Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: 1D7Xy3LvQeK2dMW9AxbmvFxf2T3oVNkfmCdf4T08DkM=
Subject key identifier: 89:35:3C:0E:22:2B:1A:07:26:86:A8:CE:41:4C:3E:F2:80:84:3E:07
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019D99D07F7F4A5D48DA70DDAEFE528A6779
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1856
Signing time: Fri 17 Apr 2026 05:01:11 +0000
Manifest this update: Fri 17 Apr 2026 05:01:11 +0000
Manifest next update: Sat 18 Apr 2026 05:01:11 +0000
Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: OQIqLHAep2mGuE5C9nSFUuR8pDvpyuCpxMUbDmHbyDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:7f:7f:4a:5d:48:da:70:dd:ae:fe:52:8a:67:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Apr 17 05:01:11 2026 GMT
Not After : Apr 18 05:01:11 2026 GMT
Subject: CN=89353c0e222b1a072686a8ce414c3ef280843e07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:b1:8a:ea:af:c8:7d:67:17:ad:14:fe:cb:
15:16:a9:67:84:3a:43:53:49:a9:ec:87:f8:10:58:
e1:27:12:a6:a3:9a:73:62:62:38:ac:61:fc:c5:0e:
a4:aa:f6:0f:1f:e9:44:85:ed:43:cf:e4:ce:02:56:
eb:a3:5c:a7:28:e8:3e:3d:9f:41:ae:3d:55:cb:23:
54:f4:b3:aa:69:ac:31:b0:95:00:e9:53:5f:95:0f:
fd:6a:17:65:58:5e:31:c6:90:18:93:c9:5c:47:ca:
8f:bd:6a:c5:36:07:e9:c4:87:64:02:14:7f:47:ca:
5c:f4:b9:c3:25:68:76:db:6b:51:7a:aa:ad:5b:87:
fd:de:a6:bd:6b:ee:62:9f:d5:62:55:12:7c:d5:99:
19:44:e3:dd:c1:09:fc:fb:19:5a:12:23:dd:d0:1d:
89:c3:77:8b:81:12:20:68:fe:52:46:a6:28:03:c8:
05:ff:37:51:21:dc:2f:45:14:86:6b:02:19:45:f8:
15:ac:79:ff:26:f8:57:e7:96:1f:0e:ba:c7:f1:64:
f5:54:14:fb:5a:52:7b:a9:ac:9c:ac:80:2d:da:1f:
9d:6e:26:3b:e7:bc:2a:dd:14:b7:2b:4a:00:a3:82:
2b:18:fc:11:04:3c:74:8a:7f:56:d2:ec:e5:e8:f4:
89:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:35:3C:0E:22:2B:1A:07:26:86:A8:CE:41:4C:3E:F2:80:84:3E:07
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:03:6f:60:87:7e:c7:48:ca:66:b2:8a:e1:e5:70:48:dd:ba:
5d:40:87:b3:75:1f:82:dd:75:77:9b:b3:cc:e0:ec:f1:e2:bc:
40:b9:c0:92:3b:fe:97:1d:b8:49:a1:a4:dd:d2:03:dd:9b:41:
cd:fd:86:85:24:1d:74:a0:cd:39:4c:60:25:4d:78:ee:f0:f7:
af:c4:b9:59:a9:29:2a:31:1c:89:10:32:35:4e:54:bf:06:e3:
b9:c3:6e:1b:9a:79:2b:cd:b7:03:6f:ad:65:97:a8:ce:3e:0c:
d4:37:ed:5f:ac:a4:85:17:67:3f:58:7e:7e:9e:b4:ef:95:09:
2e:aa:48:d2:dc:0d:d7:99:d0:11:78:52:e8:3a:3b:a8:f1:f8:
e7:71:e4:96:21:79:9f:b1:2c:86:a8:c3:25:f9:d0:ef:c0:e7:
ea:cc:0a:7d:00:1a:df:e3:75:ad:93:db:5c:20:da:ea:f4:90:
e9:a7:5e:b4:c8:56:58:12:ea:0a:5a:ed:5f:8f:93:24:ad:06:
1f:70:19:45:57:f9:09:6a:16:32:2c:62:0e:af:68:02:37:30:
28:f9:9e:ad:da:c0:4a:7e:b4:da:17:ce:06:b8:c4:ed:c0:df:
23:83:27:4e:b7:da:8a:92:fb:4a:ee:1f:53:9a:5e:53:bd:d6:
c2:2a:22:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:07:55 2026 by rpki-client