Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json)
Hash identifier: QBkNUWjFXWtYOxbtj27mjsBSNVJSGJv8TukxgvA6kis=
Subject key identifier: 17:50:80:43:A0:A9:18:9B:43:0B:7D:E2:DF:05:BB:E5:E7:E4:41:FB
Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Certificate serial: 019CACB4AFC1DC00EFD8066CEF05271B50F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
Manifest number: 1851
Signing time: Mon 02 Mar 2026 04:00:48 +0000
Manifest this update: Mon 02 Mar 2026 04:00:48 +0000
Manifest next update: Tue 03 Mar 2026 04:00:48 +0000
Files and hashes: 1: QACcx3bmkYq5FVm71dmit53bn4Q.roa (hash: oQ/m7QfRfNheRWfUqid3dTy2xJX9VnnT62jOhchvHuk=)
2: gux-IxdkibcThQl39PWiMsakK0g.roa (hash: xADBPDkQYtVHScAVn2k1rTwtjm/TxC5Y/n4oo7GBk1E=)
3: jpvZw7M6HWfeaPP7BBGWUfnUPW8.roa (hash: m69AM/qWHvVH8vQjk7f2bA/DtDMk2TIVp7SRlmCI4co=)
4: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: UMuhEbYGwqGfIWAzMc3V1Y1a8IncEod0KZvjg4a+5xE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:af:c1:dc:00:ef:d8:06:6c:ef:05:27:1b:50:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5
Validity
Not Before: Mar 2 04:00:48 2026 GMT
Not After : Mar 3 04:00:48 2026 GMT
Subject: CN=17508043a0a9189b430b7de2df05bbe5e7e441fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:18:69:3e:d8:4c:2c:cd:25:00:31:b2:49:89:
c6:54:18:a1:07:51:5f:d6:2a:05:50:cc:d3:a7:a7:
ba:89:a4:48:96:86:3b:6d:f5:f8:39:05:67:f8:ed:
25:9f:9d:ac:a7:a6:df:1e:e3:7b:e3:a3:6a:c5:3c:
4a:e9:48:1a:cb:3e:84:94:b6:e1:d8:86:53:76:d6:
e1:b2:e4:05:8d:24:de:cb:a3:c6:2a:da:c6:18:5c:
11:9d:ad:d0:52:e1:86:1b:ed:89:e8:fe:f5:71:8d:
36:7d:b2:1a:66:a0:c3:81:52:8c:3c:ff:92:9b:a3:
02:e8:97:35:ae:0a:50:6e:c8:66:6a:21:1a:f1:9b:
e9:80:49:da:aa:cb:75:f8:97:5e:3c:d3:c3:4e:ae:
83:ba:58:ce:ea:92:81:db:6b:3e:22:58:fe:75:3a:
09:67:91:87:05:b8:dc:db:67:26:f4:18:d2:8d:2e:
b0:c6:28:56:d1:d7:9a:5c:0d:ce:5c:d6:11:90:25:
a9:47:fa:71:b5:a5:38:70:68:f3:2f:f0:95:85:6a:
e1:00:d0:23:f6:08:7e:8e:b4:34:f2:4d:3f:9b:ba:
71:45:ab:45:8d:e5:b9:ed:29:be:89:05:4f:5b:f0:
4f:a3:35:b9:f6:9d:b4:df:ff:61:9e:1b:97:53:21:
08:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:50:80:43:A0:A9:18:9B:43:0B:7D:E2:DF:05:BB:E5:E7:E4:41:FB
X509v3 Authority Key Identifier:
keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:96:a3:3c:be:d0:d4:d6:af:e3:bc:27:0a:51:b8:aa:71:24:
83:cc:d9:8a:0b:53:65:22:81:4a:5f:03:00:e7:c8:6e:e6:04:
34:07:82:be:ce:3c:74:67:b6:f2:40:d1:dd:1c:75:f4:f3:98:
f4:8e:bb:74:b3:0b:4f:e9:28:59:2c:b4:02:8f:14:45:3e:fc:
c8:66:45:ad:2f:f9:3e:ff:6f:fc:e2:cc:93:8b:49:6f:08:1d:
cb:95:d5:03:02:04:3c:cc:44:1b:34:01:38:99:dd:c5:e5:25:
4e:fa:bf:d7:52:98:f4:34:25:9f:48:07:2f:4e:0f:bd:d7:77:
45:58:fd:92:f1:9c:c7:d3:e7:f2:de:7a:f8:11:d3:19:2e:9f:
20:90:cb:c6:4c:14:dc:d4:5e:d5:c0:b4:a3:94:e4:e6:3a:c9:
16:e8:23:3d:c8:ca:e3:32:2d:82:7b:79:2b:f3:a8:34:f8:8d:
2d:65:28:74:61:24:07:e6:ef:df:27:0d:38:a6:f9:13:01:44:
81:91:15:03:c7:c4:3e:fe:20:f0:0d:8d:06:ec:6f:12:3d:d7:
51:ae:14:b0:58:1f:c1:2c:55:2e:bb:11:9c:5d:38:45:14:1e:
c1:d8:3d:4b:d3:f2:8f:c2:87:d4:fb:cf:03:bb:51:b4:1a:2d:
6a:03:ff:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystK/B3ADv2AZs7wUnG1D4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjOGEwZTBiMWIyMWYwOTMzMzNjMDc0ODE0NWIxNjI4NDE4
Y2YyYjUwHhcNMjYwMzAyMDQwMDQ4WhcNMjYwMzAzMDQwMDQ4WjAzMTEwLwYDVQQD
EygxNzUwODA0M2EwYTkxODliNDMwYjdkZTJkZjA1YmJlNWU3ZTQ0MWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBhpPthMLM0lADGySYnGVBihB1Ff
1ioFUMzTp6e6iaRIloY7bfX4OQVn+O0ln52sp6bfHuN746NqxTxK6Ugayz6ElLbh
2IZTdtbhsuQFjSTey6PGKtrGGFwRna3QUuGGG+2J6P71cY02fbIaZqDDgVKMPP+S
m6MC6Jc1rgpQbshmaiEa8ZvpgEnaqst1+JdePNPDTq6DuljO6pKB22s+Ilj+dToJ
Z5GHBbjc22cm9BjSjS6wxihW0deaXA3OXNYRkCWpR/pxtaU4cGjzL/CVhWrhANAj
9gh+jrQ08k0/m7pxRatFjeW57Sm+iQVPW/BPozW59p203/9hnhuXUyEIxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBdQgEOgqRibQwt94t8Fu+Xn5EH7MB8GA1UdIwQY
MBaAFKyKDgsbIfCTMzwHSBRbFihBjPK1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMt
ZGI4ZWZmMWIxMWEwLzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMtZGI4ZWZmMWIxMWEw
LzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFJajPL7Q
1Nav47wnClG4qnEkg8zZigtTZSKBSl8DAOfIbuYENAeCvs48dGe28kDR3Rx19POY
9I67dLMLT+koWSy0Ao8URT78yGZFrS/5Pv9v/OLMk4tJbwgdy5XVAwIEPMxEGzQB
OJndxeUlTvq/11KY9DQln0gHL04Pvdd3RVj9kvGcx9Pn8t56+BHTGS6fIJDLxkwU
3NRe1cC0o5Tk5jrJFugjPcjK4zItgnt5K/OoNPiNLWUodGEkB+bv3ycNOKb5EwFE
gZEVA8fEPv4g8A2NBuxvEj3XUa4UsFgfwSxVLrsRnF04RRQewdg9S9Pyj8KH1PvP
A7tRtBotagP/YQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:06:58 2026 by rpki-client