Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: iEo8EeGxoFJcU9IEyzGan0UOsWf118TdC9dugn1Yd/8=
Subject key identifier: 45:23:99:07:D5:8A:7F:C1:14:85:69:31:FE:B4:B6:1F:EF:25:06:EC
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 019CACB55B793265ED5C3CB5293E33269C20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0FE5
Signing time: Mon 02 Mar 2026 04:01:32 +0000
Manifest this update: Mon 02 Mar 2026 04:01:32 +0000
Manifest next update: Tue 03 Mar 2026 04:01:32 +0000
Files and hashes: 1: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: GEQVVrh4Bq0MKaJxw0u8nwzWWVhR3EFgdQ6fHGpfOYI=)
2: yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa (hash: p3KrL6JUxzdYriz06hWpPAtkTxaVZyDG1Zr5vFYZVTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:5b:79:32:65:ed:5c:3c:b5:29:3e:33:26:9c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Mar 2 04:01:32 2026 GMT
Not After : Mar 3 04:01:32 2026 GMT
Subject: CN=45239907d58a7fc114856931feb4b61fef2506ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e0:29:c9:0b:c8:ee:57:3f:76:5c:fd:ad:8a:
8f:62:00:6f:7d:95:bc:0f:85:75:e4:13:b3:78:50:
7f:7f:63:d9:35:7e:de:23:0d:15:74:54:b2:1d:31:
66:78:41:b5:82:ac:ea:cd:31:1c:c5:1a:41:89:81:
42:9b:af:f1:38:20:3e:f6:24:1a:ff:7f:4a:09:4e:
7b:12:a2:9f:cd:fb:f3:04:56:21:6d:e2:7c:6c:82:
15:83:57:67:5e:a9:4c:c2:63:a7:fd:f7:ab:f0:f6:
91:15:80:71:eb:35:59:6c:06:6f:ec:4f:d6:46:87:
1d:ac:50:92:5b:05:48:b8:88:2f:88:49:47:67:b3:
49:fe:ae:62:32:32:a5:3c:d1:5d:5f:7a:15:f3:43:
62:e1:2c:01:45:6f:dc:1b:f2:44:ec:05:14:de:3d:
e2:2b:e9:ab:7e:35:3f:34:08:eb:93:4c:41:a3:07:
95:35:01:96:ea:0a:06:ee:7e:f6:af:f9:c3:86:c2:
de:9f:b7:8c:22:1d:59:dc:a6:4f:3f:83:08:0e:b2:
42:52:fa:e3:aa:9d:73:81:68:fc:76:bb:5e:36:44:
e3:9c:c0:71:59:87:b6:d7:f7:e4:9e:af:74:fd:68:
71:ff:eb:09:4d:87:6f:ff:8f:00:ae:bc:5f:88:37:
39:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:23:99:07:D5:8A:7F:C1:14:85:69:31:FE:B4:B6:1F:EF:25:06:EC
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:56:c6:38:cf:11:5c:27:24:bc:9c:87:51:ec:52:5d:d5:f5:
e0:d2:ac:69:19:bf:47:84:0b:c6:43:ac:80:86:91:48:e4:23:
f5:39:ed:6d:a0:fc:ce:2a:6c:7d:41:ce:4c:bc:7f:ad:51:d8:
ab:8b:2e:d8:55:25:0c:f7:95:c1:92:7b:69:52:45:88:cf:e2:
53:de:42:f2:70:5c:54:e5:a4:52:4a:10:d7:08:40:4a:bb:27:
14:36:31:ae:39:7f:b6:17:68:52:31:29:5e:f8:70:8a:02:12:
b9:56:da:5b:8f:84:33:d2:fb:71:be:60:a0:d9:fe:e6:42:5e:
b1:b9:14:2c:57:13:10:f0:1c:2c:a0:ef:5b:fe:f0:df:2d:cc:
a2:e1:be:8c:70:16:ec:3e:c4:9f:56:2c:3f:c6:7d:b5:74:4e:
7a:fc:7c:e4:46:e2:af:26:08:04:f9:de:e1:b5:a1:47:fe:5f:
02:2f:7f:f8:88:cc:72:5a:e7:87:1c:40:9c:bd:c4:2f:c3:27:
f8:93:1a:12:a5:46:93:a4:d8:ca:75:e9:5c:aa:1f:1d:58:dd:
a5:5c:9f:f1:41:f1:8f:b1:2d:bf:3f:5e:fc:d2:f5:ff:9f:b2:
72:df:2f:92:85:1b:d3:03:19:bd:cc:08:6f:03:ee:aa:fe:15:
39:57:34:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:23:04 2026 by rpki-client