Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: SVU2SazzsqzzpSYxSZrEuu20oo6ebZvi0HKwtTkRBJc=
Subject key identifier: A0:D0:3F:48:23:81:22:30:62:E6:87:E5:A7:87:C7:E0:7C:C8:CC:B2
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019D992B50E635C5BA4AAAF7191CCD1D5E74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 08FE
Signing time: Fri 17 Apr 2026 02:00:45 +0000
Manifest this update: Fri 17 Apr 2026 02:00:45 +0000
Manifest next update: Sat 18 Apr 2026 02:00:45 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: MOE+CLXoMCd3/1ZOsukXU+6q1xk8zdDSHgvLXVzNtFM=)
2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:50:e6:35:c5:ba:4a:aa:f7:19:1c:cd:1d:5e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Apr 17 02:00:45 2026 GMT
Not After : Apr 18 02:00:45 2026 GMT
Subject: CN=a0d03f482381223062e687e5a787c7e07cc8ccb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:39:7f:73:31:0d:e8:85:36:77:5e:b9:3e:
7d:72:54:42:64:27:fe:91:cd:45:8e:90:51:12:54:
90:10:44:52:23:6c:77:9f:c7:aa:49:2f:78:ff:1a:
07:58:7e:02:72:a6:5b:09:07:04:dc:f4:16:71:f5:
e8:f0:44:bd:07:08:69:0e:6d:18:37:03:d8:6a:b0:
ea:e8:7f:80:fb:60:55:fa:87:80:38:5b:5e:8a:98:
22:00:2b:51:53:c5:fd:ff:11:bf:d7:fc:da:b1:3b:
6a:43:b6:3f:25:ee:8f:ab:5d:88:9a:c5:c9:c6:9c:
50:c1:21:9c:f7:48:d6:af:06:ca:39:7e:15:e4:90:
bf:04:80:5c:e3:1a:ee:06:8b:09:f5:b1:cf:d6:9f:
c1:94:a1:6c:5b:8e:84:be:38:17:9a:90:6e:a2:26:
41:dd:ba:08:be:b6:9c:be:18:fe:f9:8e:93:2b:d8:
e8:dd:6a:97:3c:fb:37:2c:42:72:8f:dc:b5:a8:21:
b7:71:10:da:8f:20:45:59:2d:d5:cb:6c:41:49:12:
b3:04:4c:75:7a:7f:ef:cc:3e:6c:dd:93:1c:1b:5f:
53:c8:c4:0c:b9:a1:07:0d:a8:49:97:8f:0f:1e:52:
ed:b9:a0:99:79:fb:f0:95:8a:ac:97:89:c2:3a:16:
40:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D0:3F:48:23:81:22:30:62:E6:87:E5:A7:87:C7:E0:7C:C8:CC:B2
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:83:17:cc:12:05:41:b3:be:0c:0f:fe:5b:dd:7c:91:3a:9b:
0b:91:b1:fb:2c:5c:2a:63:a9:e7:d2:2a:7e:6a:4b:83:90:3d:
dc:08:fe:a8:6b:6b:50:7b:bf:eb:03:ee:c9:6b:73:3a:35:4a:
46:22:c1:45:58:95:93:86:fc:95:1c:bb:b9:41:fb:ce:35:b0:
33:ac:b0:2f:1c:8c:b4:9b:86:17:ad:8f:80:60:98:03:da:39:
c2:b4:27:f9:b6:7e:eb:2f:be:1e:4d:5d:ef:87:37:d1:6a:90:
c8:20:95:95:d1:d7:54:9c:a2:73:65:91:7d:72:4c:b4:bf:a7:
c2:ce:f7:aa:a6:e4:de:cd:c5:6e:8d:a2:6d:1b:db:d3:8d:f0:
e6:e7:68:a1:06:40:33:21:8e:bb:99:e8:96:8c:c8:d1:88:f7:
6b:53:6b:fb:f5:63:01:48:8a:c2:4d:a5:d1:de:7d:4a:dd:0a:
f4:64:bc:36:fa:e8:d6:64:b0:3b:6f:47:b0:d8:a6:e5:4e:64:
60:b3:39:73:b0:a8:51:89:a4:76:1d:25:f5:0d:55:88:53:35:
82:7b:64:e9:c1:cd:17:6f:b7:be:e8:ad:ea:3a:d4:02:1b:7a:
6b:d9:08:ee:73:4a:2c:5a:b4:d4:7e:20:89:28:cf:6b:e9:ad:
a3:42:69:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:48:55 2026 by rpki-client