Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: BETL7+bi2Cpg43vy8R984K2beKqTdOKxyiTA+fDGt5o=
Subject key identifier: 4F:9D:D4:EE:AD:97:9B:6D:03:EA:81:76:BF:07:AA:D7:9E:B8:FE:AA
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019CAFB59041FDAFDFA1E0C7E9B1D45A9406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 02FC
Signing time: Mon 02 Mar 2026 18:00:37 +0000
Manifest this update: Mon 02 Mar 2026 18:00:37 +0000
Manifest next update: Tue 03 Mar 2026 18:00:37 +0000
Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: wRWml8KD6eLab3J9ymDGYKalSDxqkXynR+UHVT/TNBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:90:41:fd:af:df:a1:e0:c7:e9:b1:d4:5a:94:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Mar 2 18:00:37 2026 GMT
Not After : Mar 3 18:00:37 2026 GMT
Subject: CN=4f9dd4eead979b6d03ea8176bf07aad79eb8feaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:28:3d:08:1d:a8:52:53:65:ee:7a:00:08:1d:
0d:d8:42:ea:c6:da:65:1d:b1:2d:3a:1d:4d:f1:63:
df:f6:dd:05:b8:c1:9b:f4:e7:3d:ad:72:cf:e9:4d:
b1:dd:4e:20:68:74:01:bd:92:61:f9:fa:d6:b4:2b:
06:4d:58:fe:79:7c:c8:c9:59:fb:9c:77:53:37:4b:
e9:14:4f:95:ff:e0:0c:0c:9b:08:1a:a0:75:c3:60:
28:9a:80:ab:db:ec:1c:79:8f:b2:94:51:8e:d1:5a:
38:53:d7:6b:47:bf:3c:ce:95:a5:73:8d:37:5d:97:
84:9f:ef:a4:62:6d:a0:86:aa:07:cd:6b:ae:dc:0e:
50:00:13:1d:2a:7c:56:8a:74:85:8b:c2:27:cf:2a:
ae:96:f8:e9:81:6a:a5:45:ed:85:29:28:5d:65:78:
a6:ee:57:13:8c:99:68:ac:21:22:e3:62:95:bd:d1:
b6:b3:1a:a0:68:3c:de:35:09:02:cb:1c:fc:66:84:
59:d3:0a:9a:6c:05:d9:2f:a0:8d:3f:14:d8:43:e4:
80:03:ec:d4:c8:95:00:0f:06:54:85:49:3f:3c:06:
ae:cb:d7:d4:2b:b4:92:97:a5:20:59:a5:07:7b:47:
b1:23:b2:ce:b2:90:e8:e6:f0:80:d5:70:f1:fc:f5:
d1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:9D:D4:EE:AD:97:9B:6D:03:EA:81:76:BF:07:AA:D7:9E:B8:FE:AA
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3a:e4:b6:d8:83:a6:e3:d8:6a:a1:82:1b:0a:e6:f7:3b:07:
54:21:c6:44:c4:e4:3d:1f:69:fb:0a:c2:de:16:dc:05:97:a6:
76:4d:0b:8e:97:2a:fb:cc:cf:cf:89:38:f4:4d:af:64:fd:45:
9f:9c:86:4d:51:e0:f0:b7:4d:ba:80:79:4b:86:17:ad:9a:57:
8e:65:cb:5b:b1:57:97:72:b1:92:ec:94:aa:0b:97:2e:0a:4e:
17:9e:34:59:ab:76:d8:0f:ac:70:b7:54:7c:df:01:4c:aa:a6:
a6:69:37:7f:7e:bb:91:98:b4:05:f8:0c:8e:79:e1:a2:6f:14:
20:88:a5:51:3a:13:d8:03:4f:ba:b9:6a:43:39:15:80:e6:4a:
c5:9f:85:dd:f8:06:c5:a5:83:b3:06:ac:2d:a7:a0:27:b8:e4:
90:68:8a:d6:d0:a8:2e:2d:86:5e:ec:6c:d5:a7:87:31:91:3b:
54:33:a0:2f:84:df:bc:48:31:f0:b1:73:57:b1:38:bf:98:0e:
13:02:2a:dd:62:d5:ba:90:f3:3e:f0:ec:c3:9d:13:80:2e:54:
b6:4f:96:c5:fa:ad:69:e1:ac:db:8a:c1:52:26:5e:97:72:85:
fc:be:a3:e6:54:90:0a:4b:1c:13:3d:7f:81:97:62:67:13:a0:
4a:43:c5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:36:27 2026 by rpki-client