Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: l3CKmSlFew9aiGxUCdeDE6sagLzlGO/FyqDIUHGy5/k=
Subject key identifier: 79:79:0D:13:6D:76:3B:D0:14:E4:53:E8:2D:75:66:51:63:3D:07:02
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 019D3A1CE4C0A2D17F28AB09E1F784822A63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 1452
Signing time: Sun 29 Mar 2026 15:01:05 +0000
Manifest this update: Sun 29 Mar 2026 15:01:05 +0000
Manifest next update: Mon 30 Mar 2026 15:01:05 +0000
Files and hashes: 1: 7O5GfirPqz8Z-l1UI_YHQO7lQh4.roa (hash: tzbY87wDHF363K7TSFpJw4yb7j/fVIJaQ3EDQVJafo4=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: GF4L9AAkJbMfK8OEHxBCoBzoo2KkR9xYskavHa4Hs4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:e4:c0:a2:d1:7f:28:ab:09:e1:f7:84:82:2a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Mar 29 15:01:05 2026 GMT
Not After : Mar 30 15:01:05 2026 GMT
Subject: CN=79790d136d763bd014e453e82d756651633d0702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fd:5b:f2:69:e1:35:06:44:81:05:87:24:93:
8c:0d:90:3a:cf:89:f4:63:00:d3:30:0a:a7:ab:e7:
3c:f3:3a:eb:93:e0:c2:7f:91:b0:c7:d3:b4:7c:48:
e6:75:5d:f1:2a:7d:db:d5:fb:53:53:e1:31:53:63:
64:8a:f9:88:03:ef:fb:59:c3:e6:b2:36:1d:0b:99:
f5:00:a9:9c:01:8a:c3:8c:77:f2:aa:e4:ea:62:1c:
9f:e2:c1:87:12:86:ac:69:d9:9a:89:80:be:e7:50:
09:a0:00:5f:7c:31:86:60:53:c3:28:a8:26:d3:6d:
26:c9:23:fb:96:5e:09:d5:02:6c:75:43:ad:13:47:
3d:e9:8b:34:7a:57:2a:c2:7a:67:c5:3e:f1:d2:17:
cd:11:e6:e0:88:01:1e:8e:ce:8c:3f:d0:f8:2e:d2:
fe:aa:90:e8:99:30:a2:ab:4d:ad:4c:ad:d2:b5:dd:
ef:9f:a8:15:cc:2a:b2:ee:4a:2b:05:02:5d:1b:a4:
0c:39:9e:ff:12:85:a6:ea:ea:27:cc:96:16:d3:e5:
f1:69:94:a5:e7:94:2c:1c:1b:45:72:d2:d8:f0:9a:
7a:4a:0b:b4:d8:54:a8:61:98:53:37:99:60:e2:2b:
76:e2:86:0f:4c:9f:e0:09:19:be:b9:5b:60:49:33:
59:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:79:0D:13:6D:76:3B:D0:14:E4:53:E8:2D:75:66:51:63:3D:07:02
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:79:74:d9:bc:13:d2:94:8b:1a:c4:b7:f8:f5:82:f4:df:08:
df:d7:ae:0b:ee:08:4b:e3:63:42:50:01:53:81:40:78:e1:60:
18:1f:4f:44:46:ac:5a:a5:ab:15:29:3d:c8:b3:af:47:eb:39:
04:34:9e:f4:84:9b:9b:32:a4:24:a8:79:c2:66:f8:99:a8:b8:
2f:e2:b2:db:73:a5:33:e0:2b:88:a8:28:b1:bf:6e:af:31:6c:
38:e8:33:fc:ee:28:53:3a:ab:c6:92:8c:06:b3:82:52:4b:31:
2b:00:a8:82:f6:db:af:7a:91:eb:e7:89:03:9f:f8:2d:96:8a:
c5:d0:a3:94:20:f3:26:d7:25:67:fa:28:68:e6:59:3a:bf:04:
58:a3:c4:70:68:dd:d1:fb:25:af:2a:4e:35:7e:69:1b:76:db:
25:01:a1:c3:e4:72:e2:75:57:eb:e3:dd:5e:8a:06:c3:f5:ae:
e1:9b:21:34:15:a9:69:3d:0b:f6:9b:b4:74:9f:39:f5:5a:a3:
92:f9:29:70:77:cb:c4:07:a4:31:af:23:5d:cf:0c:27:b9:b9:
79:f7:a3:56:79:f3:2e:fc:d2:e3:4e:3f:6c:57:a1:8f:0f:58:
84:cf:fe:13:4c:b7:cd:85:c8:d0:36:be:c7:8d:3d:19:49:f5:
eb:9b:04:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:28 2026 by rpki-client