Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: Ql/SF4uNZFRp3gc9fGaduJUto8Tiq91Ro1Wlqa+lSew=
Subject key identifier: 22:24:DE:08:58:38:89:86:27:09:16:38:6F:87:83:C2:92:CF:9E:91
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 019CAE34E33EF53DF2BCEC52FFFBDECF03AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 034D
Signing time: Mon 02 Mar 2026 11:00:27 +0000
Manifest this update: Mon 02 Mar 2026 11:00:27 +0000
Manifest next update: Tue 03 Mar 2026 11:00:27 +0000
Files and hashes: 1: Af_5rqEWBhs_t_5t3ubsN4ME7qQ.roa (hash: US3yyitysBySkBj1duM7uaT/kHoh5Ro/nrveWTewP9E=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: bpEyYokfw0ECen7J2d7syiaYcRoSig0p6iO6iism8dQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:34:e3:3e:f5:3d:f2:bc:ec:52:ff:fb:de:cf:03:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Mar 2 11:00:27 2026 GMT
Not After : Mar 3 11:00:27 2026 GMT
Subject: CN=2224de0858388986270916386f8783c292cf9e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:5d:86:09:e1:96:53:e5:a6:18:a5:47:59:
17:97:4a:55:b6:41:91:d0:51:57:7e:97:ec:ca:23:
9f:e8:1e:fd:80:87:7f:33:ae:f1:f5:51:50:2d:82:
12:4a:cb:8d:b1:8b:5c:ca:65:08:f8:17:14:87:b9:
76:fa:f0:66:98:c6:df:a5:71:52:1b:36:7c:d0:71:
8a:e9:e9:45:53:7e:7a:46:c0:09:80:a1:9f:0a:76:
98:a3:1f:02:73:ba:d9:75:15:37:1a:bf:8c:98:ea:
97:a2:ce:b2:3b:ee:9e:7e:c5:b7:c8:58:f9:a6:11:
40:ae:c5:60:fd:63:ef:2a:56:22:be:2f:a0:fa:07:
34:e4:18:ea:a6:d2:68:79:cf:32:b0:a7:c5:39:1e:
46:dc:d9:0d:46:a0:09:c0:ba:61:95:0f:c1:ac:9e:
10:83:3d:0f:bd:22:22:40:61:1f:91:3b:53:d7:da:
ea:0c:ec:77:ce:f8:09:93:f1:7d:3b:9e:9f:6b:d2:
77:33:0f:18:9e:1b:90:c2:af:25:ee:7b:c7:75:2d:
bd:73:1b:7b:c4:a4:10:26:95:04:82:11:eb:0e:ae:
c3:d8:48:cd:be:c1:4e:7e:7c:17:8c:b5:56:85:8e:
e5:cd:20:ed:fe:56:fa:db:4e:12:f3:40:1b:22:b8:
5a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:24:DE:08:58:38:89:86:27:09:16:38:6F:87:83:C2:92:CF:9E:91
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:22:93:59:ea:08:46:72:ee:b4:18:56:65:64:45:aa:cb:ff:
88:cd:e5:76:18:31:26:d1:4b:25:9e:a6:e7:03:bc:eb:73:4e:
3d:07:a9:01:1c:79:08:21:c8:b9:07:3b:1b:fa:70:e0:5c:e8:
42:46:60:1b:76:fe:07:19:61:8a:fb:46:d2:5d:2a:a2:c5:31:
30:88:49:f7:e5:d3:50:dc:26:c2:a7:ab:83:91:b9:d1:3d:0c:
f9:b9:65:da:47:e3:47:ec:ac:27:1e:71:c1:fa:4a:e4:18:f3:
aa:bc:4f:9d:72:9c:eb:d3:11:e2:3c:49:82:94:12:d0:33:0d:
61:ee:02:61:af:b8:0f:14:05:c4:e6:43:af:9e:f1:da:38:af:
fb:16:f3:9e:fc:eb:90:22:8e:53:dc:c6:c1:1c:c3:37:e3:69:
71:53:88:c6:d6:b6:01:55:a4:a6:1a:44:35:ad:62:38:6b:78:
3b:38:d9:a4:86:88:c9:70:3d:ac:6f:3b:27:fa:b7:e1:e2:29:
21:6c:cd:a1:05:22:f5:ce:54:59:70:a9:90:83:46:3f:47:00:
02:5b:2e:c8:d8:fd:81:fa:79:96:11:3a:bf:1e:a9:1f:c1:e6:
b0:c3:cb:45:4a:93:a8:0e:76:6b:5a:5a:57:00:33:b1:ed:58:
5d:f7:c7:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:55:45 2026 by rpki-client