Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: lqr14xpzQkxb+Rkh22fTl590im9SLwWxonHbD5pqt3k=
Subject key identifier: D2:54:73:49:9B:4E:D7:58:D5:C0:ED:A9:DD:74:6B:C6:DC:26:BD:6A
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 019CAC46CB40F2BAA43B3AFF784B908F6693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 02:00:46 +0000
Manifest this update: Mon 02 Mar 2026 02:00:46 +0000
Manifest next update: Tue 03 Mar 2026 02:00:46 +0000
Files and hashes: 1: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: YBOJYKW8YgjzSk+dh10+i99c1NJO4PR4xmx9xJIPVd4=)
2: ToOm_DRG8L881LK0bTvQrJEi9zE.roa (hash: DCNqoXRqfdwODxjtc8J2/AVxGOKRF24UDLD2fHtc4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:cb:40:f2:ba:a4:3b:3a:ff:78:4b:90:8f:66:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Mar 2 02:00:46 2026 GMT
Not After : Mar 3 02:00:46 2026 GMT
Subject: CN=d25473499b4ed758d5c0eda9dd746bc6dc26bd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3c:0a:aa:14:f4:a7:2f:ac:37:33:02:8e:b8:
e9:cd:7a:71:40:8f:07:98:5f:86:99:d5:a3:5c:08:
88:db:6c:98:10:ff:5a:98:b8:8f:7a:4e:0a:fd:46:
4e:6c:34:40:6d:bc:b3:de:0f:bd:c5:c6:12:61:c0:
43:7c:b2:af:1c:ac:82:36:ec:64:5c:f8:13:31:1a:
21:05:0c:2b:b7:bf:74:46:1d:f0:da:05:33:a2:26:
60:2e:d5:ea:df:e3:1c:aa:ba:49:65:7f:1e:60:8c:
2d:5e:b4:3c:df:3d:a4:71:af:e3:6f:2f:de:a6:29:
c2:20:c6:4e:6b:ea:05:1d:fc:fa:c3:da:dc:5d:27:
d0:b5:87:9f:23:ae:3c:aa:ed:94:f4:58:d6:12:0a:
45:01:58:d2:a6:f9:c6:0b:12:38:a7:39:c6:b2:bd:
10:d7:95:1d:d0:97:34:5b:5a:81:33:9c:e6:1a:4b:
49:0f:39:ca:1a:cb:8d:cf:f0:19:a1:90:59:4f:e6:
4e:c0:9c:03:d2:3f:bc:60:cd:d8:80:2f:be:23:2c:
d3:c3:6b:d9:d0:e7:e5:94:80:4e:66:17:35:b6:6c:
5d:2a:d3:32:bc:f4:88:3f:05:78:f1:1e:83:5c:f5:
bb:95:86:48:de:d2:e6:f9:43:2a:d1:c7:68:e3:88:
2e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:54:73:49:9B:4E:D7:58:D5:C0:ED:A9:DD:74:6B:C6:DC:26:BD:6A
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:57:4f:cd:56:d2:cf:fa:e1:84:15:ce:0b:ef:31:64:b4:85:
70:e0:01:c8:af:1f:5d:ac:35:54:90:56:dc:b1:75:7c:fb:c8:
93:83:99:a9:2f:cd:7c:f1:9c:d9:5a:22:37:80:d8:c0:67:e2:
cf:b2:37:f9:43:20:bb:85:fb:fc:2e:3c:65:d8:0d:f9:57:d9:
ae:37:40:c4:83:82:cd:ee:99:0b:a6:7c:af:20:df:61:9e:ac:
13:49:f4:21:ed:27:0d:2c:19:18:97:ec:92:f0:9d:2a:69:53:
d0:b8:3e:0c:52:37:47:2b:d6:72:97:a8:c4:42:31:34:e0:e4:
0b:64:6e:7f:36:47:95:b3:27:39:5c:94:03:11:18:ae:2b:1c:
34:95:bb:d4:26:60:7a:e4:11:56:ed:19:11:a5:c7:a9:c8:48:
61:bb:ed:90:ca:f4:ec:5b:3b:0d:4b:fb:a2:90:6d:f8:87:b2:
b2:fd:a4:71:e9:ee:bb:13:b6:31:e3:fa:0d:c3:86:cf:da:11:
33:e4:7b:bf:3c:0a:09:f0:fe:49:22:3e:ef:82:46:d4:4f:67:
f8:cf:6c:f4:4c:6e:6f:4c:a5:b5:f5:4c:67:b2:5f:95:f0:c1:
3a:fe:85:0e:f6:ea:fe:83:cd:f2:45:89:64:d5:3c:f6:06:b2:
f5:63:82:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:51:52 2026 by rpki-client