Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: aWMPZ4cqdpy3WpZZkjf+7aUYsP0+Sxngd2YUXGoBcxU=
Subject key identifier: 6D:51:2A:68:51:BD:B0:B2:D8:5B:9A:CC:5F:CC:0C:6E:8C:24:95:C4
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019CA9EADAE64B74A8EAACEF8B21BB20EC0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 1145
Signing time: Sun 01 Mar 2026 15:01:06 +0000
Manifest this update: Sun 01 Mar 2026 15:01:06 +0000
Manifest next update: Mon 02 Mar 2026 15:01:06 +0000
Files and hashes: 1: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: Moj2iDmYphkXZuHW2NCTpHH4ZPbUO/2LSitdLyEbL7k=)
2: bnpZWoK19n1XzIl8GBiTgjFaI8E.roa (hash: +AVNEsf0hyxywK+MPw4MlTXuOoeM9Lhba5oG66zfeHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:da:e6:4b:74:a8:ea:ac:ef:8b:21:bb:20:ec:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Mar 1 15:01:06 2026 GMT
Not After : Mar 2 15:01:06 2026 GMT
Subject: CN=6d512a6851bdb0b2d85b9acc5fcc0c6e8c2495c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0e:50:13:15:d0:7b:3c:3b:70:3d:de:89:e3:
11:d0:7f:ba:03:56:9a:62:ed:dc:51:ba:68:88:29:
d9:dd:7e:4c:36:64:73:2d:0a:6e:1c:40:0c:f0:9f:
15:40:74:e0:e2:d3:79:bb:62:4f:bc:cf:58:7a:14:
be:aa:a4:8d:be:38:5b:63:d9:dd:00:ea:77:9d:94:
c7:ad:7d:b3:b3:3a:36:bc:de:71:7d:6c:fe:1f:f8:
ee:d8:c8:e2:11:bf:4b:0f:06:ec:d1:28:5c:91:5a:
7e:93:16:85:fe:6c:6d:e7:71:ea:c6:de:50:e0:61:
b4:5e:82:4f:c0:b8:4c:d0:de:d7:1a:e2:18:2d:3c:
7e:ec:ba:7c:28:cc:73:e0:a7:79:a2:c1:98:03:a0:
ce:31:6d:20:d6:4e:51:92:d2:3b:17:95:88:91:ca:
32:18:30:88:d0:7f:47:a3:7e:c3:ea:2d:6a:80:11:
11:1f:6d:8e:58:29:8d:f7:b4:aa:25:a7:60:bc:fe:
a0:4a:7c:a3:03:fb:58:a4:e4:c5:38:7e:6b:c8:e1:
72:1a:55:c4:63:b6:0a:61:c1:40:b9:85:b1:c4:1a:
99:f2:23:22:ff:9e:54:d6:e6:97:cd:0a:e9:6c:0c:
d6:3c:32:c7:76:20:c2:ca:5f:34:7a:46:c3:99:7c:
2e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:51:2A:68:51:BD:B0:B2:D8:5B:9A:CC:5F:CC:0C:6E:8C:24:95:C4
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:67:e1:40:aa:4e:16:d3:e8:ac:18:0d:28:e8:10:8f:2e:57:
e9:94:73:12:8d:2f:87:00:b2:ce:f8:b4:b9:f6:77:eb:e3:35:
57:63:18:a2:01:9a:16:76:e0:31:20:9a:c4:4b:f7:71:7d:9b:
3f:ab:7e:8c:b4:28:0a:7d:76:ae:2c:31:96:75:59:24:6a:e1:
e5:02:fc:a9:e3:2e:24:19:51:fe:ce:c7:ba:43:5f:12:ba:c4:
c2:f1:f0:9c:40:f6:47:bf:a3:73:e0:1b:27:0e:2c:38:09:e0:
dd:6e:6b:64:e3:c3:43:32:8b:b6:b9:19:97:49:20:f4:08:6e:
e1:98:df:5f:54:f0:00:86:4d:12:e8:82:e3:37:59:54:f6:4f:
d9:8b:93:6f:6a:40:16:56:c6:46:6c:3c:20:52:cc:f9:24:f1:
a8:7c:ea:ff:99:12:a0:62:c6:bc:a1:37:ec:9d:bc:e7:48:5a:
38:f0:f1:42:a6:84:26:9b:13:2f:4e:d5:af:71:11:10:97:b2:
70:d1:87:92:80:d4:24:af:36:36:74:70:f7:4a:77:d2:9f:be:
f0:4b:fc:9d:47:35:2a:85:76:6a:94:bc:a9:10:70:34:a4:eb:
20:95:58:fd:f5:35:0a:a5:ef:a7:93:5a:95:54:cd:84:29:63:
e2:0b:07:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:41:36 2026 by rpki-client