Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: SggZ5WYq1KkqxPESAHqOF777fTNqat9UqAry9Ufjejk=
Subject key identifier: 81:5E:E0:BF:1C:04:36:E1:5F:C6:17:25:03:23:03:AD:4A:17:95:2F
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 019D390A0B82EAEDF051BA32D74A6772FD53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 10:00:52 +0000
Manifest this update: Sun 29 Mar 2026 10:00:52 +0000
Manifest next update: Mon 30 Mar 2026 10:00:52 +0000
Files and hashes: 1: FjK0gZzIRFGA1r0HMqyZjh1eSaU.roa (hash: 5jTPa/LgCeRZQvqoHjBqfoQDZ2FKgfEuFxlRAqDizkI=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: gjJrRfSjTSTZwwWoGDjbNNoN6/vWTLCNpe4dkSk9MkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:0b:82:ea:ed:f0:51:ba:32:d7:4a:67:72:fd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Mar 29 10:00:52 2026 GMT
Not After : Mar 30 10:00:52 2026 GMT
Subject: CN=815ee0bf1c0436e15fc61725032303ad4a17952f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:54:8e:c9:cd:40:1b:91:8f:47:10:73:8d:c5:
64:44:a6:0a:43:08:b9:e0:78:47:81:3d:2a:12:dc:
66:58:f7:3d:bb:79:1c:95:19:78:9e:19:4a:9e:58:
c5:04:cf:25:77:e8:03:21:04:eb:74:85:a1:93:6e:
33:ca:3b:12:61:7d:27:c2:78:d4:63:78:8e:72:f5:
50:7b:48:c9:78:0d:29:d8:1f:01:90:bb:fb:3e:a7:
cc:5e:02:9d:5b:09:5d:04:28:f0:03:2c:cc:a4:ff:
59:b2:3c:1d:53:89:a3:7b:ea:c4:00:ac:f2:8a:2f:
88:e8:98:c5:d3:e8:83:2f:52:ee:4a:8a:02:24:92:
bd:cc:b9:27:b6:48:88:d5:ec:08:57:ca:01:9f:7e:
bd:cc:5a:ad:9a:79:56:b8:21:a0:c8:16:0c:18:6d:
2d:75:dd:91:65:5f:35:a3:b6:41:af:a7:3d:75:ed:
1f:00:33:2b:dd:d2:55:78:58:10:d6:c9:54:27:65:
1e:63:d5:6f:e1:f3:a4:49:83:51:ac:34:51:18:59:
a9:95:96:f2:ce:ea:b4:25:ca:70:3a:34:fe:ac:44:
81:88:2d:a9:2d:5b:eb:0f:df:d7:8a:d6:b5:e8:cc:
18:6b:50:44:0d:d4:87:ba:7e:bc:81:a8:a5:70:ec:
ee:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5E:E0:BF:1C:04:36:E1:5F:C6:17:25:03:23:03:AD:4A:17:95:2F
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:61:bd:84:3e:fa:2c:46:1e:00:7d:a8:f8:bc:51:1c:c6:9f:
09:a2:ef:da:12:ab:0e:56:0e:fc:0b:bb:4d:26:20:b7:cc:a6:
9f:c8:eb:85:51:09:d5:03:dd:45:e8:1b:09:bb:1f:7d:9b:29:
36:32:43:85:82:86:a7:30:de:f0:84:36:65:56:af:e5:dc:39:
0f:ba:e3:93:80:e3:85:cf:d3:c9:d1:54:2e:6b:22:32:11:a1:
6f:ff:e5:82:c7:fe:67:7e:38:65:25:f1:be:4c:e4:e9:89:ea:
42:81:57:05:74:f2:42:3f:0e:34:c4:34:6e:8b:d0:9e:18:47:
a1:76:ed:d7:42:1f:aa:9f:f4:2a:e2:f1:bf:9e:63:94:ec:78:
4e:1c:d1:e5:f5:9e:37:8d:bb:82:5c:ed:02:c5:0c:b5:70:d0:
2b:54:67:99:3a:fa:0a:cd:52:d2:5c:29:30:31:c3:58:8f:d0:
4a:b7:3b:19:11:27:58:0d:da:be:1f:b4:ec:d5:88:8b:01:fd:
68:7a:2e:40:ce:5f:fd:08:39:bf:36:d1:7c:27:49:18:7d:5e:
db:6a:98:4e:b8:06:de:a3:56:44:6b:3d:bf:c0:0f:05:6c:6f:
91:a5:4b:ff:51:bd:be:4f:06:06:2e:5c:cd:b1:b7:5b:f6:78:
68:13:14:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:02:18 2026 by rpki-client