Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: gWllkTwy9rrhn4Sw1R/TdBLfFs5DqyJ9Uujsdwsagms=
Subject key identifier: FE:27:67:EA:2E:76:75:AD:56:2F:1B:D1:48:17:CF:5C:73:4B:4C:B9
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 019CABD9F8DB0B907364BD0A782EAFD17E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 12D4
Signing time: Mon 02 Mar 2026 00:01:54 +0000
Manifest this update: Mon 02 Mar 2026 00:01:54 +0000
Manifest next update: Tue 03 Mar 2026 00:01:54 +0000
Files and hashes: 1: 5lnasV2204ovFjXYLSXNVvtyrOk.roa (hash: xjGig7wrwgL+6zENtEl5DMDRUc85WEr4TmfLvxx+0vU=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: 0ZqyCoZuOS89Y5LKDowJ8E4/iQdrB034GSz/RYuGOng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:f8:db:0b:90:73:64:bd:0a:78:2e:af:d1:7e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Mar 2 00:01:54 2026 GMT
Not After : Mar 3 00:01:54 2026 GMT
Subject: CN=fe2767ea2e7675ad562f1bd14817cf5c734b4cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:93:dc:e7:5d:08:8e:d9:05:59:70:ee:7c:be:
d7:b7:b1:8c:9c:3e:eb:79:2b:7e:92:52:67:c8:38:
e7:97:8e:de:58:91:a7:86:47:e6:f2:79:81:f6:be:
cd:d4:81:ea:29:4c:64:f5:af:d3:96:07:ed:94:7d:
3a:5e:2d:39:74:c2:2c:9a:58:9a:1e:c8:6a:81:ef:
5c:53:d6:f6:3a:3b:c8:15:fc:fe:70:d4:7d:c5:5e:
b5:ac:7f:9f:0c:af:11:ba:39:66:9a:62:e1:ce:06:
45:e0:71:0a:f2:06:a7:95:e0:2e:3f:da:71:1c:46:
31:08:2b:ac:00:f4:e4:4b:f9:ab:3f:f2:18:ff:d2:
14:0f:c7:85:3b:58:bc:36:02:b3:c7:1f:62:d7:30:
6e:71:88:0e:0e:26:ac:ba:d4:cb:5c:cd:f8:9e:6a:
6d:6b:ce:10:e6:92:73:6b:e4:59:91:5c:90:e5:5c:
45:3c:f0:f9:a4:de:c9:c5:dc:1c:37:4b:a7:c7:b7:
ad:07:fc:2d:0a:e3:19:31:7d:01:c8:20:de:ab:d9:
f0:a8:51:d7:86:66:2a:15:bd:7b:ff:ba:58:bb:e8:
62:be:8a:21:47:4e:24:0d:82:58:3c:55:23:9a:ac:
af:7a:b6:65:68:c3:19:00:13:3e:a9:8f:e1:91:61:
68:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:27:67:EA:2E:76:75:AD:56:2F:1B:D1:48:17:CF:5C:73:4B:4C:B9
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:b1:f2:79:f3:fc:8c:b1:4b:4c:4b:5f:fc:cf:cf:66:06:d9:
5a:d3:e8:a1:24:fe:0f:3e:a5:9d:d0:e3:77:11:87:66:39:75:
b1:4b:23:71:f8:5f:42:1d:3d:90:c6:78:61:f7:92:85:93:ad:
5e:6a:bd:b4:1e:c6:b7:5c:aa:f4:3f:2d:db:ae:0b:f6:8b:20:
ae:0e:e9:2c:30:1d:ce:42:31:c9:2a:0a:d9:47:78:2e:55:08:
d1:d5:1d:a5:d0:e2:e8:7a:41:20:d9:05:9d:c0:5d:7a:a3:73:
d4:e9:a9:ea:26:62:9d:59:d9:ee:c2:3d:db:40:5c:45:db:b4:
e1:1d:5a:7a:17:db:26:5d:da:37:16:77:e3:57:fd:c8:5e:24:
0c:76:4a:72:e5:0b:3b:8d:ad:7e:dc:ee:f5:ba:f2:96:c8:d3:
7f:71:fa:ef:0e:9c:e5:70:a2:ee:b9:15:61:90:b8:c7:39:4d:
3e:29:6b:1b:c7:e6:2e:6a:d7:34:fa:da:52:e4:80:50:ef:d9:
9a:12:55:b2:38:44:0a:90:55:2c:a7:e7:f2:c8:7e:5b:e3:42:
14:8d:84:8a:3f:33:ed:f9:58:ff:ae:ae:8d:2f:72:fc:9a:6d:
10:7b:7c:91:78:61:9f:e5:5c:59:8c:7b:28:be:fc:03:05:c9:
2a:9e:21:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:18:20 2026 by rpki-client