Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json)
Hash identifier: LU2Z03JW7IKIXwnknG2pz02q7eCu1KSoiRxDkJDrthE=
Subject key identifier: AD:62:7E:7A:C7:61:B0:98:94:A0:D6:95:2A:1E:73:42:0E:31:85:60
Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918
Certificate serial: 019CABD9113BBB65626968A8185564199607
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 00:00:55 +0000
Manifest this update: Mon 02 Mar 2026 00:00:55 +0000
Manifest next update: Tue 03 Mar 2026 00:00:55 +0000
Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: hRYjoc3NBJr2ASG9AStcPBn6t1z1RfEesE9kjP6e2kY=)
2: tcauu97gqx_3OsWJEyJLtylmmP8.roa (hash: g4WoFZgT3MzcoVX/LXrLBBnWdsRJpBrZA+GD6BcfKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:11:3b:bb:65:62:69:68:a8:18:55:64:19:96:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918
Validity
Not Before: Mar 2 00:00:55 2026 GMT
Not After : Mar 3 00:00:55 2026 GMT
Subject: CN=ad627e7ac761b09894a0d6952a1e73420e318560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:d5:59:a8:5b:e7:08:ea:e9:c7:f8:21:57:
aa:a4:a4:fa:1e:96:ee:89:0c:9c:fd:c4:a7:f0:2b:
dd:13:fb:05:04:2e:ef:ab:60:64:2a:b5:77:75:92:
fb:eb:d1:59:89:94:a6:8e:43:0e:03:39:e9:dc:d4:
4b:aa:3d:87:7a:5a:e0:e5:45:69:1a:24:6d:cb:39:
e2:99:56:e5:fb:16:28:a9:81:3d:5e:45:e0:0b:95:
f1:80:d8:6b:23:d6:31:bb:68:ea:8d:9a:51:6a:a2:
77:39:1a:d3:be:81:94:c4:04:c2:c0:67:f7:c5:e6:
5a:ec:95:6b:d4:c4:12:32:82:6c:2f:3f:51:9d:5f:
bc:a9:11:54:11:40:75:96:15:ea:69:79:1d:ca:d7:
64:73:81:bd:79:f9:11:cc:1f:7f:8d:9b:53:9f:1e:
e8:69:29:4d:d6:28:3a:b2:1f:93:11:ca:11:95:4d:
4e:a7:44:06:f7:d9:10:f5:d9:dd:92:54:61:5b:33:
f5:6c:93:64:2b:e9:6a:d1:df:53:a3:ff:2d:3a:d4:
a0:2c:58:ea:b2:96:df:17:c7:6b:26:93:64:7c:84:
77:11:7f:82:e7:b8:85:40:61:7c:4d:56:b7:9c:34:
04:a2:2b:07:fe:c5:5f:5d:69:07:32:31:95:b1:c5:
a6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:62:7E:7A:C7:61:B0:98:94:A0:D6:95:2A:1E:73:42:0E:31:85:60
X509v3 Authority Key Identifier:
keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:95:55:43:95:5f:3b:7d:72:88:9b:07:f4:c6:92:c3:00:69:
51:b1:f8:c3:20:54:9d:dc:37:a9:40:47:25:30:0f:ea:e0:94:
66:49:7a:e7:96:d2:5d:10:db:3b:6d:c5:e0:0f:05:8d:6f:2a:
29:c0:88:9f:84:7e:aa:47:a8:92:92:21:d3:79:53:83:60:3a:
ae:bb:d4:0e:53:e2:5b:78:d7:8d:ae:06:24:af:88:a5:d9:64:
4a:3d:ee:cc:f3:09:f4:01:e8:e5:2b:f0:67:db:26:3e:26:2d:
e5:70:83:06:30:e4:45:30:03:23:bf:c9:a4:89:68:9c:1a:1a:
b3:0b:fa:fc:27:f5:43:57:1a:a8:fb:17:5e:be:90:c8:ca:53:
28:4b:97:10:6f:fb:96:92:d2:da:92:8d:f2:61:71:a5:c0:a9:
69:43:37:a6:5f:e7:2b:fe:46:02:c7:24:81:68:d0:48:43:34:
a8:c8:b0:ca:dd:ec:88:4a:64:85:6a:45:77:c0:d4:bf:14:56:
26:96:9b:e1:54:a5:4f:a1:28:2d:67:0f:2f:29:40:5d:00:15:
a4:20:a1:fc:91:20:db:a8:41:72:6a:7d:0c:7c:92:ed:a6:41:
63:c3:0a:ff:25:e6:76:31:c7:cc:01:e1:01:5a:01:ed:69:ba:
98:a9:56:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:50:42 2026 by rpki-client