Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
File: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json)
Hash identifier: wNfqYrdZy9/AargVYK/LYZkrovBXIuHmL8WtGVSRqag=
Subject key identifier: 4F:99:F9:14:3F:F8:0B:0F:FA:66:67:D1:46:33:47:6B:68:49:08:F4
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial: 019CACB539A9EC1A94ABC042CE0DE93F0848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
Manifest number: 0F31
Signing time: Mon 02 Mar 2026 04:01:23 +0000
Manifest this update: Mon 02 Mar 2026 04:01:23 +0000
Manifest next update: Tue 03 Mar 2026 04:01:23 +0000
Files and hashes: 1: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: pW8g+BnLOMUFFmLqgnmenWQvhI+kY7iICiZQdVr/980=)
2: R843p-38WteuOkSHzbf3qrehiDw.roa (hash: lL8mH/XViDvpJ3MkMI6sLi0P2Yyq2Vj6DtB1Dgsh4+g=)
3: lz_WC5uJeICfjQzpAPaUtpnLmOE.roa (hash: RYYydhlLpv7/DuyZEPW9/qv3fOSivSmlz/esgSVQG5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:39:a9:ec:1a:94:ab:c0:42:ce:0d:e9:3f:08:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Validity
Not Before: Mar 2 04:01:23 2026 GMT
Not After : Mar 3 04:01:23 2026 GMT
Subject: CN=4f99f9143ff80b0ffa6667d14633476b684908f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:01:a2:7e:a7:50:cb:aa:aa:cc:d0:7a:d2:b0:
38:71:64:08:66:14:53:b5:45:39:d4:3e:b9:ab:04:
eb:e6:a5:50:ae:32:ff:9c:6c:30:11:e0:7d:ef:37:
6a:28:41:e9:d4:0f:e3:0e:bc:04:9a:38:be:eb:08:
52:c9:dc:77:8f:72:ef:a4:55:d0:b3:89:b4:6a:01:
14:57:46:1e:03:1f:f7:d3:ef:38:ad:c1:bf:3f:c1:
b0:5e:84:64:fe:84:c0:b3:a3:30:8b:f9:b8:c3:43:
1f:79:ff:19:e6:bd:2d:b8:2d:28:06:1a:46:17:81:
30:67:cf:fe:28:83:16:af:13:9d:b5:a1:e4:4e:07:
4b:5a:68:51:29:f4:a7:e8:f3:c7:71:64:e8:72:cc:
be:7b:c5:fd:54:a0:be:e0:15:70:7d:c0:8e:8a:86:
eb:76:50:af:40:29:4d:ab:81:f3:79:09:56:37:89:
f4:50:09:10:8a:ae:21:1b:a7:80:1f:19:5a:30:cd:
e6:61:f6:36:43:54:ea:27:3c:18:64:80:af:9c:9e:
2f:95:94:e4:10:5b:63:71:57:3c:ea:5c:24:37:07:
ce:64:38:e9:86:71:b3:6a:5e:b3:fd:98:9f:f8:53:
92:cb:51:1b:d0:c7:d7:79:93:47:e6:de:18:db:1b:
b5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:99:F9:14:3F:F8:0B:0F:FA:66:67:D1:46:33:47:6B:68:49:08:F4
X509v3 Authority Key Identifier:
keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:6a:1c:2c:34:5d:a4:e8:a0:0e:74:e1:49:82:f9:3c:92:84:
6d:ff:a0:7b:8b:be:f3:2b:41:57:c5:1d:f5:56:df:39:38:18:
75:3b:19:53:f7:27:15:24:31:a9:c5:ca:35:73:82:f0:99:ee:
f7:de:c8:a7:0e:8e:b3:17:9f:df:ab:86:97:93:5c:c2:51:a7:
57:55:6e:66:be:4c:4e:a5:c1:22:cb:ba:4f:87:e3:60:23:a0:
71:be:47:ee:21:5e:46:5d:7e:77:66:b9:ec:f9:d3:aa:e0:fc:
9c:bb:a6:46:83:0a:d5:82:b1:0a:28:e8:ea:c1:6c:7b:30:c5:
f5:58:a4:68:cf:17:6e:84:8a:b7:23:a2:99:81:86:97:eb:86:
5c:dd:eb:42:59:c0:ba:09:8e:10:10:e8:ba:ae:fe:0e:86:f6:
07:86:11:b2:01:92:10:82:99:aa:77:c4:18:d9:ac:1d:89:8d:
6c:11:a8:2e:e4:29:8b:6f:d6:ab:55:f8:9d:ea:c0:36:06:04:
48:19:a6:98:11:96:94:bf:28:70:ce:1d:45:13:49:b2:6c:26:
dc:b9:07:b3:3c:9d:eb:cc:7a:94:e8:03:55:49:32:5f:ce:18:
04:8c:6b:17:03:0b:ed:61:59:57:34:df:de:5e:3c:00:8f:72:
0d:bf:c9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:59:08 2026 by rpki-client