Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
File: iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft (raw, json)
Hash identifier: 5BoOKlcSC0R7bVvYfbHnAhabsBtRT/m4p3ckbwMB+/I=
Subject key identifier: B9:DE:FF:F6:55:BC:A1:8D:69:6B:B3:9A:9F:85:12:44:DD:3B:52:4C
Authority key identifier: 89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
Certificate issuer: /CN=897378126f55d96519553daa48e02e3282121644
Certificate serial: 019CAAC6C77CF4FDF7EB37BADF3A0152B79F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
Manifest number: 10A1
Signing time: Sun 01 Mar 2026 19:01:19 +0000
Manifest this update: Sun 01 Mar 2026 19:01:19 +0000
Manifest next update: Mon 02 Mar 2026 19:01:19 +0000
Files and hashes: 1: ea_FcR8oSzWDCeMxrNhO2E40pkI.roa (hash: 5Y4/kc8eZcdfX1i5OXOAX6HvK4BEfWtdSIjWkgc/rvI=)
2: iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl (hash: 4l0dQ2DoFy6Juh+wgQnfjTm57SqJe5D0KwonfxyE09k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:c7:7c:f4:fd:f7:eb:37:ba:df:3a:01:52:b7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897378126f55d96519553daa48e02e3282121644
Validity
Not Before: Mar 1 19:01:19 2026 GMT
Not After : Mar 2 19:01:19 2026 GMT
Subject: CN=b9defff655bca18d696bb39a9f851244dd3b524c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bf:4c:88:54:1e:43:57:4b:2a:13:93:23:c9:
37:04:79:e2:3d:63:7d:a1:85:95:41:e0:12:0c:d0:
99:42:35:9c:d8:76:f3:db:49:0e:14:f2:be:d0:55:
60:91:c8:59:03:91:9c:fa:37:11:06:43:de:ec:cb:
9a:f5:f6:ee:b0:e9:62:cc:e3:fe:32:56:6f:ec:a6:
ee:71:9a:d8:df:d0:f2:8b:6b:24:ac:ff:48:d9:b0:
8a:74:1a:20:25:77:ac:9c:b1:ce:e0:be:6e:18:af:
c3:3c:87:dc:36:a5:e1:ce:06:39:4d:de:58:28:c5:
73:a9:75:b4:2c:cd:f9:27:e5:18:14:a3:02:0a:27:
a7:c4:72:4f:c7:44:74:13:41:fd:84:1f:9d:3d:ed:
8b:c7:df:56:e7:28:1a:07:59:47:f7:b4:68:e5:51:
2f:a1:77:ff:27:5d:d2:ed:2a:93:7d:e0:f9:e2:19:
62:03:be:51:e4:df:39:2d:41:ac:8b:fe:44:40:40:
6b:50:b3:10:bb:6b:48:f4:6d:63:cf:d7:b9:dc:16:
2c:49:bc:1b:f3:c8:10:a5:76:e2:bf:26:d1:fb:d1:
12:d0:90:da:8d:d0:5c:88:fb:5b:6a:3a:db:f7:0e:
d4:5a:c7:67:46:45:6d:83:3b:19:f5:54:c4:f6:cd:
83:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:DE:FF:F6:55:BC:A1:8D:69:6B:B3:9A:9F:85:12:44:DD:3B:52:4C
X509v3 Authority Key Identifier:
keyid:89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:9b:e7:61:1d:43:c0:52:bc:e8:6b:b0:cb:42:12:a0:98:40:
d6:3a:0e:05:e9:4e:cc:bd:bf:99:f8:b4:43:2f:ef:7a:03:b5:
9e:e5:b4:07:c8:0d:39:e5:38:62:2b:7f:dc:62:1e:e8:70:39:
8b:80:ca:17:6c:d2:1f:f4:58:e3:52:c5:fd:91:44:b5:fe:8d:
d4:b8:b7:27:30:08:d8:3b:81:17:cb:ff:0f:af:62:de:e4:5d:
c9:5d:f8:f4:1c:06:21:10:02:35:52:61:e7:49:38:17:13:31:
a9:7f:66:9a:7c:5a:c9:ac:b4:37:b7:8b:3a:cb:cc:11:57:98:
e9:fb:d7:d4:81:98:89:3b:76:82:e9:3e:2e:eb:b7:34:aa:54:
d5:ec:4b:8f:10:1a:6b:ff:19:3a:76:4d:e5:5d:a7:33:c1:7d:
5d:97:8c:65:db:2b:f7:db:50:e3:fd:f3:11:a0:c5:1c:2f:49:
73:f0:60:51:d4:64:d6:e4:4c:ab:8e:20:04:c1:d6:a9:a1:64:
a7:e5:43:1b:88:04:f1:11:f3:e8:60:a8:4d:b9:45:04:e3:85:
aa:9b:da:3e:68:93:d1:5c:f9:38:62:36:56:86:f2:39:ae:e3:
af:fa:13:e1:ad:87:c2:3b:51:8c:f2:18:25:96:ff:c8:5b:cf:
20:c6:24:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:46:43 2026 by rpki-client