Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json)
Hash identifier: Gwq2ZBaq4IHve2ORqMeWgzrolDtC5cv3SRWePFRl5hQ=
Subject key identifier: 0A:1C:40:2F:19:C8:47:63:02:43:04:98:4C:42:4B:5A:F3:4C:3A:FC
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 019CAAC649F31D778A23DD37BFE076377802
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
Manifest number: 184C
Signing time: Sun 01 Mar 2026 19:00:47 +0000
Manifest this update: Sun 01 Mar 2026 19:00:47 +0000
Manifest next update: Mon 02 Mar 2026 19:00:47 +0000
Files and hashes: 1: F9LtIp7aRZvTu10CPCfjgsVeCH4.roa (hash: lyI0E0/eZw0Stmmyys17aMBQvOW4Meb+VaWbd7L0/zA=)
2: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: o6lgWEYRFKbE1d7LSHY2pQ03UQYwtC9FXzXclazhbCs=)
3: UPey1Iuc4KMtyO1x8bek9due93Y.roa (hash: KVMCzWDHAl6h2diMgEjiCZzLxzK2gigmEPW2UtR5si4=)
4: VWwoUGBYya7dT91k9xew3HleyiE.roa (hash: anOodm7+F8Ug5vPU/y7WyVSFPtcBXGPmpebjW6VOHsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:49:f3:1d:77:8a:23:dd:37:bf:e0:76:37:78:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Mar 1 19:00:47 2026 GMT
Not After : Mar 2 19:00:47 2026 GMT
Subject: CN=0a1c402f19c84763024304984c424b5af34c3afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b9:5c:a1:f4:81:9a:a1:d6:a4:6f:b7:18:ae:
f7:a9:0d:8a:1a:7b:3c:41:3b:08:de:c8:5a:87:28:
83:03:dc:2c:37:14:53:11:e3:fa:8f:05:89:90:fc:
69:5f:49:52:20:c5:b5:1d:68:6f:b4:43:18:ba:fa:
7f:05:a6:84:01:a3:af:2e:a9:91:ef:60:39:bb:30:
be:bc:06:5e:5e:e2:5e:28:0e:c8:df:0c:8a:8f:1a:
8c:ce:aa:ed:79:c5:ea:c3:95:79:50:d0:44:7e:0a:
b2:60:0a:98:06:8f:50:cf:5c:d5:8e:8a:b1:45:00:
fb:d2:2e:5f:d2:a4:b0:78:90:aa:f5:8e:77:65:90:
3c:aa:dd:f4:76:1a:90:3e:47:2e:78:57:c9:07:2f:
81:00:22:4c:27:40:96:af:bc:8d:34:1f:96:f1:87:
84:5d:f4:80:e0:55:c3:5a:e4:3b:d0:ab:79:0c:e2:
99:78:3d:8b:92:82:24:1d:db:75:4e:58:b1:a7:79:
82:f5:71:d5:97:5f:4b:1c:ec:12:c5:c7:91:d9:9e:
96:01:69:5e:f9:e9:fb:54:e5:ae:d6:e0:01:b1:af:
64:54:d7:7c:58:66:88:be:81:70:0d:72:c4:72:42:
5d:ef:4a:26:d4:c3:30:38:83:6b:71:1e:29:97:df:
d0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1C:40:2F:19:C8:47:63:02:43:04:98:4C:42:4B:5A:F3:4C:3A:FC
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:65:ab:66:97:e9:4d:5b:fa:76:9b:40:fe:8b:8c:ae:9a:ba:
9f:71:05:0b:e7:82:a0:f0:a1:a2:35:21:9f:a7:a7:10:4f:cc:
e8:dc:14:66:5d:db:df:a3:8f:79:ff:de:cf:74:49:cd:1b:33:
6f:79:d3:7c:7c:27:78:bd:1c:b1:6e:c5:c9:00:06:67:a6:73:
e6:fb:5f:74:d9:6b:ae:b9:a9:17:5e:01:34:1e:e9:a8:21:46:
9c:cb:a7:aa:04:37:ea:97:1f:c1:64:b8:66:40:06:fa:4b:ff:
65:3e:99:54:45:f8:6a:f8:fe:d9:9a:99:c9:d7:3d:b5:53:02:
8b:49:34:76:05:f6:d7:9b:1c:ae:5c:3b:8b:88:2f:0f:e2:bb:
11:d3:5d:dc:8c:c8:29:65:0c:f0:b1:8c:14:e2:85:bc:4f:af:
b9:35:34:a6:2b:8a:96:99:28:70:1e:9f:c4:0d:02:24:9b:14:
07:2d:6c:4d:0e:ec:6a:15:a3:6d:bf:70:bf:dc:ab:90:9b:0c:
53:8c:8f:e1:6e:06:1f:9a:6c:d9:f5:db:3d:1b:8b:77:c8:dd:
00:93:9f:da:54:24:7f:9d:9b:9a:c9:df:4f:d1:a1:9d:c5:d6:
e5:5c:97:ff:da:08:22:73:20:dd:6e:0f:e0:ff:4b:58:03:e1:
a7:db:8a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:46:34 2026 by rpki-client