Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: 65ApW41UZqdj/eSZ2bq3BCTGDmqlF3JDEGTZIvdHUwY=
Subject key identifier: 20:D6:17:B6:14:CB:08:4A:15:FF:BA:B0:8C:4C:BE:30:DE:5D:DB:23
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 019D9E88BB5B6311716426A3D0A55EB62E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 1486
Signing time: Sat 18 Apr 2026 03:00:54 +0000
Manifest this update: Sat 18 Apr 2026 03:00:54 +0000
Manifest next update: Sun 19 Apr 2026 03:00:54 +0000
Files and hashes: 1: 7O5GfirPqz8Z-l1UI_YHQO7lQh4.roa (hash: tzbY87wDHF363K7TSFpJw4yb7j/fVIJaQ3EDQVJafo4=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: 6xHVcFVn4TT82aalxkHlVU5ZRoH+8O7MusFZ0AZiAsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:88:bb:5b:63:11:71:64:26:a3:d0:a5:5e:b6:2e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Apr 18 03:00:54 2026 GMT
Not After : Apr 19 03:00:54 2026 GMT
Subject: CN=20d617b614cb084a15ffbab08c4cbe30de5ddb23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e0:73:63:53:e3:18:05:d6:81:d5:4d:f7:3f:
9d:7c:a2:b9:ea:a1:47:6f:d7:4d:60:dc:f0:ad:30:
ab:3e:87:2e:35:ad:79:e3:4c:28:87:eb:fe:15:63:
b7:75:29:6e:34:83:7d:2e:16:3a:77:52:f7:0c:04:
a8:91:f0:50:3f:25:87:14:03:29:83:c4:5b:27:ff:
97:9a:3c:a8:b0:68:82:a2:38:8f:3d:71:9c:45:10:
3a:d9:84:9e:fd:69:cc:6b:e8:06:17:73:3f:ca:ed:
61:0f:dc:95:ae:c3:c9:3d:2a:43:21:3f:bf:4c:05:
eb:d5:ba:e3:13:01:a2:d2:fd:0f:1e:02:5b:6f:c7:
f3:5a:af:01:fe:ff:ca:e2:91:5f:1e:61:fa:36:ef:
10:58:95:1a:13:57:e5:40:68:28:17:8b:0b:8f:a7:
d9:46:a7:ec:4a:7c:80:44:fa:25:51:9c:bc:12:77:
24:5d:db:2f:04:15:d1:f5:8c:0f:75:5f:91:17:fd:
69:fe:a6:62:77:40:c6:bb:0f:1d:72:11:26:1a:d7:
ea:cd:1d:e3:b1:db:fe:ea:26:0c:54:20:4b:f2:df:
5d:51:97:54:a7:81:fe:01:06:53:cc:09:75:44:42:
04:01:43:0f:ff:6a:36:20:ca:96:5a:1b:51:16:c1:
15:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D6:17:B6:14:CB:08:4A:15:FF:BA:B0:8C:4C:BE:30:DE:5D:DB:23
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:13:f4:9a:8c:4b:00:99:19:4a:38:98:80:b9:93:f8:7e:2c:
2e:5b:1e:9d:83:c5:f3:69:4d:ee:a9:16:d3:e6:8c:3c:eb:91:
4a:55:06:9c:51:12:f8:e4:5d:a0:82:5f:42:e1:eb:97:a7:34:
02:fd:d1:64:62:6b:b1:df:f6:b9:0f:80:03:37:6f:53:39:6b:
34:e2:cc:21:95:74:40:65:01:00:b2:34:3a:7d:fb:73:fd:6e:
ef:01:d2:aa:ed:07:ed:8e:cc:c5:da:f4:f8:e4:41:c4:d0:5e:
9c:61:2a:96:52:ae:53:79:1b:8a:94:b1:e6:94:68:6e:32:00:
44:87:a1:64:ea:1f:91:6a:f2:56:b3:54:99:39:e3:b0:da:1b:
9b:2b:9f:36:a0:7a:76:47:76:94:45:a5:eb:9d:db:50:20:db:
bb:08:d1:f4:bc:a0:f1:25:12:3a:56:d1:be:36:2b:76:6e:07:
12:f6:d8:68:14:30:61:c9:b7:83:86:23:aa:b6:92:f6:f5:d9:
ab:3c:cf:a7:16:e9:c9:38:a6:5c:09:75:9f:e0:b8:a2:f5:af:
f5:38:9f:d9:8f:ef:34:66:5a:a3:5b:d5:cf:fd:8c:b1:e6:2d:
5b:80:6d:2c:d9:96:34:37:f8:59:f9:85:71:38:07:d5:42:f8:
eb:a7:6f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 06:16:54 2026 by rpki-client