Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
File: isfq5knZVHsK0KsAerTopI3tTV0.mft (raw, json)
Hash identifier: E553GlqiX9a7J5BiIslAiLyfX2kphDtX/4xreqt53+c=
Subject key identifier: D8:C6:9A:62:CC:9B:06:81:B6:7C:D4:E4:FE:BB:C2:B0:E3:F4:65:87
Authority key identifier: 8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
Certificate issuer: /CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Certificate serial: 019CAF7EE8F77C7E33110260764C76AD44E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
Manifest number: 184E
Signing time: Mon 02 Mar 2026 17:00:55 +0000
Manifest this update: Mon 02 Mar 2026 17:00:55 +0000
Manifest next update: Tue 03 Mar 2026 17:00:55 +0000
Files and hashes: 1: GtLN875AMsU5_ahlkmocxAUh5EM.roa (hash: irtfrvq51uYuMW8qlslsIniYXKoM8xsUWZf7aX7ayYM=)
2: isfq5knZVHsK0KsAerTopI3tTV0.crl (hash: kMz+ka6tbairXXXiwKXwpWVHFh58YgQqbR6rYdwsxXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:7e:e8:f7:7c:7e:33:11:02:60:76:4c:76:ad:44:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ac7eae649d9547b0ad0ab007ab4e8a48ded4d5d
Validity
Not Before: Mar 2 17:00:55 2026 GMT
Not After : Mar 3 17:00:55 2026 GMT
Subject: CN=d8c69a62cc9b0681b67cd4e4febbc2b0e3f46587
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a5:30:f3:46:43:5d:a3:72:a7:ba:83:ae:d4:
86:eb:3d:97:af:ae:b5:d2:8f:7e:d6:3f:84:89:e5:
63:4d:af:b3:ba:46:9b:cb:5b:2f:18:ef:1b:48:b6:
90:3b:4c:66:19:88:9e:ed:52:79:9b:a3:1c:fb:86:
24:03:ec:50:92:97:90:26:46:05:a6:db:e0:2a:ed:
ee:96:e7:a3:90:78:fc:84:13:48:b4:e3:c1:cc:52:
f5:76:45:d3:d3:1e:5c:eb:3f:e0:38:40:02:1d:5b:
55:48:6d:36:68:0a:4f:6c:8e:ec:e1:a3:14:f3:a6:
db:1d:86:a6:8d:9d:d6:2d:b9:41:08:92:bd:73:08:
51:8c:45:dc:b2:66:94:32:b4:2a:39:50:80:4a:5f:
a9:61:ef:3f:c6:89:07:95:08:e9:2a:67:8e:87:bf:
24:4e:93:0b:1d:fe:fe:87:f3:58:6b:24:95:4a:9d:
6a:f3:d9:b8:b5:7a:5a:ba:a4:51:c7:66:08:13:95:
0e:00:ff:43:01:05:65:c9:4c:c0:17:97:0e:cd:1e:
4a:32:dc:05:cc:e8:07:e7:24:20:29:ad:4b:0d:1e:
9a:82:54:11:64:ab:57:14:f4:6a:d5:37:aa:93:d2:
35:52:1b:05:0d:95:a0:ab:64:44:74:1a:6d:dc:8c:
0e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C6:9A:62:CC:9B:06:81:B6:7C:D4:E4:FE:BB:C2:B0:E3:F4:65:87
X509v3 Authority Key Identifier:
keyid:8A:C7:EA:E6:49:D9:54:7B:0A:D0:AB:00:7A:B4:E8:A4:8D:ED:4D:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/isfq5knZVHsK0KsAerTopI3tTV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/67db0b-1d10-4c97-9af6-ac01f0c5662b/1/isfq5knZVHsK0KsAerTopI3tTV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:14:46:ba:e8:85:7d:dc:da:08:e2:19:d5:94:78:06:a3:7b:
7f:d9:12:ac:8f:97:bd:18:bc:ac:33:e8:df:ee:6a:01:4a:50:
17:f7:88:76:7f:13:53:6d:81:96:8a:2d:20:51:e2:ac:35:67:
81:7f:5b:63:d0:f8:cf:dd:08:bd:7a:67:12:12:78:6f:44:a7:
ad:d0:a8:4b:1c:2b:06:c3:fe:51:29:c7:1b:ee:7c:27:35:0a:
45:9a:19:f3:5d:bc:6e:43:ba:de:3d:33:45:52:7c:3d:2f:a0:
8d:dc:01:fd:02:25:b4:a0:41:77:2f:d5:62:65:38:eb:32:3b:
a0:53:9c:6b:20:76:fa:b9:3b:0b:f4:18:fb:72:59:a5:03:9a:
bd:02:a6:14:f4:63:24:45:8e:d8:6d:39:40:88:92:72:6e:47:
cc:b9:5b:94:07:47:de:60:1b:e1:ed:19:cc:8c:c0:30:e8:31:
2a:11:3b:b7:80:8c:50:19:ce:f2:60:b0:ce:8b:50:06:c8:62:
26:5f:c5:b8:a6:30:34:e8:4d:0b:1a:76:95:8b:cb:f1:6a:ce:
3f:d0:f5:18:6f:79:f7:d6:dc:b7:7b:04:7b:ed:a5:a9:4a:fd:
a0:da:1a:bf:3c:76:b3:29:0b:09:f0:5a:2c:c1:30:78:8a:be:
eb:3e:00:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:26:00 2026 by rpki-client