Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: nuGQ72ShMJtIPp0u8VTzDPx//L5iURTKymJ9EpGsUkc=
Subject key identifier: C0:B4:22:20:8F:6B:A2:E2:13:75:B1:3F:2A:A4:36:88:78:B1:54:14
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019D9BBF2DCF31034ED7E53436FA2AAF5A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 0250
Signing time: Fri 17 Apr 2026 14:01:30 +0000
Manifest this update: Fri 17 Apr 2026 14:01:30 +0000
Manifest next update: Sat 18 Apr 2026 14:01:30 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: WVUnd9t3+Q2GXPrp1ohAUnLyfEn9npsinPXzZVqw3Jk=)
2: TJBNoqDJuDXadUHCaSsBuATOWto.roa (hash: gJS3wY/oZsaAW7+2UEGNOUq9JEb/eTtIedw6FlGOizU=)
3: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:bf:2d:cf:31:03:4e:d7:e5:34:36:fa:2a:af:5a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Apr 17 14:01:30 2026 GMT
Not After : Apr 18 14:01:30 2026 GMT
Subject: CN=c0b422208f6ba2e21375b13f2aa4368878b15414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:39:c9:bc:a4:6b:8d:dd:4d:77:e1:a9:94:
47:c6:a4:e8:bc:83:89:f3:62:e5:93:8a:fc:a0:e5:
1f:20:ca:c6:1e:d0:82:12:5c:9b:04:db:38:35:73:
15:fb:f4:be:02:a1:f4:70:41:e5:82:7e:ca:bb:e7:
5f:33:fb:85:fb:6f:20:6c:d7:7e:27:23:5f:71:8d:
52:93:43:2a:75:60:e6:29:06:81:5d:2d:40:51:a2:
6a:32:b1:df:51:c6:1f:40:98:e0:43:ac:37:5f:12:
62:fd:4f:c0:bd:7d:11:7b:89:52:e3:09:89:df:a9:
34:19:2a:a5:5f:9a:89:23:50:de:d0:0b:94:2c:5f:
8b:75:0b:90:da:7f:6a:a9:e2:30:ac:2a:ca:02:39:
b9:5e:61:8c:54:6d:a7:57:33:0e:78:08:fa:50:57:
35:dd:fd:90:3d:8a:9a:5e:33:3a:57:6b:7a:21:8e:
a1:77:3c:99:97:7f:6a:38:05:b7:25:84:ed:f6:7b:
98:d7:2c:25:c8:76:9c:4f:e8:5b:76:cf:37:8b:bd:
8c:40:47:a4:55:77:ce:0f:73:ae:1e:62:3f:f1:a3:
36:9e:88:ff:68:6b:7e:ca:37:f4:dc:b7:3f:c3:2e:
d4:72:23:ce:f1:5f:47:23:08:c8:71:45:ec:50:b5:
c6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B4:22:20:8F:6B:A2:E2:13:75:B1:3F:2A:A4:36:88:78:B1:54:14
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:99:ac:b0:ce:0f:78:c9:b0:a2:68:7f:48:70:e2:ae:86:15:
54:8f:4c:7b:09:94:00:22:46:ae:1b:54:09:38:1f:4f:73:b1:
b6:76:37:8b:92:41:d2:21:2c:f0:87:db:d7:ea:f3:4d:e1:4c:
b2:ca:4a:a1:3d:79:df:7e:45:a8:71:8d:42:29:32:df:47:23:
9a:55:88:61:97:5a:df:84:bd:27:f8:eb:8e:00:e1:aa:1b:93:
43:2d:0d:67:38:a9:3a:75:c5:f0:2e:d9:0d:9b:87:6d:86:09:
41:03:21:84:71:7b:8e:21:b2:26:67:d9:7f:3d:27:fd:4f:5e:
52:46:07:06:b1:3e:65:76:e3:fe:fd:85:3b:c2:22:33:98:7d:
02:c5:41:81:99:cd:41:2a:c9:9b:a7:f4:6a:55:0e:cd:34:b5:
21:6a:fe:b1:67:62:fc:3b:fa:4f:4d:dc:4f:37:c8:85:45:00:
46:9b:e8:cf:82:af:f2:79:20:3f:df:f2:45:ec:72:60:37:3f:
0b:be:60:f1:f4:41:3a:46:b4:e7:fb:ce:db:63:23:cc:85:12:
68:8c:82:40:11:a6:b7:29:88:81:9f:f5:d3:9a:01:2b:c1:9b:
6c:67:ad:2e:61:bc:3a:63:65:fe:88:59:ab:fa:23:59:0b:94:
d6:f5:c8:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:49:00 2026 by rpki-client