Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
File: dIisPOfpHiQMr_IZy-OPzwI78rY.mft (raw, json)
Hash identifier: 9Tpf92G5tnBiudPZjgQwEn9sKSOnvgutCM40GU+q5pY=
Subject key identifier: 86:57:3F:A9:20:1A:E6:28:4C:64:45:12:BD:0E:4A:04:3C:9D:DA:43
Authority key identifier: 74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
Certificate issuer: /CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Certificate serial: 019CABD8F2D0E0CFFFFF7306572A53F27E72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
Manifest number: 0D63
Signing time: Mon 02 Mar 2026 00:00:47 +0000
Manifest this update: Mon 02 Mar 2026 00:00:47 +0000
Manifest next update: Tue 03 Mar 2026 00:00:47 +0000
Files and hashes: 1: CbxnjlJBX1CICFT1kGWKTEy-Z-0.roa (hash: a7S+YgDlHzYeUVzNU2fan5Qha2NudAAgRA43fxRQexg=)
2: dIisPOfpHiQMr_IZy-OPzwI78rY.crl (hash: JNxZGan7gIUEFJZsQC3Njep/yIpTAcZycC8fBVbFOOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:f2:d0:e0:cf:ff:ff:73:06:57:2a:53:f2:7e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Validity
Not Before: Mar 2 00:00:47 2026 GMT
Not After : Mar 3 00:00:47 2026 GMT
Subject: CN=86573fa9201ae6284c644512bd0e4a043c9dda43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ad:ef:18:2c:9c:2e:78:01:77:80:27:1b:fb:
4a:ef:8a:62:39:d5:0b:31:1b:03:98:e5:29:6d:32:
4a:4a:26:29:00:06:dd:b3:76:0c:55:c2:90:20:f7:
75:72:1c:10:95:66:77:b3:fb:72:6f:41:ce:f1:d0:
d3:f4:8b:2c:7a:71:20:4e:91:1f:37:a3:a4:64:87:
b1:68:60:57:cd:17:70:16:ac:68:d2:be:5d:dd:07:
40:64:b1:16:ca:fd:ac:9a:9b:9c:e6:d2:9f:8e:04:
15:51:99:a7:64:6b:ed:e9:26:2e:a8:1c:2f:ed:c7:
25:5a:fc:46:ae:df:71:90:ef:a9:d8:c2:b1:98:5d:
72:83:d2:1f:a2:cd:4a:14:3e:21:fc:3e:07:9c:3c:
f6:7c:eb:5a:40:59:b0:d4:37:4c:7f:30:91:a2:34:
af:e4:a5:3e:80:13:57:d4:61:fb:c7:07:5c:02:8e:
d6:72:4a:cc:3a:ae:c7:3f:74:ed:96:98:82:2f:df:
27:34:89:fc:10:d2:bd:0b:c5:b3:03:5f:9c:4f:f8:
76:e6:94:30:89:71:3d:a6:29:8a:b5:7a:f8:3a:50:
b3:82:11:f6:6d:82:5e:17:e6:8e:9b:da:a3:64:ce:
89:88:f5:1a:ce:2e:6e:60:56:55:c0:68:ea:c3:cf:
26:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:57:3F:A9:20:1A:E6:28:4C:64:45:12:BD:0E:4A:04:3C:9D:DA:43
X509v3 Authority Key Identifier:
keyid:74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8c:35:8b:0b:9d:1b:8c:c5:da:f0:af:fe:ed:fd:d7:ab:75:
4b:7f:21:20:69:b1:b4:5d:ec:8b:2a:bf:8f:a9:95:8c:a6:10:
be:ce:d5:b6:94:b7:b6:76:d4:d0:08:00:16:da:cc:6c:48:60:
26:34:5f:80:b9:67:dd:a8:61:4c:cc:a1:45:df:2f:6e:84:03:
a3:31:2a:3a:84:f1:7e:46:95:ee:73:7d:fb:e2:9b:a2:0c:d4:
ae:54:cb:89:35:26:c7:f0:b5:d6:d4:63:84:ec:d7:36:83:0a:
72:00:97:e6:20:5e:ed:76:93:75:82:4c:36:1c:a8:a9:8b:3b:
0b:26:ad:7f:da:93:95:65:dc:f5:cc:a0:97:67:1a:66:9b:fa:
e6:9a:96:14:6d:68:a4:86:1b:a9:d5:d3:96:e8:fd:38:dd:37:
5b:5e:8a:d1:97:67:d1:4e:f4:a6:6e:84:91:6b:c5:33:b8:eb:
d2:f7:6a:39:4b:e8:d7:50:33:c7:9b:6e:0d:07:5f:6b:68:85:
93:87:33:06:18:88:d4:8c:59:62:bf:85:f1:7b:24:f9:54:c3:
d8:12:18:ed:88:14:25:3d:5f:b2:51:cb:bb:0a:3f:22:56:a9:
d7:a9:44:9f:15:e1:f3:b3:49:3d:e4:35:f2:dc:bb:ea:7f:99:
54:6d:ee:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2PLQ4M///3MGVypT8n5yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ODhhYzNjZTdlOTFlMjQwY2FmZjIxOWNiZTM4ZmNmMDIz
YmYyYjYwHhcNMjYwMzAyMDAwMDQ3WhcNMjYwMzAzMDAwMDQ3WjAzMTEwLwYDVQQD
Eyg4NjU3M2ZhOTIwMWFlNjI4NGM2NDQ1MTJiZDBlNGEwNDNjOWRkYTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq3vGCycLngBd4AnG/tK74piOdUL
MRsDmOUpbTJKSiYpAAbds3YMVcKQIPd1chwQlWZ3s/tyb0HO8dDT9IssenEgTpEf
N6OkZIexaGBXzRdwFqxo0r5d3QdAZLEWyv2smpuc5tKfjgQVUZmnZGvt6SYuqBwv
7cclWvxGrt9xkO+p2MKxmF1yg9Ifos1KFD4h/D4HnDz2fOtaQFmw1DdMfzCRojSv
5KU+gBNX1GH7xwdcAo7WckrMOq7HP3TtlpiCL98nNIn8ENK9C8WzA1+cT/h25pQw
iXE9pimKtXr4OlCzghH2bYJeF+aOm9qjZM6JiPUazi5uYFZVwGjqw88mbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZXP6kgGuYoTGRFEr0OSgQ8ndpDMB8GA1UdIwQY
MBaAFHSIrDzn6R4kDK/yGcvjj88CO/K2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQt
ZDU3NjNmZWNkNjA1LzEvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQtZDU3NjNmZWNkNjA1
LzEvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVow1iwud
G4zF2vCv/u3916t1S38hIGmxtF3siyq/j6mVjKYQvs7VtpS3tnbU0AgAFtrMbEhg
JjRfgLln3ahhTMyhRd8vboQDozEqOoTxfkaV7nN9++KbogzUrlTLiTUmx/C11tRj
hOzXNoMKcgCX5iBe7XaTdYJMNhyoqYs7Cyatf9qTlWXc9cygl2caZpv65pqWFG1o
pIYbqdXTluj9ON03W16K0Zdn0U70pm6EkWvFM7jr0vdqOUvo11Azx5tuDQdfa2iF
k4czBhiI1IxZYr+F8Xsk+VTD2BIY7YgUJT1fslHLuwo/Ilap16lEnxXh87NJPeQ1
8ty76n+ZVG3uvA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:12:20 2026 by rpki-client