Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: hMG5IAAjcngma6ez7LXN3DyR+ZX/NurWQG+mvUUWrW8=
Subject key identifier: 7C:4F:53:1B:31:77:AD:4E:45:7D:40:72:47:9F:7E:C8:46:6A:01:DE
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 019CAD22EDB1F00DAF33CB28A1EE8C0B38B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 1409
Signing time: Mon 02 Mar 2026 06:01:13 +0000
Manifest this update: Mon 02 Mar 2026 06:01:13 +0000
Manifest next update: Tue 03 Mar 2026 06:01:13 +0000
Files and hashes: 1: 7O5GfirPqz8Z-l1UI_YHQO7lQh4.roa (hash: tzbY87wDHF363K7TSFpJw4yb7j/fVIJaQ3EDQVJafo4=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: 5L6ti9qe7HIW4/V7uB6udAkQ1Oh2j9VTdNeu8XEcz6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:ed:b1:f0:0d:af:33:cb:28:a1:ee:8c:0b:38:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Mar 2 06:01:13 2026 GMT
Not After : Mar 3 06:01:13 2026 GMT
Subject: CN=7c4f531b3177ad4e457d4072479f7ec8466a01de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8a:75:ca:b6:b4:f4:9c:1a:d1:83:b2:f7:e9:
fb:ef:e3:21:ba:40:b0:a6:6f:6f:76:3d:e6:fb:0c:
3e:75:02:d4:ac:7f:fe:ee:45:e8:5f:a3:e7:76:ef:
da:ce:71:2f:37:40:79:cb:02:31:27:81:91:4d:12:
42:e5:ca:61:1a:38:4e:07:1e:1b:2c:0c:07:68:9b:
19:8c:6d:6f:32:16:a2:51:c4:da:f1:65:d7:e3:1f:
d6:00:16:09:8d:33:19:8f:a4:9e:fd:65:1f:c4:70:
c4:51:ca:26:6d:f7:c6:0c:4b:60:ca:c3:08:0e:8a:
0b:0c:88:da:f4:54:0d:24:57:7b:6e:e8:c0:9c:37:
47:51:41:44:6d:93:1b:04:01:9b:4d:a9:cb:e1:87:
e8:26:a1:34:25:4a:17:92:f2:3f:cf:6f:55:d8:2e:
db:54:d2:a3:5d:91:0b:c8:31:ae:7c:32:a7:31:0f:
e5:57:ea:6c:de:c5:c7:9d:9b:ab:43:d9:4a:75:f1:
87:44:36:4f:1e:d0:44:55:fd:dc:15:f8:0c:0a:87:
bb:8d:d9:58:78:3a:a8:e0:54:06:0f:16:e3:a6:a2:
55:9a:03:f9:2a:7b:92:44:2b:27:3e:0d:58:7d:66:
ed:af:a5:2a:7b:78:cb:64:f5:b3:79:a7:75:62:71:
30:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:4F:53:1B:31:77:AD:4E:45:7D:40:72:47:9F:7E:C8:46:6A:01:DE
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:32:51:c9:19:69:8e:ca:76:e1:0a:fc:3b:44:0c:51:45:7d:
6d:9d:ee:3c:5b:5f:da:37:ca:ba:7b:49:b0:94:d3:d7:2e:31:
dd:7b:37:b9:43:42:6f:8f:d7:0d:70:96:58:62:32:8b:6d:03:
31:be:4a:e0:a6:98:20:92:52:f7:70:da:cd:a5:0f:c3:1d:db:
81:76:12:96:96:7c:8e:d7:1b:1e:d3:9a:7e:e1:a6:eb:4b:72:
3a:72:98:a4:23:64:0e:69:41:a1:95:2e:e7:f4:9b:9f:f5:33:
24:da:f5:73:80:4b:3b:11:e8:8a:d6:18:d4:85:68:e9:5e:87:
db:25:eb:de:94:36:04:39:c2:54:98:79:88:52:16:14:ec:e5:
6d:ee:a9:63:ca:48:44:ba:0c:7b:58:8a:da:a0:48:09:48:56:
97:94:9d:ed:80:4e:f1:53:05:16:2c:c1:ae:ce:d5:66:77:47:
5f:6a:91:39:22:f5:45:91:eb:57:5e:d4:fb:e0:ea:ef:4b:a3:
52:ca:5d:2d:26:74:43:0e:72:49:49:fd:d5:94:ac:ef:5a:67:
41:80:df:e2:74:ab:cc:b5:31:d7:e0:3c:58:69:e6:08:ef:c6:
37:c3:37:8f:1c:b9:68:fa:a5:d3:27:df:03:11:38:12:76:de:
12:73:d3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:38:51 2026 by rpki-client