Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: pRfq/lMtFN3O1Js2DhGILuIp7M0j4Id2tT/zc69VQ8c=
Subject key identifier: 21:D3:77:2D:F2:EB:E0:E9:6B:43:07:67:22:C5:9F:FC:B8:E8:71:12
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019DA309DF9AEDBBFB6280D4D829F40ED3E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 13A0
Signing time: Sun 19 Apr 2026 00:00:26 +0000
Manifest this update: Sun 19 Apr 2026 00:00:26 +0000
Manifest next update: Mon 20 Apr 2026 00:00:26 +0000
Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: j7oaVGbnfh0IqZYYzb6reF2cypbqykKPDgqGxPNB2yM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:09:df:9a:ed:bb:fb:62:80:d4:d8:29:f4:0e:d3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Apr 19 00:00:26 2026 GMT
Not After : Apr 20 00:00:26 2026 GMT
Subject: CN=21d3772df2ebe0e96b43076722c59ffcb8e87112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f6:df:96:b7:22:3f:39:37:c7:a7:49:d1:5d:
37:2e:8f:23:c6:36:5d:0f:e1:bc:6f:61:32:43:83:
8f:49:d7:0f:88:27:51:0e:51:87:a8:53:17:62:e3:
ef:81:ca:7b:83:a9:e9:d8:74:92:47:f6:38:d7:6a:
77:f2:90:85:b5:11:4a:c6:24:66:e1:59:f7:9f:8b:
3c:03:a1:ca:ee:68:31:b7:07:60:1d:33:d4:06:3f:
7d:58:68:48:ff:a8:31:9b:c3:be:0c:98:94:bb:03:
b3:14:7e:d8:08:9f:d4:2f:31:da:1d:d4:f4:60:5a:
63:94:14:25:f5:87:76:be:23:2f:1a:e1:b6:dd:18:
7d:ae:d1:ad:93:7d:40:d2:15:03:97:3f:bd:83:33:
c3:39:59:e7:d6:89:6d:0a:2e:4b:5c:11:52:53:62:
e7:f1:13:40:60:60:f3:2f:fc:eb:0f:ed:fd:03:c9:
4f:f6:ee:6b:a9:1a:ec:91:32:f2:d5:c5:1c:32:95:
a1:2c:46:26:3b:d2:45:6f:37:67:b1:a8:b5:a6:b4:
08:a9:8e:35:e0:3f:90:05:27:4c:c3:13:00:d1:75:
c6:6e:e0:6e:61:7d:43:c3:55:45:5f:ce:1d:a6:6b:
a5:e0:8c:9a:f4:9a:4a:48:9e:22:b2:0d:06:08:a8:
72:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D3:77:2D:F2:EB:E0:E9:6B:43:07:67:22:C5:9F:FC:B8:E8:71:12
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:88:16:c3:15:5a:8c:78:3e:f4:25:81:ab:e6:5e:fc:75:47:
f1:f2:39:d2:99:5e:98:76:e4:2d:95:d3:35:83:f4:53:40:b1:
92:4a:c1:80:39:86:a2:b4:1a:c8:ac:10:10:8e:ea:ad:c6:2c:
ed:55:62:d1:54:e4:ea:f5:be:7d:7e:94:dc:32:ee:b5:d9:15:
78:c9:7b:9e:17:38:ed:20:82:9c:7e:12:8e:6f:69:d4:c7:6f:
b4:e6:a9:f6:c3:51:2e:83:e8:19:b9:5e:bd:15:11:08:67:aa:
2e:5b:6d:71:39:6d:c2:b0:81:37:07:1f:c4:6f:d5:42:b8:ec:
26:28:04:50:86:f8:61:4a:07:6e:b9:2e:93:8e:be:6e:af:87:
e3:29:77:65:5d:8b:e2:8f:62:2e:d9:98:63:51:14:7f:ca:39:
8f:eb:37:8c:c9:6f:a6:03:ea:92:7b:64:1f:f1:16:dc:e8:0a:
22:4f:bd:83:92:43:ea:0b:ad:78:44:32:a3:2f:e1:c3:51:29:
f7:66:b0:58:8c:10:84:c4:7b:1f:44:f2:f6:47:db:38:06:22:
8d:fc:d8:7a:d0:e8:6c:54:97:2c:30:87:b8:70:11:01:73:93:
8c:5e:51:66:3e:40:ba:ab:8d:cb:f8:55:0a:ee:78:35:8e:bf:
9f:99:fc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:48:28 2026 by rpki-client