Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: O0+cIJmWIvStfFsqZavFTP49YgnWPniZb0jhgxW8aCE=
Subject key identifier: 0D:04:64:FD:50:AF:98:DC:BE:54:A4:09:C0:5C:1F:BF:3B:09:0B:20
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019D2A3BBFDB0AD1426055A7E23943AD8A90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 106A
Signing time: Thu 26 Mar 2026 13:00:51 +0000
Manifest this update: Thu 26 Mar 2026 13:00:51 +0000
Manifest next update: Fri 27 Mar 2026 13:00:51 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: AkudQXvFpQAiiM7qYCSrF5Y40OUSmTM7B/qABYg1/AM=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:bf:db:0a:d1:42:60:55:a7:e2:39:43:ad:8a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Mar 26 13:00:51 2026 GMT
Not After : Mar 27 13:00:51 2026 GMT
Subject: CN=0d0464fd50af98dcbe54a409c05c1fbf3b090b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:19:72:be:61:89:ef:fd:47:09:33:59:4f:dc:
47:52:21:b6:54:15:ef:69:ef:0a:d3:af:66:3c:c4:
52:42:37:68:67:ca:38:52:0c:bb:c2:99:b3:73:5f:
85:04:23:27:c1:be:0a:12:01:6d:14:c6:df:7a:1d:
b6:f5:a7:a7:e0:32:a2:2a:cc:2e:80:dd:df:75:05:
97:59:7d:d6:38:b6:dd:09:10:a8:97:8f:ed:cd:1e:
f3:36:53:62:cc:ac:d0:29:31:19:62:12:63:3a:08:
0a:c4:92:12:24:0e:7d:c7:48:e8:64:6d:4c:b3:13:
6c:27:4c:69:5c:cf:db:e6:cf:6c:b0:d8:77:1f:a6:
28:80:02:b2:3a:8f:da:bc:07:0e:76:d0:9c:d5:f2:
82:a6:32:46:80:5c:ce:34:09:02:1c:8d:9d:bc:f3:
15:ae:41:02:38:9a:a2:76:18:7e:91:bc:2c:6b:6b:
ac:39:5f:4f:63:8b:08:56:43:72:4e:f1:43:b0:11:
e9:97:0c:6f:79:4e:11:44:89:d1:1b:76:42:c3:6f:
ed:03:aa:fb:70:c9:7b:18:0a:5f:a3:59:24:ce:e9:
98:3d:8d:e3:5f:05:97:48:79:52:e4:8d:af:4e:89:
88:fe:a6:43:00:fb:ab:49:dd:22:74:6a:2e:84:b5:
e3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:04:64:FD:50:AF:98:DC:BE:54:A4:09:C0:5C:1F:BF:3B:09:0B:20
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:4d:f9:0d:84:46:c8:1d:7f:98:1d:48:80:23:6b:43:26:af:
43:c7:cf:22:da:34:ac:84:cd:a6:74:35:a0:60:4d:50:7c:62:
5c:5a:68:5c:aa:e8:90:e6:96:48:b7:b7:8b:6a:90:90:b5:28:
da:0d:c1:f6:2e:4e:09:e9:8d:61:a3:5d:af:4c:a1:54:8d:b5:
47:9a:e4:d2:0f:c2:d0:d4:97:c3:46:5a:ff:b7:fd:5f:26:ba:
79:e9:25:bb:aa:34:6e:7e:de:3f:aa:06:18:8e:2f:3a:bd:28:
80:f4:5c:43:eb:40:13:7d:fa:25:0d:88:9d:c9:b4:f7:41:81:
e6:83:6f:18:68:3b:67:a1:bb:4a:d8:2e:0e:d2:5a:15:2e:cd:
14:59:f5:a4:b2:7b:ec:d3:6e:b3:25:cc:de:08:fb:5a:23:2a:
30:dd:79:fb:9c:65:e9:49:ab:77:91:a9:45:57:aa:96:c5:aa:
c6:ce:f6:9c:61:4c:4a:d9:7e:b3:2b:7c:42:97:d6:8b:9d:63:
77:ef:c4:48:2d:09:20:dd:6d:5b:67:53:4e:36:8b:e5:7c:57:
cb:10:55:6d:11:a1:79:df:47:23:f1:63:c8:39:23:67:cd:c3:
11:55:d8:95:8a:28:89:33:76:9e:2e:02:a2:30:d3:5b:57:93:
80:2d:45:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:33:37 2026 by rpki-client