Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
File: iP4ZBc16825jraY2bBR7Ydhcnys.mft (raw, json)
Hash identifier: +d2dm3sT1xiNNBSKEx7YFG31Es2aZxxHBNc12shEg8k=
Subject key identifier: 31:8A:CF:70:39:53:37:C3:40:06:50:7F:52:F6:E0:11:1B:DE:30:09
Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Certificate serial: 019E20C8BD77E8A44B48DA3FD32BAADA112A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
Manifest number: 0A4A
Signing time: Wed 13 May 2026 10:01:27 +0000
Manifest this update: Wed 13 May 2026 10:01:27 +0000
Manifest next update: Thu 14 May 2026 10:01:27 +0000
Files and hashes: 1: 1-kKT9I5hXcGMY4BXtI91L6PWY5Q.roa (hash: hWaDKKuFN6+6e36Ikm8e0jjTVm6uyDQ92iqKklLnoi4=)
2: NEQkMGAJAfKugYCF_SBXZZt_zOA.roa (hash: 1zriG+EOUPPANFuX8FQR4exMMCMJ2lG+QMPasFhRCHE=)
3: iP4ZBc16825jraY2bBR7Ydhcnys.crl (hash: UIudO/FOOofRe1CQN6fjY9kbOlsQydRqd3ZKW+rwUU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:bd:77:e8:a4:4b:48:da:3f:d3:2b:aa:da:11:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Validity
Not Before: May 13 10:01:27 2026 GMT
Not After : May 14 10:01:27 2026 GMT
Subject: CN=318acf70395337c34006507f52f6e0111bde3009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:a3:76:e8:78:6b:69:fd:6b:c1:ee:56:4c:74:
21:03:5e:4e:50:07:36:35:f0:84:98:32:0b:92:0b:
78:7e:c5:8c:1c:af:99:69:fb:2b:50:e9:bc:8d:d3:
25:48:30:e9:57:13:e2:d1:7b:ec:43:a0:37:b3:6f:
12:b0:a2:8b:2b:c7:49:32:7b:71:3f:0f:1b:3c:e3:
eb:b5:35:75:81:3c:2d:15:9e:24:ff:4f:44:d0:27:
7a:ba:a8:22:6e:2d:68:37:2d:76:af:f9:9a:1b:f3:
06:26:2d:fb:91:b4:de:ff:61:af:2d:1c:79:33:fe:
bc:9c:eb:25:d5:a4:38:9f:37:eb:aa:2b:85:c6:94:
54:02:78:d5:7d:4f:c2:09:31:e6:30:b5:04:f7:01:
95:19:b0:fb:e1:66:26:15:a1:01:d3:d8:57:2a:30:
1f:3f:33:65:df:6c:87:e2:e0:a6:a1:11:6c:83:a1:
a6:3b:c7:01:05:78:cf:47:59:42:7c:f3:46:03:7d:
51:60:bd:6a:97:7a:96:8e:26:0f:33:9e:7b:10:06:
53:95:5b:6f:e8:ed:09:29:34:b3:d6:13:a9:25:fd:
8b:32:83:00:a8:7c:28:b2:6b:d7:c8:f9:e3:4b:91:
9a:28:06:73:0d:ec:34:1c:c7:3c:b1:b7:45:00:5a:
26:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8A:CF:70:39:53:37:C3:40:06:50:7F:52:F6:E0:11:1B:DE:30:09
X509v3 Authority Key Identifier:
keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:3e:8f:cf:1f:0b:b5:3b:42:b2:8a:d0:45:74:1b:3f:88:45:
d7:7a:44:be:ec:58:94:97:4e:b3:50:51:dc:22:b7:59:ba:5f:
7c:52:24:45:7a:fc:4d:32:2c:98:b7:ae:6e:0d:6e:d5:61:21:
4a:b8:c8:12:97:81:ed:17:5b:f8:c1:22:bc:e8:32:a5:14:94:
79:f8:ec:03:79:19:c6:32:2f:ea:61:a7:02:54:eb:01:52:df:
49:f3:66:f5:90:0f:33:c9:22:1f:0a:9b:ec:65:84:70:08:65:
c7:3b:ff:37:34:fe:94:a8:51:30:58:f8:8d:02:0a:64:7a:17:
67:4a:ea:0b:43:fb:89:2f:db:7f:3b:72:2e:dc:b1:af:38:72:
a5:f0:fb:38:88:1a:dc:cd:c1:03:cc:5c:0c:99:71:21:70:5c:
75:a1:ed:33:39:57:6a:50:93:40:f5:9a:06:94:fd:5b:25:c7:
b0:b7:0a:07:e3:dd:af:d8:4e:f2:55:9e:cf:57:1c:30:38:5a:
6c:14:30:2c:59:61:17:00:7e:d2:49:3f:c2:d4:e2:27:85:eb:
5b:7c:39:45:f3:1c:88:3f:56:51:ea:35:42:6d:50:8a:0b:65:
e2:f4:9c:98:9d:aa:4f:74:9d:c0:c7:3a:c8:da:9f:b8:9d:04:
54:e9:ae:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:11:40 2026 by rpki-client