:
b4:88:ee:e1:f7:a7:0c:7a:b7:bf:c6:69:9d:bf:eb:
07:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B2:42:2C:96:7C:F5:10:1D:6B:9A:FC:4B:08:E8:6F:81:B6:58:92
X509v3 Authority Key Identifier:
keyid:20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:6b:ec:7d:fd:0d:c4:6e:d5:84:76:cd:08:2c:4c:ee:43:46:
26:f9:39:76:fb:ad:09:6c:e2:94:69:80:56:21:e9:a8:12:ae:
a0:c9:03:90:5d:40:1d:a7:35:28:45:08:34:39:5b:cb:4c:50:
e6:86:cf:bb:93:35:63:56:6b:d0:26:b1:04:6f:ee:23:46:0d:
f0:00:3a:d0:88:2b:10:fc:29:ee:0a:d2:6a:fe:33:68:3b:03:
b6:cf:f8:21:21:03:79:59:1c:cc:4c:b7:d8:c5:66:a8:4d:da:
e0:d6:9c:db:5a:77:60:50:07:75:7a:97:ae:3f:32:12:b0:5e:
91:26:e0:2e:60:6e:87:13:2f:62:23:64:f5:d1:ab:57:6d:ba:
01:04:7e:52:83:c1:75:64:3c:2c:39:07:90:04:f4:5b:b6:25:
6c:5e:d6:35:0b:c4:ae:f8:7c:c3:cd:92:23:14:d8:61:62:36:
3a:17:ab:08:da:d1:66:94:09:3f:dc:62:6c:11:de:4c:f3:a7:
3e:0e:f3:e1:46:d2:47:64:c1:6d:79:c8:d2:1a:b3:5a:31:f5:
fa:ac:29:33:c0:f8:73:40:c5:6d:07:2e:e5:6e:65:a2:b8:4e:
a7:98:66:11:ae:41:fd:6a:22:df:74:64:c0:58:94:93:d7:87:
c4:32:4f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:21:35 2026 by rpki-client