Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json)
Hash identifier: rPwLsCXpTxnIA6Q74UYqVPRR+mvQ7iYjpfkKdTZujq0=
Subject key identifier: 9F:8E:18:14:B2:F1:E9:CA:08:52:EE:80:BF:E1:44:EA:24:02:86:0F
Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138
Certificate serial: 019CAC104662B398E809BBC571ED234DE4B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
Manifest number: 064E
Signing time: Mon 02 Mar 2026 01:01:13 +0000
Manifest this update: Mon 02 Mar 2026 01:01:13 +0000
Manifest next update: Tue 03 Mar 2026 01:01:13 +0000
Files and hashes: 1: YYlR0VhASW-c1FKU9zzl7csrdhQ.roa (hash: L8Cgn7blv4wmGFxmaxB9nE0adWzGkvnaCFP3mMVQv7g=)
2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: AI+AuzNHpUa9qUwaA6xZ/APRgExbgp05LwHqYjlJI1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:46:62:b3:98:e8:09:bb:c5:71:ed:23:4d:e4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a041670001660a3720b77d764d836852190138
Validity
Not Before: Mar 2 01:01:13 2026 GMT
Not After : Mar 3 01:01:13 2026 GMT
Subject: CN=9f8e1814b2f1e9ca0852ee80bfe144ea2402860f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:7b:dc:3f:c0:70:ca:25:ef:46:97:5f:64:43:
be:88:61:79:89:d8:17:54:e3:53:36:d2:f8:b6:69:
8e:65:5d:dd:53:c7:ea:a2:4d:9a:4c:46:66:78:b6:
a6:11:b9:6a:87:05:bb:63:97:b2:42:2e:c7:7b:81:
2e:bd:3a:6f:07:8b:5a:c9:ff:36:46:c9:d7:8e:cd:
16:b6:65:9b:47:5b:44:51:15:8e:a4:f1:1e:27:b3:
8a:7d:e7:2c:07:f7:f8:c4:54:c6:82:55:0e:cf:25:
bf:60:6c:a7:c8:4d:41:b8:d2:7a:2b:7e:1a:f3:70:
45:9c:5e:83:f1:98:c6:d4:49:f9:c5:71:c1:9f:5b:
67:aa:a7:a3:28:8f:c5:a1:a4:3a:58:0f:d5:b5:b5:
4c:4a:9b:27:41:33:1c:89:8e:35:e0:0b:66:e7:14:
c4:c1:23:34:fc:52:d2:c8:7b:7e:62:b4:5b:59:7a:
d7:7b:d5:c8:f3:a8:b5:69:bd:bb:76:29:cc:16:61:
c3:ae:f4:02:5d:c7:96:52:e7:bb:76:43:9e:6b:44:
64:fc:a7:8b:4d:39:67:25:92:1f:8b:8c:58:21:e1:
f1:62:bd:57:de:e9:f5:40:f2:e2:b6:d2:a5:cd:73:
ae:df:ea:f4:b9:0a:9b:64:28:aa:c4:4e:b1:78:08:
f2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8E:18:14:B2:F1:E9:CA:08:52:EE:80:BF:E1:44:EA:24:02:86:0F
X509v3 Authority Key Identifier:
keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:1c:c3:94:a3:a6:9b:c7:52:50:e5:20:86:10:04:db:dc:ca:
82:3a:3f:a9:10:89:25:13:85:5c:8d:3c:15:91:64:4b:c9:0a:
c4:2a:4b:5d:6b:11:6c:4c:fc:c5:9c:19:33:3b:f5:44:f4:1c:
62:ac:17:dd:34:eb:48:98:fd:8c:35:6c:b6:fe:93:07:48:b6:
cf:e6:31:44:2d:72:0c:fd:48:33:31:8e:76:6d:e3:20:b9:7b:
26:87:04:d0:d2:99:f1:64:b6:bf:f9:98:60:2d:0a:bb:de:57:
2c:52:a9:22:8a:df:db:bf:94:a2:62:e2:fa:75:44:b0:80:c8:
7c:36:07:6e:29:75:86:61:ea:54:e0:e2:42:c6:95:4f:51:8f:
25:82:a4:49:f4:4e:b9:84:51:04:ee:e5:d3:5b:b9:1c:1c:83:
ec:61:e0:02:ff:18:ba:e8:c8:23:9a:3c:31:71:66:e1:3d:e7:
44:d6:d0:47:3a:14:4d:f6:8d:f2:4a:56:40:68:01:b5:8f:98:
71:24:99:d3:91:96:73:4a:e9:a6:5d:2c:e9:2d:1b:8f:ba:a8:
f7:76:85:fe:0d:a1:d0:44:b9:f6:ff:a5:a7:38:09:c6:4f:4f:
98:f8:88:e1:00:97:b0:8c:64:91:c1:4b:25:1f:cb:6e:43:65:
7d:a0:ef:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:19:18 2026 by rpki-client