Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: sJ5eCxBSzpSKcDM8tPofl+9d+m9k06BvnWZ1PNLzJMA=
Subject key identifier: 55:72:69:AC:57:B2:01:D1:79:8B:FB:2C:1F:FF:FA:EF:C3:54:38:C8
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019D99D0683A2BE4F012A3562C24F5FAD271
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0C21
Signing time: Fri 17 Apr 2026 05:01:05 +0000
Manifest this update: Fri 17 Apr 2026 05:01:05 +0000
Manifest next update: Sat 18 Apr 2026 05:01:05 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: XtXeMEDHPGIc+i9S1hb5YTowt+ktKqlnwHji4EI2nBA=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
7: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:68:3a:2b:e4:f0:12:a3:56:2c:24:f5:fa:d2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Apr 17 05:01:05 2026 GMT
Not After : Apr 18 05:01:05 2026 GMT
Subject: CN=557269ac57b201d1798bfb2c1ffffaefc35438c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:b8:e3:99:46:87:0b:e7:70:63:75:17:56:
e5:38:6a:4c:6d:87:06:a2:59:25:60:11:ce:f1:e4:
bc:b2:e6:ce:7c:57:08:48:5f:e5:b1:35:65:cf:69:
aa:01:09:bb:73:8c:d0:41:28:e6:e1:e0:d6:ca:92:
09:6a:65:a2:f2:3b:95:95:09:45:93:ef:b3:25:98:
22:bf:0a:cb:ab:ce:24:f1:8a:f7:15:56:d1:67:8c:
aa:4d:24:dd:f0:7b:87:be:c8:d2:b5:43:c9:91:c5:
fe:9c:ce:b5:64:57:be:1e:77:7b:e7:7f:c0:48:28:
a9:3d:1b:47:94:30:e0:90:33:9e:d6:b8:99:a3:05:
71:e2:fc:00:c5:cf:cf:53:39:da:24:83:58:f6:f2:
07:a4:79:30:d3:f7:fa:01:66:5e:21:5e:a5:cc:af:
43:b8:93:ec:40:08:02:52:bd:1e:61:81:95:fa:90:
af:c1:2d:49:1f:26:21:45:2d:ef:73:4c:69:c3:17:
69:71:2f:b2:92:d8:be:a3:1f:bc:c0:25:7d:17:6b:
4e:83:4c:df:b4:5d:01:9b:9f:aa:69:a5:2d:5d:82:
08:ba:71:e6:90:bb:fe:b1:81:59:ba:76:35:ad:8b:
3b:19:e2:dc:82:fe:90:88:67:4f:a1:2f:bb:db:a7:
d5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:72:69:AC:57:B2:01:D1:79:8B:FB:2C:1F:FF:FA:EF:C3:54:38:C8
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:3a:e0:02:23:79:b5:af:74:60:05:31:d4:84:59:65:88:09:
c2:52:7a:b8:30:17:d3:d3:7f:5c:4a:2e:83:b0:3c:16:51:d9:
b3:57:82:18:2d:fc:26:48:a6:8e:1b:02:27:08:6d:29:9e:33:
60:d3:8e:f5:dc:1c:19:be:d9:22:c3:36:75:82:bc:b8:01:5d:
fd:11:e4:f6:48:06:35:03:5e:da:7a:b6:0f:e5:a5:ab:2b:cf:
45:c1:cd:4a:8c:43:88:da:0b:f6:b3:fc:0f:6f:75:2d:2c:24:
b9:f5:6a:f3:a5:e5:fb:bc:b1:32:7c:88:7b:1c:5f:dd:30:d7:
9f:c4:97:8f:fb:e5:60:8c:c7:b2:25:61:c0:ab:72:f5:6b:73:
40:55:cf:70:8b:e7:91:bf:72:20:4e:c7:5b:c0:7d:6e:c0:89:
3e:64:47:17:c4:94:e0:32:c7:dc:a0:c4:fd:f0:4d:79:3b:2f:
ac:58:a9:c3:3b:8a:b1:da:af:3b:09:77:42:2e:1a:9e:52:52:
aa:2d:d3:69:e9:b0:85:8a:62:b3:f0:32:27:29:ee:8a:27:f1:
61:09:49:16:d0:5e:61:fa:6d:05:73:86:04:75:16:1b:bb:ff:
73:06:c1:45:0f:87:35:be:95:00:00:e6:71:b9:c2:b3:61:cb:
ac:66:ee:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0Gg6K+TwEqNWLCT1+tJxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj
NjdlMDAwHhcNMjYwNDE3MDUwMTA1WhcNMjYwNDE4MDUwMTA1WjAzMTEwLwYDVQQD
Eyg1NTcyNjlhYzU3YjIwMWQxNzk4YmZiMmMxZmZmZmFlZmMzNTQzOGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfi445lGhwvncGN1F1blOGpMbYcG
olklYBHO8eS8subOfFcISF/lsTVlz2mqAQm7c4zQQSjm4eDWypIJamWi8juVlQlF
k++zJZgivwrLq84k8Yr3FVbRZ4yqTSTd8HuHvsjStUPJkcX+nM61ZFe+Hnd753/A
SCipPRtHlDDgkDOe1riZowVx4vwAxc/PUznaJINY9vIHpHkw0/f6AWZeIV6lzK9D
uJPsQAgCUr0eYYGV+pCvwS1JHyYhRS3vc0xpwxdpcS+ykti+ox+8wCV9F2tOg0zf
tF0Bm5+qaaUtXYIIunHmkLv+sYFZunY1rYs7GeLcgv6QiGdPoS+726fVOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVyaaxXsgHReYv7LB//+u/DVDjIMB8GA1UdIwQY
MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt
N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4
LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgzrgAiN5
ta90YAUx1IRZZYgJwlJ6uDAX09N/XEoug7A8FlHZs1eCGC38JkimjhsCJwhtKZ4z
YNOO9dwcGb7ZIsM2dYK8uAFd/RHk9kgGNQNe2nq2D+WlqyvPRcHNSoxDiNoL9rP8
D291LSwkufVq86Xl+7yxMnyIexxf3TDXn8SXj/vlYIzHsiVhwKty9WtzQFXPcIvn
kb9yIE7HW8B9bsCJPmRHF8SU4DLH3KDE/fBNeTsvrFipwzuKsdqvOwl3Qi4anlJS
qi3TaemwhYpis/AyJynuiifxYQlJFtBeYfptBXOGBHUWG7v/cwbBRQ+HNb6VAADm
cbnCs2HLrGbu2g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:36:02 2026 by rpki-client