Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: p6YleImKbg2NpJ3mTk+JHMtbJmRVp6WErDnPvbYyfW0=
Subject key identifier: 13:0A:08:0D:49:7D:49:F5:99:3A:32:4D:88:5B:04:F5:86:72:BA:F5
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019CAA59366EC4353FE12FAF59541205A393
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 17DA
Signing time: Sun 01 Mar 2026 17:01:39 +0000
Manifest this update: Sun 01 Mar 2026 17:01:39 +0000
Manifest next update: Mon 02 Mar 2026 17:01:39 +0000
Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: LRzstWJ8tGdYfXzqWT88Rkn4BCE/1wjK3ohexYYbVNw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:36:6e:c4:35:3f:e1:2f:af:59:54:12:05:a3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Mar 1 17:01:39 2026 GMT
Not After : Mar 2 17:01:39 2026 GMT
Subject: CN=130a080d497d49f5993a324d885b04f58672baf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:81:a0:29:d5:cd:c0:49:b6:6f:cf:ed:4a:44:
e1:80:95:6b:23:38:79:25:d5:d2:f6:b2:d5:ca:15:
a6:2c:cb:1b:f6:29:7d:9b:fa:e6:b3:c2:f6:4f:f4:
61:c0:fe:9c:25:ec:1d:03:f5:98:25:a9:57:88:a9:
23:a1:c9:fa:61:7a:30:10:81:eb:10:b1:0f:a3:6b:
57:4c:cf:22:a7:cd:33:71:de:33:50:5c:11:a2:65:
0b:e1:80:40:a9:94:28:c8:7a:52:6d:d3:c0:9d:dd:
8d:3c:51:f6:5d:82:e5:a6:3e:ad:61:37:e8:ce:74:
ec:13:54:fe:de:65:39:24:df:6d:3e:07:78:10:41:
6f:56:94:50:77:10:d4:85:91:1e:e9:86:3c:1a:a5:
4e:30:c2:06:96:49:c9:f8:d6:82:74:67:70:e1:1a:
c7:53:82:15:70:dc:1b:d6:b3:9b:b4:09:ad:61:c7:
59:e3:ab:fc:3d:18:85:1d:2e:8b:e5:53:56:e9:b5:
c2:43:e6:80:20:cd:89:68:bf:ca:64:46:b2:df:b8:
c6:0a:c0:89:78:43:99:05:6e:6b:23:2f:c7:49:82:
91:3f:8e:53:25:0c:73:17:79:3b:1d:bf:1d:92:fc:
fd:94:77:ed:38:41:ad:3e:5c:0b:ee:97:05:47:92:
9a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:0A:08:0D:49:7D:49:F5:99:3A:32:4D:88:5B:04:F5:86:72:BA:F5
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:9e:35:42:05:7a:6f:d2:cd:fc:6b:9f:4a:25:ae:1c:f3:f0:
0b:4e:bd:93:6d:c1:47:29:55:1a:9e:5d:a4:71:e6:17:7d:2a:
34:32:57:f8:7c:a4:b8:f8:e7:31:db:32:5e:b1:3f:5a:5f:7d:
be:55:bb:fe:dc:f4:0a:1e:8b:4d:eb:6c:77:10:49:02:85:a1:
af:0f:52:b8:02:07:78:2c:60:3a:e2:2c:6f:73:92:28:0f:c5:
e6:28:51:c8:dd:69:e1:82:f6:a7:05:bd:f1:93:f0:ce:f4:0d:
f4:95:db:c1:ee:f3:10:ae:a2:c1:e9:39:99:f4:d0:ed:95:b5:
c0:54:af:79:95:00:41:4e:2f:4f:0c:ad:37:65:d3:8e:98:81:
a9:3c:26:a9:25:c0:f5:23:9e:45:af:6e:01:bb:68:85:5b:6d:
53:ab:ae:d3:66:12:ba:64:2f:28:bd:0c:7a:4a:26:db:17:a2:
ae:2a:e1:c0:2b:4e:e6:e6:c1:1b:31:74:40:64:4f:4c:cd:e4:
47:60:a1:64:a8:b1:82:c1:30:0d:54:f8:8d:7a:88:c1:c7:3e:
ff:64:50:6a:a1:b7:77:11:c5:1c:52:c7:dd:3b:e5:9b:53:d2:
38:fc:ec:06:6d:e8:1f:94:76:a8:ed:e5:4c:87:b4:7f:d1:fd:
fb:73:1a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:40 2026 by rpki-client