Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: mPNRELN17N2kiILC2eGF3nk9OnPT9VKZBbauci4UWpg=
Subject key identifier: 7C:F7:F0:11:BD:C3:D8:4B:6A:91:20:49:00:D9:C2:37:6C:AF:48:A9
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019D2C2A0D82C063546E7F2B122F4E82B141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 106B
Signing time: Thu 26 Mar 2026 22:00:46 +0000
Manifest this update: Thu 26 Mar 2026 22:00:46 +0000
Manifest next update: Fri 27 Mar 2026 22:00:46 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: ZHrZ4t/a0ynolIhfyyo/6N7+ulhRWZTp4+Nu6TcoCH0=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:2a:0d:82:c0:63:54:6e:7f:2b:12:2f:4e:82:b1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Mar 26 22:00:46 2026 GMT
Not After : Mar 27 22:00:46 2026 GMT
Subject: CN=7cf7f011bdc3d84b6a91204900d9c2376caf48a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:5c:40:45:73:43:6f:cf:3b:fc:bd:55:ab:
28:44:c7:31:9a:5d:22:52:33:37:83:26:d9:0c:5d:
86:6d:84:d8:f2:53:f6:d6:d2:cc:4b:0e:c8:4c:b9:
50:2c:c1:37:0f:0b:0a:b6:5c:b8:0f:01:c5:10:5f:
aa:67:ea:9a:23:eb:9a:92:d8:b2:58:bf:20:28:e5:
9e:0c:c7:85:5e:62:61:05:bc:49:d3:00:1d:4b:be:
20:f0:65:34:4b:bd:e1:87:f2:a1:43:3b:40:ac:e9:
95:6b:2b:cd:12:fc:60:0f:b9:e4:74:d5:27:10:f4:
d6:6e:8d:06:dc:be:43:f6:af:42:72:22:1e:93:9e:
5f:9d:ae:cb:05:c5:86:f7:9d:83:50:5a:92:49:12:
c3:13:3d:c8:24:1f:a2:a4:84:0d:81:86:01:ab:0c:
82:23:6a:b7:d5:e3:33:2b:24:59:06:e0:3b:e6:a4:
20:26:52:74:a1:78:02:ca:44:b4:54:aa:82:e5:f3:
dd:06:74:59:7a:e1:ef:d4:3b:21:38:25:55:f7:c3:
64:35:24:69:40:b7:96:eb:2c:83:4d:a6:22:d8:ac:
77:11:15:c5:bb:5f:3b:a8:34:c9:dc:62:10:f7:1a:
c4:f9:74:25:40:e1:33:e9:9d:18:ce:aa:a1:40:b0:
41:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F7:F0:11:BD:C3:D8:4B:6A:91:20:49:00:D9:C2:37:6C:AF:48:A9
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:68:2a:79:7d:73:08:d6:16:64:60:de:d9:c8:67:bb:4e:ce:
28:1a:dc:9b:c4:93:5a:26:27:cc:ee:d5:34:f5:50:c3:af:c8:
50:5b:38:30:ca:73:6a:a0:1e:8c:67:65:f1:c7:5c:49:f2:46:
30:f0:1d:cd:1d:4d:9d:6c:24:78:1f:e6:4b:65:18:ca:16:40:
bf:67:f2:ff:3d:bb:29:90:4e:07:d6:d8:02:dc:84:6d:14:2e:
a2:6c:22:15:10:20:d4:1f:42:48:d9:3f:1b:7c:06:28:51:7f:
ce:6c:20:27:b0:d2:eb:9c:f5:75:c4:02:47:ec:93:7c:f6:ac:
53:e3:c2:30:79:6b:34:33:4f:e0:37:54:4a:49:51:41:32:be:
f3:ba:2f:0c:45:f9:11:cd:e4:e1:a9:d1:81:86:09:75:94:90:
60:4e:b5:65:63:77:94:b9:a5:22:6a:47:e1:12:60:8f:67:27:
b0:4e:38:a0:c1:03:2c:d6:77:84:f7:65:9c:c6:50:44:8a:cb:
0d:8d:80:0e:d4:81:be:01:f6:71:da:6c:75:f3:ed:ed:cf:b5:
fa:15:e9:30:57:3f:f8:5a:ae:26:1e:2b:18:56:62:95:e2:5d:
b5:82:2a:df:67:77:49:e8:4d:2a:db:92:80:19:e6:ec:1c:e7:
f2:6c:b8:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0sKg2CwGNUbn8rEi9OgrFBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MGQ4YWI2YWEyYzcyZjA3OTc1NWY3NmNmMDEyMGFhNWRk
ZGM3ZGYwHhcNMjYwMzI2MjIwMDQ2WhcNMjYwMzI3MjIwMDQ2WjAzMTEwLwYDVQQD
Eyg3Y2Y3ZjAxMWJkYzNkODRiNmE5MTIwNDkwMGQ5YzIzNzZjYWY0OGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNlcQEVzQ2/PO/y9VasoRMcxml0i
UjM3gybZDF2GbYTY8lP21tLMSw7ITLlQLME3DwsKtly4DwHFEF+qZ+qaI+uaktiy
WL8gKOWeDMeFXmJhBbxJ0wAdS74g8GU0S73hh/KhQztArOmVayvNEvxgD7nkdNUn
EPTWbo0G3L5D9q9CciIek55fna7LBcWG952DUFqSSRLDEz3IJB+ipIQNgYYBqwyC
I2q31eMzKyRZBuA75qQgJlJ0oXgCykS0VKqC5fPdBnRZeuHv1DshOCVV98NkNSRp
QLeW6yyDTaYi2Kx3ERXFu187qDTJ3GIQ9xrE+XQlQOEz6Z0YzqqhQLBBmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHz38BG9w9hLapEgSQDZwjdsr0ipMB8GA1UdIwQY
MBaAFIgNiraqLHLweXVfds8BIKpd3cffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAt
NDAyODk0NzlhYzA1LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAtNDAyODk0NzlhYzA1
LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATmgqeX1z
CNYWZGDe2chnu07OKBrcm8STWiYnzO7VNPVQw6/IUFs4MMpzaqAejGdl8cdcSfJG
MPAdzR1NnWwkeB/mS2UYyhZAv2fy/z27KZBOB9bYAtyEbRQuomwiFRAg1B9CSNk/
G3wGKFF/zmwgJ7DS65z1dcQCR+yTfPasU+PCMHlrNDNP4DdUSklRQTK+87ovDEX5
Ec3k4anRgYYJdZSQYE61ZWN3lLmlImpH4RJgj2cnsE44oMEDLNZ3hPdlnMZQRIrL
DY2ADtSBvgH2cdpsdfPt7c+1+hXpMFc/+FquJh4rGFZileJdtYIq32d3SehNKtuS
gBnm7Bzn8my4vA==
-----END CERTIFICATE-----
Generated at Fri Mar 27 06:25:52 2026 by rpki-client