Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
File: IAxw024BOwfk5tjsPqTuQTtKqpg.mft (raw, json)
Hash identifier: dTopAuWm6eHQ/KK1O+3NIqZi+Gy8CiNnMbTp87/9yWY=
Subject key identifier: AF:50:A6:15:11:4E:DA:A5:6D:1A:37:2B:34:CC:70:22:C3:8E:2A:83
Authority key identifier: 20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
Certificate issuer: /CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Certificate serial: 019CAAFD839079D3C275D0E79C8F0DF85768
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 20:01:06 +0000
Manifest this update: Sun 01 Mar 2026 20:01:06 +0000
Manifest next update: Mon 02 Mar 2026 20:01:06 +0000
Files and hashes: 1: 2TejQ9qdrUejplvg2pRdV5ySwCU.roa (hash: z2B5UlkMWFYxdzwShhvSwDpIukaDaNgAut2hvjv+b1A=)
2: IAxw024BOwfk5tjsPqTuQTtKqpg.crl (hash: mp5KXgJviAGSe573jhnlz3OSkM5c8wBEgpN3rd7398k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:83:90:79:d3:c2:75:d0:e7:9c:8f:0d:f8:57:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=200c70d36e013b07e4e6d8ec3ea4ee413b4aaa98
Validity
Not Before: Mar 1 20:01:06 2026 GMT
Not After : Mar 2 20:01:06 2026 GMT
Subject: CN=af50a615114edaa56d1a372b34cc7022c38e2a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:74:8c:ae:6d:81:57:49:a1:39:ce:a5:b9:f8:
f6:0f:36:52:49:3a:56:cc:ab:90:1b:fe:a9:08:88:
db:14:5d:cc:72:a6:a7:d0:65:bd:56:bd:bc:bc:ef:
db:0c:e3:b3:d3:eb:f3:49:7d:be:1e:de:fb:b9:3a:
7c:44:69:8d:0e:08:fa:79:63:62:b3:42:5c:ec:77:
a0:f2:d3:e2:0c:91:a9:fc:22:34:7a:ac:ad:34:b2:
91:a8:21:24:56:90:12:e7:f2:52:cd:4e:b5:1c:7a:
5b:9c:e6:d3:c9:23:6f:19:20:4c:96:ef:8a:ab:57:
72:fb:11:56:a3:31:a2:26:2c:2d:02:3e:4a:df:60:
18:97:6c:dd:75:9b:28:b2:b6:d0:a8:90:60:6f:cb:
64:1c:33:ae:4f:cc:c1:4f:c5:47:d9:e2:9b:74:cd:
f9:5f:6c:b0:8b:dc:87:24:7a:9c:6a:39:61:bf:85:
d8:bd:1d:61:36:a7:56:2d:44:f5:59:10:66:99:59:
4e:37:4f:9d:ed:4c:b0:4d:3e:a7:62:a1:2a:9d:cd:
05:6d:e1:cf:8c:c8:ee:71:30:29:55:4b:57:84:33:
97:de:59:bb:0d:e1:30:85:3a:10:a4:ef:19:bb:0b:
02:91:b0:43:88:bf:ab:60:13:ee:39:53:33:ca:09:
ea:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:50:A6:15:11:4E:DA:A5:6D:1A:37:2B:34:CC:70:22:C3:8E:2A:83
X509v3 Authority Key Identifier:
keyid:20:0C:70:D3:6E:01:3B:07:E4:E6:D8:EC:3E:A4:EE:41:3B:4A:AA:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IAxw024BOwfk5tjsPqTuQTtKqpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/d5ee0d-475f-41d7-9c25-15803ffb1746/1/IAxw024BOwfk5tjsPqTuQTtKqpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:5f:66:f0:d2:66:e2:d4:bc:5e:40:2a:5a:de:2f:d8:9c:7c:
2f:d7:f1:b6:44:3e:e1:36:9e:60:df:ed:c0:b6:16:cb:1f:08:
de:63:cf:ae:2a:94:25:16:e2:03:e2:81:6d:eb:d0:bf:a2:c0:
e9:ba:ea:14:d2:c5:f4:e3:68:7d:04:3f:0b:8b:99:63:7c:ab:
03:50:96:b7:d7:b0:3a:b7:fe:d9:9f:25:26:da:93:23:16:ef:
ea:c3:34:0d:a1:c9:33:90:3c:ab:96:83:b7:9f:a7:12:26:2f:
19:63:00:78:ea:21:9c:3d:4c:63:61:8e:2e:45:7e:64:08:00:
8a:ae:6b:f6:ad:e7:ce:4b:0f:0a:06:ec:d2:ff:24:24:0f:f1:
43:28:9a:67:0c:f9:22:eb:60:d1:d8:72:93:2f:e6:d3:55:b3:
30:43:80:db:2a:eb:c9:4d:88:a4:e6:83:1f:37:3e:ba:f1:71:
2f:69:82:93:ac:62:06:ad:f7:23:c0:23:eb:5b:6a:eb:91:4c:
2e:56:96:f4:a1:61:ba:fa:85:07:d5:d1:0d:8b:4d:0e:32:6b:
dc:db:3f:be:6b:ad:bf:db:fa:73:29:bc:49:58:24:1e:ad:b3:
39:5d:ff:26:03:4b:4f:94:ab:60:c5:4f:05:cd:08:df:8f:58:
34:bd:56:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:59 2026 by rpki-client