Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: yzAz/KF5z83qpICHpVkkaAc3Vhs/3BTzJFyLZvxfRgQ=
Subject key identifier: 0F:62:DA:1A:D2:03:17:C9:6B:E0:27:AF:02:4B:81:B0:75:E8:E8:5F
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019D9A3E629231C8B0184D94753637243293
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0C53
Signing time: Fri 17 Apr 2026 07:01:12 +0000
Manifest this update: Fri 17 Apr 2026 07:01:12 +0000
Manifest next update: Sat 18 Apr 2026 07:01:12 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: oCvy+E5nn4q0qbgXWAZVZz3JDQY+/JHAXvn8CN+cNDM=)
2: xMgS7QD9_G9EOx5x98EDuY-9yGs.roa (hash: hMlsCv6vl96geP53LLF12LxkGDU69mGZggpEWqFm3G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:62:92:31:c8:b0:18:4d:94:75:36:37:24:32:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Apr 17 07:01:12 2026 GMT
Not After : Apr 18 07:01:12 2026 GMT
Subject: CN=0f62da1ad20317c96be027af024b81b075e8e85f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6b:3e:23:74:50:ff:f5:b2:1b:15:a2:50:e6:
68:24:d0:68:b9:e3:d6:70:8e:a6:f4:c2:97:d9:4f:
63:b4:3e:15:d0:41:25:75:cb:d9:92:4b:40:53:b3:
3c:86:74:2f:df:c5:a4:e0:97:1d:47:5f:90:56:4b:
a7:46:48:b1:7b:59:9d:e4:34:e6:ac:fc:c1:44:ab:
09:4c:54:e5:de:cb:5a:ff:a3:2f:99:87:27:68:16:
2c:a3:cb:a5:d7:4b:7e:da:64:c4:27:e9:ab:1d:c8:
8c:0a:29:49:61:6f:a3:21:fd:18:79:e5:06:72:e2:
8a:e7:1c:91:df:f9:a9:fa:94:62:39:bd:e9:4b:42:
46:03:92:75:b8:1a:8d:09:98:b8:08:af:94:7b:af:
0d:5d:d5:87:b5:dd:a8:e8:86:c4:b9:eb:89:1d:b4:
94:16:11:5c:ac:06:ab:e7:e7:78:95:1e:91:bc:81:
68:7c:96:a3:0a:8e:7a:84:bd:98:db:45:28:4e:3a:
90:78:d7:22:88:0e:48:02:ed:e6:93:4d:83:0e:da:
01:92:17:b4:d5:0c:c1:9c:48:77:53:c3:2c:43:cf:
e3:59:59:67:9b:81:9e:59:31:c9:b5:63:91:b6:b4:
92:50:be:92:b8:ff:6e:1d:4a:93:8a:48:5a:77:a6:
16:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:62:DA:1A:D2:03:17:C9:6B:E0:27:AF:02:4B:81:B0:75:E8:E8:5F
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:6a:be:f2:99:d9:0f:2c:a7:34:96:27:78:82:55:3b:00:be:
98:25:3f:91:b5:e0:95:d3:88:84:b3:18:53:2e:9c:3a:ea:f2:
05:49:23:93:50:93:32:c3:55:25:ff:46:8a:f7:f5:93:b5:b7:
73:fd:00:a2:5b:d8:8e:3c:bb:1f:0c:40:21:75:41:40:df:87:
d4:e4:12:7f:a3:f5:51:4d:9a:88:01:75:2f:af:aa:62:63:5d:
ca:e3:62:39:53:85:c1:d7:61:80:d2:e9:69:ae:bd:0b:b5:27:
fa:a7:97:19:ae:0d:04:2b:f9:82:73:f7:ef:a1:7b:be:27:37:
57:6d:05:3e:43:59:87:95:00:37:fb:37:04:82:10:2a:cb:4f:
da:e6:fd:f5:65:41:62:07:2f:3a:fe:5d:d7:39:c0:5b:cb:aa:
f3:49:8d:d8:c3:3f:48:6d:b7:58:a0:85:5b:92:09:96:e0:d9:
c4:bf:4d:c6:7a:cb:10:46:90:43:3d:33:07:2e:3e:f3:1e:e0:
ec:d0:b4:46:d6:c2:ea:5b:06:52:f2:92:bd:e3:fe:06:cf:37:
37:53:cc:73:1c:35:66:0a:bd:01:a7:80:79:4e:1e:58:48:47:
9a:f2:7d:41:0b:bc:4a:5f:cd:29:82:a0:4a:a9:78:c6:2c:1e:
ad:10:3e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:43:00 2026 by rpki-client