Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: p4yclTi5EiZa4ZDjw+c+3Dy0xCJNhpN+T7G9ibAXVro=
Subject key identifier: 77:21:93:A7:CF:5A:E0:25:29:A6:73:0C:E9:0A:58:F6:8B:77:04:8D
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019D996313092BA5598C3AEBE74AFF5439C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0CA9
Signing time: Fri 17 Apr 2026 03:01:40 +0000
Manifest this update: Fri 17 Apr 2026 03:01:40 +0000
Manifest next update: Sat 18 Apr 2026 03:01:40 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: hu+Qkj5zYim0mb7JaZKg6EFQyrHv+n71jp4ehTFA83A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:13:09:2b:a5:59:8c:3a:eb:e7:4a:ff:54:39:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Apr 17 03:01:40 2026 GMT
Not After : Apr 18 03:01:40 2026 GMT
Subject: CN=772193a7cf5ae02529a6730ce90a58f68b77048d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:22:89:0c:c0:7d:f6:3f:cd:e7:b2:80:6f:76:
07:32:36:ff:8b:d1:6c:0a:b5:70:05:4c:58:b5:da:
d9:0d:3b:12:3e:4c:31:a2:bc:81:8b:b5:5c:15:4b:
23:58:08:af:0e:85:d3:3f:2b:d6:f6:ec:e2:d0:0d:
a8:ad:fb:25:2e:20:36:dc:de:e1:8d:54:5e:f0:19:
84:59:c9:59:6f:d2:6e:c0:3e:a2:4a:7b:3e:68:fb:
46:9f:5b:f3:ca:2f:7c:4c:6e:15:63:f8:9a:d1:3d:
d5:80:1d:5e:d0:37:93:1d:9a:cb:32:22:33:3c:ed:
c1:6d:8d:87:c8:38:ec:65:1f:2d:a5:ce:e5:3a:4b:
6a:6f:53:72:4f:91:d1:88:5d:24:d2:63:72:31:81:
cc:e6:ea:cd:bd:03:41:f6:77:e3:bc:68:d8:fd:98:
89:40:ab:0f:ea:4f:8e:78:3a:b2:ba:5b:40:f8:22:
c3:ef:f5:d5:84:39:0f:c7:99:c9:1a:e4:d3:95:43:
06:ae:99:80:a2:b5:24:af:51:77:ba:d0:b9:36:90:
da:61:0b:64:1b:0e:78:02:17:1b:24:e4:ae:15:5e:
c6:6e:a3:91:19:4f:c2:b2:1b:3d:0b:17:44:d1:c4:
8d:f9:1b:6c:fe:06:b2:17:3d:9a:71:c1:7f:6b:49:
fa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:21:93:A7:CF:5A:E0:25:29:A6:73:0C:E9:0A:58:F6:8B:77:04:8D
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:19:7c:e5:a1:70:e8:21:78:a9:8c:81:e5:91:00:4b:6b:be:
2d:34:e6:2e:eb:38:a4:d6:b1:24:ad:47:f7:27:e0:93:6f:b8:
6a:58:28:3b:ef:c5:dc:a0:1b:a2:06:ce:57:54:2f:92:51:ac:
2f:ca:c1:46:e6:a5:8d:19:c4:0a:a3:f4:55:8b:4c:74:a8:40:
75:b5:77:93:fc:9d:e7:9d:e1:3f:b3:66:e2:b5:0a:36:8c:22:
cd:da:de:bc:b1:49:ef:08:ff:bd:51:71:c2:db:25:39:81:77:
a3:9c:ea:d7:88:04:84:ca:bb:fc:69:5b:14:19:bb:e9:ff:79:
94:25:8e:df:1a:50:99:d2:cd:74:8a:b7:40:d9:6a:75:cc:a3:
48:82:ae:6f:51:b0:b4:a7:63:c0:3f:17:16:8c:b1:66:38:83:
65:f9:fc:40:91:c0:dd:8b:7a:63:f8:7b:98:ef:6b:28:28:d5:
85:7b:45:e4:c7:8b:d9:0e:54:06:48:d9:06:16:59:e6:5a:44:
17:d4:07:51:b1:11:36:6e:34:e1:6d:4c:07:9e:2b:cd:b7:32:
af:5a:53:43:be:90:ea:3e:d9:ff:60:6b:ca:21:d0:96:89:5a:
b7:f5:65:25:cc:b1:b6:dd:a5:af:c7:a6:da:fc:e9:1b:c3:78:
ad:ff:1e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:42:29 2026 by rpki-client