Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: lo0pXaLRzteq4DZ1fGj72FY1SXXDznfhAuwDKUn3h7g=
Subject key identifier: 0F:BC:D8:73:11:DF:CE:C0:3A:5F:C9:D4:BE:E9:27:AD:96:8A:E1:72
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019D9963095AE84BE5A21CEB73BE168C0598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 12DE
Signing time: Fri 17 Apr 2026 03:01:37 +0000
Manifest this update: Fri 17 Apr 2026 03:01:37 +0000
Manifest next update: Sat 18 Apr 2026 03:01:37 +0000
Files and hashes: 1: 3kj2IZUmhg4c3fn_vDNshjS1bYM.roa (hash: F1j+Rw7AK0w/RfaxR+vC5zwL/WwgyQ05RgO+QAvekpY=)
2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: tqJak9cydMBsPc98eQrldDvwPNZCKSdQIjNN2ypVqNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:09:5a:e8:4b:e5:a2:1c:eb:73:be:16:8c:05:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Apr 17 03:01:37 2026 GMT
Not After : Apr 18 03:01:37 2026 GMT
Subject: CN=0fbcd87311dfcec03a5fc9d4bee927ad968ae172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:90:5f:e8:b3:a0:88:0a:35:80:f0:ec:11:86:
c3:d4:65:08:fc:6c:57:c4:07:09:1f:a6:62:47:96:
7c:5d:d5:81:73:cc:b4:60:1c:c3:0f:b1:da:b2:af:
10:b6:79:a0:b2:e9:96:6b:a7:3b:cb:3e:22:f0:c5:
a5:7c:ea:51:80:b6:fe:36:3a:7f:8f:47:26:3e:6c:
5a:3e:a2:a9:11:a9:5f:e3:5f:3b:de:c4:f3:44:ab:
66:51:02:72:b6:de:f0:af:7e:b6:ac:5e:e6:43:f2:
c3:3f:6d:23:d2:96:2b:59:18:87:a5:cf:f0:0b:ca:
a2:e1:56:9b:25:52:88:d8:80:54:f8:04:be:98:40:
20:d1:9f:f4:75:ca:e3:1f:3a:a4:61:e6:84:07:fa:
e9:88:13:ab:7e:ef:92:9a:05:07:ec:51:bf:15:ff:
62:70:c1:b8:86:89:a0:80:27:d5:19:ef:97:e2:b1:
11:09:4a:2d:41:00:8c:46:93:d8:18:a2:45:22:b3:
4f:fa:cf:be:59:9d:41:5e:5e:3b:1e:7b:b7:00:e1:
c2:ef:6f:06:5e:aa:08:c9:7e:97:1a:dd:12:0e:f9:
37:e7:99:63:82:dd:a6:53:09:5b:63:b4:c9:63:10:
e8:61:a7:85:1b:4d:7e:f8:fc:fe:d2:b0:11:db:bb:
1b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BC:D8:73:11:DF:CE:C0:3A:5F:C9:D4:BE:E9:27:AD:96:8A:E1:72
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:62:e4:e2:58:ef:b5:31:d5:4f:06:83:d5:4d:4b:5b:94:bd:
6f:40:95:1e:13:f6:62:62:44:41:d0:29:dc:a2:93:4c:ed:38:
6f:ed:92:33:a2:f9:e6:d0:61:55:5e:8b:5f:91:cf:96:00:ab:
82:7b:19:d2:07:9a:5b:34:1c:32:8c:bf:99:39:ba:9a:f8:27:
bc:ab:ca:18:c1:81:f1:65:93:a0:85:04:dc:3f:34:65:70:24:
4a:94:4d:0d:31:25:8a:43:60:9a:cd:87:b7:80:1d:6f:b4:ed:
38:c7:c6:ef:6c:86:10:3c:36:e7:ee:ac:5e:8c:eb:34:17:2f:
3a:97:0e:17:2c:10:47:3b:4d:ed:16:7d:ab:12:9d:7f:f9:31:
c1:44:81:9c:47:fe:24:3b:97:e9:0b:d8:9d:f8:80:9d:dd:92:
10:71:b7:40:7e:f9:ba:fd:dc:aa:25:0f:41:ff:55:09:c3:e5:
68:d0:96:fe:b3:a7:f9:be:86:ad:83:c6:0c:34:88:2b:91:30:
c2:71:ea:36:d5:ef:42:3d:0a:d2:04:45:82:84:90:16:49:07:
c0:f7:49:12:cd:0a:12:a8:f5:99:cb:34:cd:95:6a:74:21:e5:
25:80:4c:e6:18:ed:d1:2a:dc:b3:eb:37:19:fb:ff:83:08:74:
0f:7a:42:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:28:28 2026 by rpki-client