Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File: iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier: 1VgoY6QKDqn6evJN0cqjhvDXBR7Cjv7Ix8vKBXUTv6k=
Subject key identifier: EB:61:9D:BE:57:F5:F7:9E:E6:73:1B:D0:C5:81:0C:97:D8:B6:19:59
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer: /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial: 019CB05B34D6FDFD0D187F562049D87498A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number: 0EE8
Signing time: Mon 02 Mar 2026 21:01:33 +0000
Manifest this update: Mon 02 Mar 2026 21:01:33 +0000
Manifest next update: Tue 03 Mar 2026 21:01:33 +0000
Files and hashes: 1: 1-tufXICD9zpH9q97ukUAVzwwHjE.roa (hash: +wtE5yDBNjZJrgkiWy0XjsbVbjlePoHSNbtSgcMLmc8=)
2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: nUxIoKFaUX8TCugcpMnOwr2o3RGjjSEqzd5Hq95Z8KU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:5b:34:d6:fd:fd:0d:18:7f:56:20:49:d8:74:98:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Validity
Not Before: Mar 2 21:01:33 2026 GMT
Not After : Mar 3 21:01:33 2026 GMT
Subject: CN=eb619dbe57f5f79ee6731bd0c5810c97d8b61959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:25:a3:54:44:82:0e:a3:e3:b9:03:67:3f:f1:
e5:59:4a:52:46:5c:30:40:84:a1:a2:59:4a:e1:eb:
31:2f:a5:c2:4f:b5:c2:c2:0f:76:3e:11:8a:30:6e:
a3:d6:c2:71:ce:c4:d9:f0:3c:b3:7f:41:48:1b:d3:
1b:60:21:8c:ba:3f:5f:4a:f2:ec:f4:fb:56:c0:8d:
cd:48:07:a4:13:7d:5b:86:18:f9:89:64:bd:67:9d:
e3:10:80:f4:20:f6:f0:5a:a3:8e:7e:88:82:8f:9c:
d7:d9:18:c1:05:ab:6a:92:dc:ef:68:d9:27:31:f2:
e8:3c:1e:ce:33:08:08:44:e8:19:84:e1:74:7f:d6:
b4:6b:69:1d:09:bc:2a:cb:f7:00:29:01:c4:02:a9:
16:d4:1a:9a:ae:1d:1a:2e:8a:67:b4:dc:48:f2:0b:
e4:0e:f6:98:b0:f8:8f:4f:69:10:16:86:f0:1f:77:
b7:75:4e:cc:16:42:6b:12:79:02:07:48:76:c9:aa:
21:bb:de:3d:0e:8c:cb:ed:cb:c1:70:08:4f:f1:d1:
d6:dc:3e:fa:d3:0c:71:ab:24:15:19:45:34:13:da:
c3:79:25:0c:bf:ab:75:41:7d:fd:b4:7e:0a:3d:7d:
b4:05:49:1c:86:f5:16:72:b1:64:6a:69:7e:ed:63:
89:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:61:9D:BE:57:F5:F7:9E:E6:73:1B:D0:C5:81:0C:97:D8:B6:19:59
X509v3 Authority Key Identifier:
keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:3d:d0:ea:29:fe:05:83:53:24:9c:e8:e6:b1:cc:1a:5f:08:
b4:db:0e:21:db:d6:51:f7:d6:83:05:2d:d7:a3:2d:e9:33:b3:
38:18:68:1c:7b:4f:2b:23:91:18:d9:17:b3:cb:78:37:18:e7:
1c:9a:5b:ed:bc:ce:ec:37:07:79:20:0c:c1:c7:04:26:6f:df:
59:2e:59:43:9a:e9:44:8f:e0:c2:6f:1e:1e:0c:fc:36:e6:56:
78:ed:55:08:52:da:11:2a:38:48:9a:28:9a:38:4a:f3:d9:bf:
c2:9e:6a:f5:a3:48:59:20:63:be:ed:a3:2a:e9:cc:a6:30:9b:
1c:72:d2:ce:7f:b5:7d:09:03:3d:3a:bc:2b:00:f1:ef:f5:7a:
6f:d6:a4:58:55:40:f4:04:fe:c1:9c:a4:03:69:cf:34:a6:dc:
38:f0:3e:e1:50:b2:e8:31:ac:2a:4d:4a:3f:36:6d:cb:12:d3:
c0:88:28:4f:03:45:5a:be:f8:fd:23:79:69:da:79:b9:e1:88:
8e:ab:c2:44:44:15:4a:2f:a4:11:ce:ac:df:17:2a:38:6e:84:
98:50:92:b0:92:ba:f6:cd:6e:4a:ee:5f:60:ce:10:94:14:d7:
4e:47:43:64:8b:6f:4d:68:d7:3e:21:6f:99:b6:ea:8f:e4:89:
b5:16:84:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZywWzTW/f0NGH9WIEnYdJipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDFmNjczYzZiMGZmODgzNWVhMDJmYWVkYmE1YjQ5Y2Yx
NDIyNGUwHhcNMjYwMzAyMjEwMTMzWhcNMjYwMzAzMjEwMTMzWjAzMTEwLwYDVQQD
EyhlYjYxOWRiZTU3ZjVmNzllZTY3MzFiZDBjNTgxMGM5N2Q4YjYxOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSWjVESCDqPjuQNnP/HlWUpSRlww
QIShollK4esxL6XCT7XCwg92PhGKMG6j1sJxzsTZ8Dyzf0FIG9MbYCGMuj9fSvLs
9PtWwI3NSAekE31bhhj5iWS9Z53jEID0IPbwWqOOfoiCj5zX2RjBBatqktzvaNkn
MfLoPB7OMwgIROgZhOF0f9a0a2kdCbwqy/cAKQHEAqkW1Bqarh0aLopntNxI8gvk
DvaYsPiPT2kQFobwH3e3dU7MFkJrEnkCB0h2yaohu949DozL7cvBcAhP8dHW3D76
0wxxqyQVGUU0E9rDeSUMv6t1QX39tH4KPX20BUkchvUWcrFkaml+7WOJjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOthnb5X9fee5nMb0MWBDJfYthlZMB8GA1UdIwQY
MBaAFIkB9nPGsP+INeoC+u26W0nPFCJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFIMmM4YXdfNGcxNmdMNjdicGJTYzhVSWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jMmJhMTAtMjBlZC00ZThjLWI3NmMt
NTNjNGQ1NzYyZDFhLzEvaVFIMmM4YXdfNGcxNmdMNjdicGJTYzhVSWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9jMmJhMTAtMjBlZC00ZThjLWI3NmMtNTNjNGQ1NzYyZDFh
LzEvaVFIMmM4YXdfNGcxNmdMNjdicGJTYzhVSWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsT3Q6in+
BYNTJJzo5rHMGl8ItNsOIdvWUffWgwUt16Mt6TOzOBhoHHtPKyORGNkXs8t4Nxjn
HJpb7bzO7DcHeSAMwccEJm/fWS5ZQ5rpRI/gwm8eHgz8NuZWeO1VCFLaESo4SJoo
mjhK89m/wp5q9aNIWSBjvu2jKunMpjCbHHLSzn+1fQkDPTq8KwDx7/V6b9akWFVA
9AT+wZykA2nPNKbcOPA+4VCy6DGsKk1KPzZtyxLTwIgoTwNFWr74/SN5adp5ueGI
jqvCREQVSi+kEc6s3xcqOG6EmFCSsJK69s1uSu5fYM4QlBTXTkdDZItvTWjXPiFv
mbbqj+SJtRaEgg==
-----END CERTIFICATE-----
Generated at Tue Mar 3 00:58:26 2026 by rpki-client