Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: y9KyzWAdD7rkwlw2vFNy4unbExGTIqv3hL5F505xjFI=
Subject key identifier: B8:81:02:31:5B:93:79:32:C9:88:8A:BA:C7:F0:AE:E4:F8:2F:28:1E
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019CA9EB23CEE698998F81D449EB372B2E3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 1262
Signing time: Sun 01 Mar 2026 15:01:25 +0000
Manifest this update: Sun 01 Mar 2026 15:01:25 +0000
Manifest next update: Mon 02 Mar 2026 15:01:25 +0000
Files and hashes: 1: 3kj2IZUmhg4c3fn_vDNshjS1bYM.roa (hash: F1j+Rw7AK0w/RfaxR+vC5zwL/WwgyQ05RgO+QAvekpY=)
2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: CIcczRlS0WusmgtP6/CLAZ8Kv26N1fVghxf0c2CA3ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:23:ce:e6:98:99:8f:81:d4:49:eb:37:2b:2e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Mar 1 15:01:25 2026 GMT
Not After : Mar 2 15:01:25 2026 GMT
Subject: CN=b88102315b937932c9888abac7f0aee4f82f281e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:70:40:83:ad:72:af:d1:db:e3:42:22:3c:
d1:bd:c5:02:33:19:02:bd:0b:bd:b5:21:f7:49:8b:
a1:5b:57:a7:0f:c8:5c:8c:9c:53:0f:44:69:c1:44:
12:7b:24:e7:db:a7:ce:40:3a:78:9d:cb:fd:c4:54:
cf:c9:d5:66:fb:ba:59:93:51:38:03:6a:75:bb:3d:
b0:e9:7b:01:90:50:85:9c:de:f4:c6:cf:65:76:64:
c9:d1:d8:7a:23:31:ab:08:2f:2a:b6:85:d2:72:35:
5b:b2:4c:5f:b9:b1:4c:3e:b5:b1:b7:f8:55:6c:6a:
12:06:5b:43:31:b9:97:b4:80:8b:51:4f:94:3f:ef:
f5:6c:2d:c3:d8:a0:69:36:17:94:3d:53:bf:9c:d1:
a7:6b:a9:b9:e2:ba:83:cb:f0:0c:2e:09:33:9c:f0:
f4:eb:7a:0d:a0:37:43:40:c3:d3:93:f4:3c:6e:57:
93:63:1d:00:b8:ba:4d:38:f0:be:34:3c:5c:29:26:
9f:b7:45:6f:10:9c:22:a4:01:6f:0a:6c:73:c0:2a:
7d:d4:ce:61:0d:39:47:89:a2:7e:a4:38:6c:fd:5a:
ae:46:f3:51:bc:c3:24:1d:3f:88:df:d3:cd:5a:5a:
dd:31:0f:e2:56:b1:e4:ff:2f:16:a5:c0:be:c9:e4:
be:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:81:02:31:5B:93:79:32:C9:88:8A:BA:C7:F0:AE:E4:F8:2F:28:1E
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:bc:ed:37:c0:89:07:a0:6c:28:26:61:91:15:a8:cc:32:fb:
61:6e:0b:67:5b:91:dc:3e:c3:4d:5b:77:fa:ba:a7:e8:4f:57:
2c:36:21:d0:2e:e9:87:7c:eb:6f:41:ab:4f:83:78:12:a7:24:
b7:ce:10:2c:a3:79:3f:5d:18:4e:a8:0d:59:17:ee:11:30:ea:
b5:dc:9b:5b:78:34:1e:7c:93:6c:3c:89:83:71:ec:be:a8:70:
56:1d:86:a5:bf:6c:a9:63:89:8b:a1:b1:66:44:1d:ee:0c:e1:
07:78:34:ef:6d:d0:db:36:f7:ed:3c:97:d4:50:ee:40:52:d4:
65:13:18:ac:83:e5:2a:89:68:8b:a7:c2:25:6d:e6:fc:3a:e9:
0e:e6:8a:37:b3:3f:f4:4a:c5:8c:6f:27:4b:d9:a6:10:17:fd:
65:c2:a5:06:68:ac:b0:7c:5d:d7:2f:97:9d:f2:9d:48:55:2a:
0e:93:7b:1e:f6:8d:e8:c4:37:a4:35:c5:f3:cc:22:c5:8b:53:
d6:1a:cf:c4:36:00:f5:39:ac:c7:ad:d9:7f:85:66:39:b6:79:
23:d2:b9:69:de:68:39:d4:71:39:d2:34:1d:59:7c:5d:d2:9d:
8a:4d:b3:91:2d:0c:91:a2:51:85:67:f6:64:f6:1e:19:de:58:
10:15:f4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:50:50 2026 by rpki-client