Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
File: IqyN_06Z0-IomvY7FdVdJFDIQsM.mft (raw, json)
Hash identifier: HGn4S+I2uOjpI29MgYKsJw2Dvh96z74ncECX4ninBwA=
Subject key identifier: E2:1A:23:31:2B:4D:CE:4E:E2:D1:E6:D7:82:2D:A8:45:A1:7D:8A:0D
Authority key identifier: 22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
Certificate issuer: /CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Certificate serial: 019CAAFD42374CFAA25D0601D5AAEFF3B87A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
Manifest number: 0767
Signing time: Sun 01 Mar 2026 20:00:50 +0000
Manifest this update: Sun 01 Mar 2026 20:00:50 +0000
Manifest next update: Mon 02 Mar 2026 20:00:50 +0000
Files and hashes: 1: IqyN_06Z0-IomvY7FdVdJFDIQsM.crl (hash: /lo2IERN4e2wrnl+MNXgbSwACzDaQQyoGC11L4K5vXw=)
2: vrES8ZRPn5zCw67vXGrWdsUrlYU.roa (hash: SIvQo4/UCnsgnMUPzKF2UlSpxTrczb6UXhWdfVUU1JA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:42:37:4c:fa:a2:5d:06:01:d5:aa:ef:f3:b8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Validity
Not Before: Mar 1 20:00:50 2026 GMT
Not After : Mar 2 20:00:50 2026 GMT
Subject: CN=e21a23312b4dce4ee2d1e6d7822da845a17d8a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:51:3a:9c:96:8f:a5:58:34:ef:c6:eb:2f:
2e:13:ac:71:1a:74:dd:0c:91:d0:20:43:15:86:ab:
e2:07:23:11:2b:1c:76:e5:1f:0c:78:02:08:cf:eb:
75:28:d9:76:b0:d4:f9:c6:45:c0:0d:cf:8c:a7:87:
0b:3c:64:8a:da:59:06:9d:2a:07:4b:c3:53:b9:f7:
e8:a1:78:11:23:88:79:19:4c:44:17:ef:7c:bf:f5:
09:1c:46:34:82:6e:c9:b0:70:a4:67:60:46:52:f6:
72:84:27:52:f1:e2:f4:92:09:8d:e8:1f:94:08:4c:
dc:32:90:33:62:97:b7:34:0c:81:a0:09:21:0d:94:
12:6b:e6:14:09:e0:4b:2b:71:fc:be:2d:da:35:67:
0a:b9:e7:fd:73:4e:1e:c8:aa:04:19:c6:89:14:47:
fa:e1:8e:fa:1c:ee:00:8e:d2:b6:97:9e:1f:04:64:
82:b8:24:c4:ef:c6:a8:6d:be:72:42:79:c3:c4:e7:
3b:05:72:4b:af:aa:f3:7a:f1:14:0c:d8:ea:d7:76:
54:7c:e0:03:5a:2c:1f:9f:85:96:d7:c4:57:b9:00:
96:18:ce:57:24:c9:12:ae:ab:dc:6c:fd:ef:a9:5b:
d3:53:e9:d5:11:8d:4d:d9:9f:1a:2d:eb:9b:9f:fb:
93:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1A:23:31:2B:4D:CE:4E:E2:D1:E6:D7:82:2D:A8:45:A1:7D:8A:0D
X509v3 Authority Key Identifier:
keyid:22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ce:8c:82:ae:bc:29:9d:62:74:bc:7a:8e:03:cf:0a:10:32:
80:c8:98:a8:fc:b0:3d:ec:c5:a7:7e:62:09:e3:52:db:4a:28:
1e:ac:0c:b0:ea:86:82:41:2f:0d:5a:f2:82:8a:51:87:b5:16:
f2:9b:00:21:ec:60:cd:bc:0c:7f:72:0a:4f:4f:52:79:55:bc:
b0:b0:29:c2:01:ff:3b:07:f5:3c:b0:34:fa:47:ae:ec:d1:5f:
57:c5:38:56:83:40:b7:c7:0c:a8:42:65:ae:71:47:f1:03:4b:
50:50:01:53:70:27:46:f0:95:0a:59:68:14:d4:a2:11:a8:d4:
17:85:37:3c:e7:be:0a:d0:7f:79:ab:78:83:19:11:2f:10:11:
dc:31:55:f2:06:9f:13:76:a1:7f:40:ee:39:44:34:ec:ed:ad:
9e:e3:51:a2:d7:36:3f:d7:d4:3c:4c:c2:53:5b:e0:dc:0e:bc:
f6:ca:7c:6c:6a:3a:e5:b1:12:57:ea:19:3f:54:88:63:35:79:
af:f1:e8:01:1c:e7:7e:a1:ab:e3:7f:1d:07:21:74:7b:c7:9d:
1c:e9:07:8f:0e:7e:8c:dc:97:7c:eb:e8:29:1e:e5:e7:da:65:
83:f0:cc:d3:7a:a9:ea:01:cf:de:73:7c:e7:5e:7c:f6:df:e4:
6e:21:50:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyq/UI3TPqiXQYB1arv87h6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYWM4ZGZmNGU5OWQzZTIyODlhZjYzYjE1ZDU1ZDI0NTBj
ODQyYzMwHhcNMjYwMzAxMjAwMDUwWhcNMjYwMzAyMjAwMDUwWjAzMTEwLwYDVQQD
EyhlMjFhMjMzMTJiNGRjZTRlZTJkMWU2ZDc4MjJkYTg0NWExN2Q4YTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJxROpyWj6VYNO/G6y8uE6xxGnTd
DJHQIEMVhqviByMRKxx25R8MeAIIz+t1KNl2sNT5xkXADc+Mp4cLPGSK2lkGnSoH
S8NTuffooXgRI4h5GUxEF+98v/UJHEY0gm7JsHCkZ2BGUvZyhCdS8eL0kgmN6B+U
CEzcMpAzYpe3NAyBoAkhDZQSa+YUCeBLK3H8vi3aNWcKuef9c04eyKoEGcaJFEf6
4Y76HO4AjtK2l54fBGSCuCTE78aobb5yQnnDxOc7BXJLr6rzevEUDNjq13ZUfOAD
Wiwfn4WW18RXuQCWGM5XJMkSrqvcbP3vqVvTU+nVEY1N2Z8aLeubn/uTJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIaIzErTc5O4tHm14ItqEWhfYoNMB8GA1UdIwQY
MBaAFCKsjf9OmdPiKJr2OxXVXSRQyELDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9hNzVlMWQtNGQ4MS00OWNiLWFjYTUt
ODI5OThhOTI4N2UyLzEvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9hNzVlMWQtNGQ4MS00OWNiLWFjYTUtODI5OThhOTI4N2Uy
LzEvSXF5Tl8wNlowLUlvbXZZN0ZkVmRKRkRJUXNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP86Mgq68
KZ1idLx6jgPPChAygMiYqPywPezFp35iCeNS20ooHqwMsOqGgkEvDVrygopRh7UW
8psAIexgzbwMf3IKT09SeVW8sLApwgH/Owf1PLA0+keu7NFfV8U4VoNAt8cMqEJl
rnFH8QNLUFABU3AnRvCVClloFNSiEajUF4U3POe+CtB/eat4gxkRLxAR3DFV8gaf
E3ahf0DuOUQ07O2tnuNRotc2P9fUPEzCU1vg3A689sp8bGo65bESV+oZP1SIYzV5
r/HoARznfqGr438dByF0e8edHOkHjw5+jNyXfOvoKR7l59plg/DM03qp6gHP3nN8
51589t/kbiFQZQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:04 2026 by rpki-client