Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: OgI6WyO457inkDIvfjO1bMsgrhoK9eSctnZygd7PKGE=
Subject key identifier: BC:1B:56:8F:6F:5A:0F:88:F1:1F:45:B2:33:DF:93:30:4D:33:58:D0
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 019CACEBBDCAF48E11C56393F12522E82BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 156A
Signing time: Mon 02 Mar 2026 05:00:56 +0000
Manifest this update: Mon 02 Mar 2026 05:00:56 +0000
Manifest next update: Tue 03 Mar 2026 05:00:56 +0000
Files and hashes: 1: DoG1nIvAyF6Ofk7B7oBXD9fCbWY.roa (hash: 9biYSv6POYCwfleLHgkM4hjjkLE1P6h07qcPCt2vZ8Q=)
2: Ku186Y-Tu0woDCZbFinpqq7ZdFE.roa (hash: v4Tz8TXIdty6/ZjbJ1ivX2W0EU7wX33Cwf/C7mVCK74=)
3: _yFrTYVVOzem6SAvOPOzP_wE_MM.roa (hash: 5prdT05UIi7fhKfl8B0EiaHRzoodJuHLB7r7onONbos=)
4: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: FQcx/qRZu1/CwTplHEUadpcvfExbxYnMa11pcf02l+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:bd:ca:f4:8e:11:c5:63:93:f1:25:22:e8:2b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Mar 2 05:00:56 2026 GMT
Not After : Mar 3 05:00:56 2026 GMT
Subject: CN=bc1b568f6f5a0f88f11f45b233df93304d3358d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:16:c1:cf:5c:57:49:d1:07:f6:09:a6:9b:05:
7d:e2:f9:21:c4:76:08:71:ce:7f:eb:e6:03:df:cf:
7d:3b:35:f8:bb:e1:b6:0d:5c:e0:e3:de:af:66:41:
c7:9f:dd:32:c0:aa:1e:d8:61:82:52:07:a3:ea:b2:
e4:55:38:44:cd:e0:c9:3e:6e:18:04:43:e1:89:92:
e5:23:08:97:27:21:81:39:9c:27:9e:f3:d4:70:e0:
de:46:d4:55:1a:b5:48:fd:d1:9d:89:e9:28:83:bb:
64:4d:ac:3e:b0:c1:62:b5:fb:89:db:4b:82:9b:05:
1b:ae:cd:7b:68:e7:9b:cc:1e:d0:de:1c:2a:8d:f2:
0e:25:e9:ce:2f:be:e2:20:55:db:d2:e1:b6:76:8d:
ee:53:fc:ec:39:94:d8:2b:38:0a:ea:1b:7a:4f:7f:
09:d9:56:29:ed:63:bd:eb:ee:5d:38:9b:21:f3:59:
2f:fb:07:e9:b5:93:a2:f1:03:d2:64:ed:62:2e:2a:
72:47:1c:fb:78:2a:00:59:23:b0:b2:4f:02:ee:48:
cc:d0:19:77:2e:a7:60:f6:48:38:68:45:0f:42:d0:
06:fd:09:8a:61:64:59:5f:41:79:13:1c:47:02:19:
52:7e:b9:ca:ac:11:21:93:49:22:f4:42:89:98:e0:
00:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1B:56:8F:6F:5A:0F:88:F1:1F:45:B2:33:DF:93:30:4D:33:58:D0
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:c9:a4:81:bc:9f:66:4a:cf:85:c9:b7:a3:93:f6:b3:99:56:
34:7c:2f:4f:08:9f:5d:ba:06:91:e0:74:bd:20:ee:c3:00:dc:
90:a8:b6:a9:9d:4f:5c:f2:e8:10:f8:e0:98:1f:ed:24:7a:a3:
25:af:26:ba:d8:a3:0b:0b:4a:4b:c8:5d:fe:e8:bc:be:1a:a9:
2a:18:c6:52:cf:6a:5a:84:f8:04:0f:af:e9:99:f7:64:de:c4:
31:20:65:b5:46:6e:5d:9c:f1:c1:18:0a:60:bc:ba:9c:4e:be:
83:f5:01:46:59:5d:00:f2:79:5b:2c:e3:2d:d2:7f:78:79:f6:
b5:dc:b8:4d:b1:6a:17:d1:d0:02:b0:0e:37:2c:ed:76:de:55:
73:b7:38:2a:95:0c:a1:8b:a0:75:89:ed:cf:2b:30:29:b6:f7:
31:9e:5b:4c:ed:da:8e:ac:b6:c3:8d:3d:cd:7d:90:f4:7f:5a:
99:ca:3c:83:e1:9a:de:a0:84:1a:36:6b:e8:f6:82:a9:e6:c7:
b0:da:e8:52:ba:8a:90:a3:12:49:6e:ab:20:c6:5b:d7:59:74:
c2:40:b6:30:3b:7a:c0:59:71:88:f1:3d:ee:b6:cf:20:b7:d7:
c9:d6:82:be:f8:2a:47:c9:98:6a:55:81:db:ae:d0:0e:3c:83:
3a:b1:b6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:02:58 2026 by rpki-client