Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
File: iOpSVfiNS5VxicFC-KxWgcUMaKY.mft (raw, json)
Hash identifier: I7sjVtM1tT8W6zYZTDousE/LJ+aPJn0kzIRrHNYMybk=
Subject key identifier: 1F:DD:1C:E7:4F:35:09:1D:54:B6:F0:BA:2A:13:A7:59:9A:32:91:7A
Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Certificate serial: 019CAC1027344EA64461F21A69A761E0591C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
Manifest number: 0ACC
Signing time: Mon 02 Mar 2026 01:01:05 +0000
Manifest this update: Mon 02 Mar 2026 01:01:05 +0000
Manifest next update: Tue 03 Mar 2026 01:01:05 +0000
Files and hashes: 1: iOpSVfiNS5VxicFC-KxWgcUMaKY.crl (hash: 9foPraDjP50BUbmudQ2aDWr4kkCIms6lQ9rkMm6l+KU=)
2: pgGnSHyUvU2MCidf2eDuWrDOeCY.roa (hash: oty+EyubS3vsZNVfWcxWo/GIVhsqz3pi2U3eHoewYe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:27:34:4e:a6:44:61:f2:1a:69:a7:61:e0:59:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Validity
Not Before: Mar 2 01:01:05 2026 GMT
Not After : Mar 3 01:01:05 2026 GMT
Subject: CN=1fdd1ce74f35091d54b6f0ba2a13a7599a32917a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cd:58:d3:e6:c8:23:53:db:b6:0b:44:83:ad:
07:c5:1d:00:b7:c5:10:46:70:e2:f0:f8:95:a9:1f:
dc:59:6c:a2:47:e4:91:c8:85:49:86:2a:3c:32:bf:
bf:c2:ba:5e:b1:8c:9d:56:c1:eb:f3:f1:9b:40:7e:
c0:19:88:e3:c2:29:aa:99:da:56:48:1e:86:65:27:
55:b7:5f:fa:4e:4f:95:96:3a:3e:2d:3c:68:97:9a:
64:2a:46:c2:f9:3e:bb:2b:1c:36:29:58:b3:c6:cc:
a8:87:79:ff:96:76:ad:a6:8a:a5:dd:8e:32:34:ad:
98:7d:fd:41:12:ed:57:2b:0d:f9:f2:83:da:6b:58:
b1:e6:28:25:3d:0b:3a:59:d9:63:75:a8:fe:b8:83:
e9:62:9c:d7:5f:e1:4f:94:16:4b:49:f9:cd:d6:dc:
95:5c:81:4a:5b:dd:7c:4d:7b:6b:c3:7c:e9:cf:77:
40:47:b8:c5:a1:2e:d4:51:2f:87:e9:5c:92:c8:70:
5d:94:f2:ef:d9:c5:11:7e:bb:6b:e9:69:ec:7d:8f:
c4:2c:d7:d0:61:59:28:26:4c:3c:4d:2a:3c:cb:86:
ee:d3:3c:fa:45:2a:28:cf:ac:75:3c:52:43:76:89:
ba:d7:e1:8b:6c:e1:e6:f0:0a:e1:b7:fb:72:5f:c2:
7c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DD:1C:E7:4F:35:09:1D:54:B6:F0:BA:2A:13:A7:59:9A:32:91:7A
X509v3 Authority Key Identifier:
keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:78:72:fb:ce:e8:36:b5:74:c8:e8:df:8d:ed:be:f9:7d:17:
21:d2:a3:1c:10:84:35:10:fe:9b:aa:8b:1f:75:8b:ee:11:54:
88:47:38:06:6e:2f:64:6f:52:1e:2a:dd:39:2b:57:38:b1:3f:
9f:42:6a:7d:9a:05:35:2b:f9:95:c0:89:a4:39:e3:30:e4:88:
b9:87:93:9e:0d:5d:43:26:d9:f1:6b:ae:8c:8e:da:a9:d5:52:
ec:11:a0:d2:d5:ff:ca:b3:e4:a9:9c:c6:a7:18:60:8a:ed:1a:
5d:28:aa:97:67:71:4c:1f:3e:87:a3:16:c4:8d:ca:a5:70:f5:
6b:8d:c9:7f:f6:2a:bf:15:61:53:da:1c:a6:46:98:bf:fc:aa:
17:5c:18:83:70:e1:18:fe:ea:6e:69:8e:b2:bc:6c:28:b4:7e:
e9:38:11:89:99:a4:c2:3b:9d:a9:d5:28:6a:ac:51:1f:0c:3e:
86:54:42:1f:80:41:7f:1c:21:18:39:92:1f:6a:50:b8:46:b1:
ad:e0:e6:f9:a5:62:0b:8e:fd:80:50:7a:e1:87:91:0f:6b:7b:
6e:74:d0:bb:9d:6b:79:9e:80:a2:d6:a4:6b:9e:aa:74:d5:97:
9e:32:09:87:49:37:cd:2e:11:ee:e1:c1:36:ff:a2:62:17:14:
90:10:b3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:46:47 2026 by rpki-client