Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: 2r/YjAu148y0ukzw6iYhaDPJzqMTTVHKTneWv/8xsnI=
Subject key identifier: C5:64:A4:C5:53:A7:71:F0:5A:D4:35:88:38:1B:B3:11:25:FC:4C:ED
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019CA9EB163F3C94EDE019A56F8F1470C0B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 131F
Signing time: Sun 01 Mar 2026 15:01:21 +0000
Manifest this update: Sun 01 Mar 2026 15:01:21 +0000
Manifest next update: Mon 02 Mar 2026 15:01:21 +0000
Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: GWabDNJuJ1Zz5oEJQj/Q7d0nWyf8UJX6gDcj8gqTiJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:16:3f:3c:94:ed:e0:19:a5:6f:8f:14:70:c0:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Mar 1 15:01:21 2026 GMT
Not After : Mar 2 15:01:21 2026 GMT
Subject: CN=c564a4c553a771f05ad43588381bb31125fc4ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0a:e6:e4:4d:35:b2:02:e6:57:14:96:a1:38:
d4:bd:4e:c1:c1:10:d8:c4:81:e6:ae:21:c0:77:ae:
5f:a2:a9:11:f8:40:be:b5:54:9d:05:dd:16:fc:61:
71:8f:2e:81:0b:be:66:29:5c:82:09:db:ba:26:47:
75:69:4a:04:c2:6d:cd:b0:43:76:e0:28:52:38:71:
42:c9:df:1c:57:b0:cd:7e:5b:4d:32:41:b3:d3:44:
58:86:8c:40:47:f3:25:21:62:7a:bb:92:7a:63:8f:
de:eb:8a:12:9a:ab:01:f4:45:3d:41:f3:26:1e:56:
fd:91:7b:a9:28:09:5c:97:22:3c:76:45:79:01:83:
8d:72:0c:5f:b3:d4:ae:74:ef:18:51:52:9f:b6:2c:
f5:49:7b:7c:90:84:0a:1d:e8:2a:78:39:a2:d2:94:
82:46:ae:fe:4e:7c:5e:45:f5:9d:d6:4c:38:e6:be:
97:29:f6:31:50:2c:dd:eb:12:42:95:91:10:84:9d:
23:22:da:14:de:35:9a:b1:32:f2:c1:99:47:46:6b:
3e:e3:e8:35:e5:71:ec:aa:9d:7f:35:b2:a3:7b:eb:
ea:59:5e:bf:b6:7f:1f:4a:6b:05:d6:ea:3b:6d:25:
81:c5:2f:5a:de:35:32:b0:33:ed:00:0d:78:15:df:
05:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:64:A4:C5:53:A7:71:F0:5A:D4:35:88:38:1B:B3:11:25:FC:4C:ED
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:b9:a1:3c:32:62:69:2d:9a:86:b4:f2:42:fc:dd:68:95:37:
89:25:10:0c:fa:a1:04:ea:81:68:bf:c5:4a:7b:6e:30:31:ae:
2c:05:a5:63:c5:10:3a:04:33:c3:0d:6e:44:66:c3:fa:2e:08:
dc:4e:42:03:a8:91:3c:22:ac:fe:29:23:7e:74:b1:01:fe:8f:
25:3a:12:67:ef:cd:9f:c9:01:0e:8e:df:94:53:53:0b:80:01:
11:a3:85:f8:47:53:98:b6:3e:05:73:be:34:d5:88:31:15:a3:
41:61:bd:dc:c2:ce:d8:40:f7:61:79:65:94:7c:50:47:ff:e7:
36:d2:dd:14:a0:05:79:f0:30:39:5c:00:6e:9e:cf:9b:21:73:
a2:51:31:34:1c:e2:3c:e3:00:3f:aa:98:36:09:9a:17:05:0c:
6c:ea:c2:dc:f3:63:93:c5:d2:3c:ba:c3:b0:67:06:c2:3e:97:
1a:c1:8b:5b:92:95:d9:28:e2:dd:f2:39:57:52:5c:78:06:e0:
8f:c4:86:33:32:55:89:a1:8c:3a:29:3a:f5:a8:73:df:2a:ec:
6d:17:14:8d:c7:4e:8e:25:a8:f0:01:f6:fa:b8:23:f5:bc:ab:
5d:87:ef:e1:51:ee:50:0f:70:05:33:b8:96:f7:af:d7:36:90:
30:62:e7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:51:54 2026 by rpki-client