Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: N0KDTyHHXYRiLkKNkwgZVer5+IaDqEeG2/4IFIru7Q8=
Subject key identifier: 6B:AE:47:E0:97:74:B9:48:5D:2A:96:43:96:6F:7C:2B:30:77:86:E0
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019CAA58C7BCB242C7EE231504E0B4D5B194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0BA5
Signing time: Sun 01 Mar 2026 17:01:10 +0000
Manifest this update: Sun 01 Mar 2026 17:01:10 +0000
Manifest next update: Mon 02 Mar 2026 17:01:10 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: +wUWS0SbMqqJGLmKuBXqQDhK7WyQG5mfsbTv78Nkugs=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
7: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:c7:bc:b2:42:c7:ee:23:15:04:e0:b4:d5:b1:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Mar 1 17:01:10 2026 GMT
Not After : Mar 2 17:01:10 2026 GMT
Subject: CN=6bae47e09774b9485d2a9643966f7c2b307786e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:a2:30:6b:5b:48:08:b9:8f:64:ba:c8:a2:
20:f4:56:24:30:bf:d3:dd:dc:dc:ed:56:8b:8c:33:
83:57:e6:14:10:b5:d9:1f:94:17:11:34:e2:10:ea:
60:86:96:69:55:cc:b5:69:c2:09:26:30:38:65:a1:
5f:6b:71:40:a8:2d:06:e7:63:69:07:be:4c:9d:98:
89:3d:c5:dc:65:65:51:97:1b:6a:b9:3c:9e:2b:d4:
7f:a1:8c:60:a4:ed:99:c7:97:9a:e4:7b:6c:5b:f3:
a8:fb:70:b4:21:1b:f7:c3:64:af:14:e3:80:8b:1b:
27:45:1a:bb:42:b3:fd:32:a5:0c:c1:d4:e6:c5:0a:
a9:91:f2:0f:43:c1:29:0d:90:f5:42:c6:7f:6f:01:
ae:2e:98:2e:d6:16:69:e0:d0:68:05:f5:d0:11:0f:
f6:7b:fa:a4:21:3f:63:72:be:9a:cf:eb:e4:ba:ba:
3c:c4:19:9e:61:06:72:61:d2:8a:7d:f9:a6:63:3a:
02:c0:dd:16:27:36:08:40:8c:2c:d2:d2:cd:e3:1b:
76:f4:56:2c:dd:93:00:c6:b2:3a:8a:bb:0b:0d:74:
a8:e9:5c:32:e1:5a:db:8b:8a:84:87:ae:7b:1e:0f:
87:ed:2f:ba:ec:3f:c4:e8:86:9f:f2:1b:4d:45:af:
2d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AE:47:E0:97:74:B9:48:5D:2A:96:43:96:6F:7C:2B:30:77:86:E0
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a5:ee:f0:64:b5:eb:f3:c2:62:78:99:54:4f:e2:c6:b6:6d:
c6:f7:69:be:eb:e3:c5:dd:68:92:a2:ae:65:66:e9:82:23:19:
55:9c:df:82:2d:6e:08:20:08:26:35:76:5a:e6:d4:a7:07:1c:
26:17:ee:97:2c:ff:65:9d:02:14:a5:b6:3a:7c:9d:97:17:77:
04:f9:2c:13:0d:da:0a:60:ae:3e:08:51:83:b2:7d:7a:6f:ff:
c5:12:a8:07:ca:1c:b5:b1:f8:ca:6f:53:b5:5e:9f:bd:21:f2:
ba:3f:94:de:94:5f:ef:7f:06:2d:d6:28:da:d1:fc:58:54:81:
05:80:dc:ce:99:55:c0:67:53:be:64:43:ff:60:24:93:b0:c8:
dc:8b:41:7c:21:6a:08:07:58:7e:10:e9:c7:a8:ff:11:d0:bc:
a3:86:fb:0c:58:83:9b:fe:e9:26:5c:3c:3d:04:1d:09:6e:ab:
36:dd:48:99:41:35:23:14:ad:f8:88:fb:f0:db:97:1c:dd:15:
2f:b2:9a:8f:f0:36:4b:fe:7d:01:2c:d6:f4:57:ff:89:45:d5:
af:f2:65:b9:5d:3d:f4:31:f7:2f:ac:19:d4:e9:42:cd:50:c5:
3d:40:9f:21:9f:b3:a1:3f:3a:17:2e:62:ff:8d:be:a3:71:86:
28:53:7c:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWMe8skLH7iMVBOC01bGUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj
NjdlMDAwHhcNMjYwMzAxMTcwMTEwWhcNMjYwMzAyMTcwMTEwWjAzMTEwLwYDVQQD
Eyg2YmFlNDdlMDk3NzRiOTQ4NWQyYTk2NDM5NjZmN2MyYjMwNzc4NmUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcSiMGtbSAi5j2S6yKIg9FYkML/T
3dzc7VaLjDODV+YUELXZH5QXETTiEOpghpZpVcy1acIJJjA4ZaFfa3FAqC0G52Np
B75MnZiJPcXcZWVRlxtquTyeK9R/oYxgpO2Zx5ea5HtsW/Oo+3C0IRv3w2SvFOOA
ixsnRRq7QrP9MqUMwdTmxQqpkfIPQ8EpDZD1QsZ/bwGuLpgu1hZp4NBoBfXQEQ/2
e/qkIT9jcr6az+vkuro8xBmeYQZyYdKKffmmYzoCwN0WJzYIQIws0tLN4xt29FYs
3ZMAxrI6irsLDXSo6Vwy4Vrbi4qEh657Hg+H7S+67D/E6Iaf8htNRa8tgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGuuR+CXdLlIXSqWQ5ZvfCswd4bgMB8GA1UdIwQY
MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt
N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4
LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkKXu8GS1
6/PCYniZVE/ixrZtxvdpvuvjxd1okqKuZWbpgiMZVZzfgi1uCCAIJjV2WubUpwcc
Jhfulyz/ZZ0CFKW2Onydlxd3BPksEw3aCmCuPghRg7J9em//xRKoB8octbH4ym9T
tV6fvSHyuj+U3pRf738GLdYo2tH8WFSBBYDczplVwGdTvmRD/2Akk7DI3ItBfCFq
CAdYfhDpx6j/EdC8o4b7DFiDm/7pJlw8PQQdCW6rNt1ImUE1IxSt+Ij78NuXHN0V
L7Kaj/A2S/59ASzW9Ff/iUXVr/JluV099DH3L6wZ1OlCzVDFPUCfIZ+zoT86Fy5i
/42+o3GGKFN8lw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:06 2026 by rpki-client