Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: dxPqEB264iJNQWMVbxMsmH51tGuJcnY/5pXShNslWko=
Subject key identifier: 7E:D8:33:77:23:A8:E8:9E:62:C2:84:49:CB:D0:A0:28:62:CA:93:B0
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 019CABD927B961FBCE0DFFE0D149B65A4F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 04DE
Signing time: Mon 02 Mar 2026 00:01:01 +0000
Manifest this update: Mon 02 Mar 2026 00:01:01 +0000
Manifest next update: Tue 03 Mar 2026 00:01:01 +0000
Files and hashes: 1: PatdG5AHcJXdhxLeM5tM5L_BcII.roa (hash: 5h1/nVhqLUoRO6qPdWe0A5C0Fr5YO1aWm/IO1htZdyc=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: svn/lMNkkLVcW5zD8fyLXcphLYqYLdes3TS4lhFQnos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:27:b9:61:fb:ce:0d:ff:e0:d1:49:b6:5a:4f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Mar 2 00:01:01 2026 GMT
Not After : Mar 3 00:01:01 2026 GMT
Subject: CN=7ed8337723a8e89e62c28449cbd0a02862ca93b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a5:05:9d:20:4f:cb:8c:d7:44:87:36:31:21:
67:32:72:98:2c:a8:aa:fc:d0:a0:77:c9:73:1f:e6:
44:fc:6a:7b:35:5f:4d:b3:4d:bd:a0:56:df:b1:af:
42:04:b3:c9:3c:ce:d8:36:b3:70:83:6e:dc:7c:3c:
a4:f7:9a:36:7d:84:00:36:f9:cc:30:4e:c5:85:f7:
1d:fc:56:56:da:92:a4:1e:aa:e2:a1:87:53:17:94:
0d:04:dd:31:ba:d0:68:80:0e:d1:c9:c0:6d:9e:6f:
9d:23:0a:85:84:2f:6d:7d:99:3b:5a:e6:1f:9f:30:
1c:e1:41:45:c6:f3:e9:31:79:88:de:ca:a5:4f:3c:
ec:a6:f5:90:6e:0f:61:b0:5e:7e:07:77:44:c9:b1:
09:dc:68:ba:45:1d:3d:a6:b3:87:c1:5c:b3:05:e9:
62:29:e4:d6:f1:10:df:43:dd:c1:e9:ee:35:09:36:
01:c2:d8:b6:d5:a8:dd:fe:56:bc:e2:24:11:0d:c6:
d5:a3:1e:ad:56:b2:e8:73:74:9a:10:d5:49:79:f4:
c4:4e:9e:0a:4b:a5:56:5d:3f:e1:45:a1:f2:1b:a2:
dc:fc:87:6b:b9:cc:23:d2:65:da:2b:58:84:fb:4f:
40:39:86:84:53:d4:a1:0d:b9:2a:5a:05:f2:10:92:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D8:33:77:23:A8:E8:9E:62:C2:84:49:CB:D0:A0:28:62:CA:93:B0
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:9e:22:de:72:6b:f1:53:a5:e6:ad:83:ed:82:aa:89:14:9e:
a5:b1:79:ec:c9:73:81:fb:19:05:f2:83:95:29:62:8d:1a:4e:
b5:c7:6f:d8:d5:5b:72:3e:ba:78:e3:44:f3:66:d2:dc:3f:69:
b0:e7:60:f0:fe:00:be:32:3f:7e:24:bb:4b:1d:1e:4f:00:4d:
91:60:be:e0:93:aa:32:3d:0a:c0:44:0c:89:5c:14:ce:ab:dd:
59:0c:23:a9:7a:ba:0c:8b:37:80:17:93:ae:55:72:0e:68:97:
67:de:c5:73:14:8b:20:40:a8:5d:bb:03:ca:e2:e5:c8:38:e8:
d8:1f:cb:39:40:fd:26:b4:a9:74:5e:f0:34:5f:07:e5:d4:73:
6f:f0:57:0d:40:1b:52:7c:44:13:77:ef:c7:28:32:c5:aa:5d:
90:ac:7c:d6:ac:1e:b4:23:6a:63:a5:96:21:1c:39:97:a1:d3:
2a:13:c9:57:f2:d1:fc:b1:b6:7d:a7:fe:2b:93:c0:6b:ee:81:
0e:64:81:03:bd:83:5e:9a:71:99:f5:7d:50:1f:e8:dd:a8:af:
98:f9:29:ce:fd:58:31:5f:10:ac:c6:7f:d1:d6:1e:e9:32:00:
78:38:cd:a5:57:e6:91:51:95:2d:0f:16:40:62:6d:39:66:69:
ca:5b:af:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:42:02 2026 by rpki-client