Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: 6VOJQvUbIKskhHuvCnH/GQ0MFK+xkc2w6yfln2Ycnnc=
Subject key identifier: DD:11:A6:8A:01:39:60:74:D8:14:9C:C2:1E:05:89:1A:2F:1A:B7:64
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 019CAD22D684D1156FAEAB4BECDD6C0B4A23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 14E8
Signing time: Mon 02 Mar 2026 06:01:07 +0000
Manifest this update: Mon 02 Mar 2026 06:01:07 +0000
Manifest next update: Tue 03 Mar 2026 06:01:07 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: jwZeA29eggK8OruD7ZPPJZcW7ZALevIfsMC+9RGz/Fc=)
2: hnmnA26xKXY54jFPUcSN_0PAckk.roa (hash: iZnIOMbwxqj7gdSqvCeT/1vFVrhvoJ0Z39/9nmcH68s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:d6:84:d1:15:6f:ae:ab:4b:ec:dd:6c:0b:4a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Mar 2 06:01:07 2026 GMT
Not After : Mar 3 06:01:07 2026 GMT
Subject: CN=dd11a68a01396074d8149cc21e05891a2f1ab764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ca:d4:80:81:ea:fb:31:91:cd:93:ce:af:70:
3c:2d:8d:a4:00:b1:1f:4a:91:24:09:3b:0e:0a:81:
e8:5d:7f:40:ec:86:0f:c4:a1:9a:99:cc:5c:78:83:
85:7a:05:52:9b:e7:76:14:b7:10:c4:8e:43:af:1c:
f6:ae:b0:f1:55:d3:ca:74:d8:2a:07:d1:0d:2b:47:
69:14:41:fd:97:e6:c4:83:35:12:07:4c:7e:0a:41:
bb:ec:51:f1:c4:a9:93:3b:41:3a:7a:66:ca:ed:4f:
23:dd:48:9a:08:63:8a:35:0a:ee:d5:56:0a:e5:6f:
bb:57:83:d3:a4:13:77:6a:eb:30:84:44:44:f2:17:
aa:15:96:81:b3:c7:01:da:30:0f:1d:6d:f2:f2:e3:
32:c3:41:07:13:d6:bf:c6:9c:87:36:f9:e1:18:aa:
e4:34:9c:af:86:25:94:73:46:2e:68:1b:d1:4d:36:
5a:f2:88:9a:0d:d6:c3:05:eb:f9:5f:30:aa:51:55:
93:9f:a9:1f:52:4b:34:5a:79:7e:48:ff:f1:a3:47:
34:d8:f7:39:a0:64:c4:7d:5b:1e:ce:3f:3c:ba:13:
29:ff:2b:63:5f:ac:f5:fa:ea:3c:a6:cc:3a:11:a8:
80:d8:ba:e7:39:48:c6:95:43:bd:9c:2d:42:45:9b:
46:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:11:A6:8A:01:39:60:74:D8:14:9C:C2:1E:05:89:1A:2F:1A:B7:64
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:5c:50:8d:1f:89:d5:fd:a6:1c:ae:08:18:1f:36:2c:b4:8e:
61:5b:b3:f4:2c:25:a9:ec:a7:4c:19:02:ca:14:5b:b4:95:55:
d9:d3:8e:67:d9:c1:8c:aa:b8:1e:7c:26:d2:1f:cd:b6:b2:e4:
31:a9:58:04:92:d1:9f:88:5f:86:db:83:29:68:65:3e:67:f6:
4c:23:1f:ab:24:cd:3d:ec:9d:d5:af:27:44:e3:52:4a:e4:2d:
56:df:53:1a:11:09:f8:b0:e9:7f:3d:61:24:22:84:63:8a:e3:
28:1e:61:c3:c4:4a:ea:85:a6:c3:4a:ce:b2:0e:ef:6d:25:f3:
15:09:5e:c8:90:a4:59:52:dd:08:87:cf:c6:75:5b:3f:31:cf:
b3:9e:0e:c8:1e:90:8c:19:22:62:23:9f:34:18:f0:38:c1:7a:
4b:66:6c:98:21:19:bd:52:bd:e2:18:b6:93:da:0a:9a:60:2a:
f7:11:a5:63:ec:a6:96:75:41:5a:0d:32:8b:8a:ab:f0:f3:09:
86:60:af:ad:b2:b6:5a:21:6d:4a:a6:55:af:37:d3:40:f4:59:
d6:00:f7:9a:51:17:d9:c3:68:67:d7:0f:f7:d7:6e:6f:70:0e:
82:23:27:ed:32:89:8a:f0:62:34:fb:68:72:a3:e1:2b:58:39:
37:1f:31:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:53:01 2026 by rpki-client