Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: FdbykWgR+isRZPn8qChtaIfAskDM3zH+8aYV4s3Prao=
Subject key identifier: C9:84:C3:32:67:AC:85:23:FA:C6:78:9A:FA:0F:21:97:C6:EB:E7:91
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019D9D3F7A970C51BD6E7E1214F127CBCB02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 0377
Signing time: Fri 17 Apr 2026 21:01:16 +0000
Manifest this update: Fri 17 Apr 2026 21:01:16 +0000
Manifest next update: Sat 18 Apr 2026 21:01:16 +0000
Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: p323Um9XVuVSqweEcP/t5+b7eilJjQGd2t7XDunLpas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:7a:97:0c:51:bd:6e:7e:12:14:f1:27:cb:cb:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Apr 17 21:01:16 2026 GMT
Not After : Apr 18 21:01:16 2026 GMT
Subject: CN=c984c33267ac8523fac6789afa0f2197c6ebe791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9f:a3:57:bb:4f:03:a5:28:c0:f3:4d:de:86:
ce:a2:e7:cf:ee:8e:15:9c:b6:70:d5:ed:52:88:59:
4b:cf:1f:c9:26:6b:9c:3f:7f:e7:cd:ef:ad:4a:9e:
0c:17:17:62:5d:83:f1:b6:f9:c5:8c:d7:92:97:ea:
3b:a7:da:96:f9:34:9e:2c:a2:6d:13:5d:88:1e:59:
3d:3e:c0:ae:88:ae:59:d0:f7:17:f2:22:ed:13:97:
b3:b7:12:1c:0e:7b:c2:c8:cd:da:d0:05:37:49:fe:
27:83:c7:b5:21:5c:99:94:61:3e:12:4e:14:9d:e1:
d7:0c:23:8a:33:be:1b:e6:54:42:a9:08:00:67:5a:
fc:a9:94:4a:05:4a:f4:14:60:9a:4a:0d:2e:0f:e9:
5d:1c:dc:c7:07:aa:a4:5e:8b:62:70:23:f6:61:26:
d5:77:3f:eb:7e:cb:5e:ca:f8:58:0b:da:a9:0e:f8:
5c:4f:1c:5a:50:6c:d8:2d:cf:31:c6:f7:2b:35:0c:
b7:6c:a9:69:26:63:ea:85:12:11:e8:bf:d7:2d:10:
12:46:65:fb:6e:40:8b:8b:17:a1:f3:ff:65:dd:21:
d7:6a:42:47:0f:a3:2c:4a:16:1a:cd:1f:8a:52:5b:
a8:ee:8e:94:8e:14:1f:19:46:22:9d:7c:ee:d9:ff:
f0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:84:C3:32:67:AC:85:23:FA:C6:78:9A:FA:0F:21:97:C6:EB:E7:91
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:0d:ff:91:80:26:ad:2f:e8:d9:bd:6d:44:c7:19:a3:a8:fa:
ac:41:c4:46:04:c7:a2:66:1f:6e:3e:dc:c5:17:9a:81:34:ed:
cc:5b:17:1a:cb:01:98:2b:1d:3e:77:41:08:f9:33:39:c5:87:
67:3d:43:47:24:80:f4:1e:25:24:31:13:b1:fd:68:2c:54:13:
74:d5:40:af:8b:0a:36:a4:84:1e:01:86:c5:53:a1:02:6f:6f:
fb:0c:f7:bb:16:97:3f:57:ed:9b:51:a2:14:3f:1d:ab:71:d2:
56:24:10:c5:98:1a:f8:73:2a:a0:3d:4b:37:54:39:dd:84:42:
6c:bd:39:bf:9f:14:3a:59:5b:0a:01:17:c4:44:3c:75:43:38:
9e:38:0d:0d:e3:8c:cd:f4:8b:3f:7d:4a:ad:c2:54:45:bd:f7:
85:72:5f:88:97:b8:02:9a:9b:68:00:15:96:b4:aa:a8:7f:a0:
5a:70:9e:17:4c:65:3e:38:8c:9c:c0:6b:c8:8e:3a:1a:79:a4:
fc:58:77:00:48:4e:cb:cf:db:12:94:9a:b0:23:b5:77:8b:63:
39:22:dd:2b:5b:06:76:14:3c:c9:54:99:80:bd:64:b6:0b:ba:
22:08:99:f5:40:e2:1c:f4:f5:f8:f0:ce:c1:3f:d9:06:22:d5:
fd:ff:e7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:25:18 2026 by rpki-client