Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: YfaoRvTUc6r5NUDJFSuN+765rJfgR4GWYd4sb+uzvpk=
Subject key identifier: 4C:91:EB:18:A0:44:34:E8:94:DD:10:68:7F:0E:A4:33:49:51:9C:83
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 019D3A1D0C4B81613B5A0BA614FDFB1A65D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 11F9
Signing time: Sun 29 Mar 2026 15:01:15 +0000
Manifest this update: Sun 29 Mar 2026 15:01:15 +0000
Manifest next update: Mon 30 Mar 2026 15:01:15 +0000
Files and hashes: 1: bNXclAMIg3T6s2Uoz_EnoMHtGpo.roa (hash: ZMo0HqpRxUY5NsvyrYlzQ++ahmncMXJuDazn/I+//9I=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: KZc4uRIAPnVLF5P0NAiMCAqzTHf/Jg9nQXfvFQFzPU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1d:0c:4b:81:61:3b:5a:0b:a6:14:fd:fb:1a:65:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Mar 29 15:01:15 2026 GMT
Not After : Mar 30 15:01:15 2026 GMT
Subject: CN=4c91eb18a04434e894dd10687f0ea43349519c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6a:eb:5f:57:b5:f9:a9:6a:45:b6:42:8f:76:
a9:d7:a7:f7:4d:d8:26:af:dd:c1:74:67:0f:d0:c4:
66:0c:30:71:30:87:f3:ff:55:ec:f3:ae:a0:17:5b:
bd:29:2a:fb:fe:5d:15:00:27:c1:77:a2:c9:ba:3a:
26:bc:fc:87:3b:25:66:0f:c8:a4:46:60:64:92:95:
0d:de:ae:72:bf:c7:43:72:87:66:ba:87:1c:56:0a:
2d:13:d2:5d:53:34:2f:d0:84:4f:92:71:b0:6b:f0:
1d:cb:aa:b0:fa:8f:ed:11:05:48:39:4c:27:87:60:
80:c2:53:8b:fc:fe:1c:c3:3e:9f:00:97:8d:60:6c:
81:78:20:ba:7a:0f:c1:13:4b:e1:24:b9:65:29:b2:
40:01:76:9e:de:dd:68:2b:5b:75:62:64:73:b8:cb:
a4:bd:f3:ac:e4:ed:4b:13:4c:0f:9b:02:9a:f4:58:
eb:0e:6c:a9:a3:47:39:6c:46:21:0f:83:58:04:20:
4f:cf:18:b9:e3:39:93:98:c4:11:c4:b1:5a:32:c4:
ad:7e:ac:31:a9:6a:42:47:61:29:6f:04:2e:d3:9e:
d2:db:f6:7e:6e:51:29:3e:1f:ac:ff:5a:96:90:58:
13:2f:05:52:0c:d1:cf:af:3b:b6:8f:d9:56:bd:4e:
c2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:91:EB:18:A0:44:34:E8:94:DD:10:68:7F:0E:A4:33:49:51:9C:83
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:80:b4:89:57:71:cb:a1:66:90:94:ec:9d:ca:b4:1c:2b:1d:
2a:20:6c:5c:5e:97:35:e1:ba:f1:2a:14:1b:98:33:8b:78:c5:
b2:69:9e:5d:77:fa:24:d5:86:79:db:aa:04:40:69:f9:c0:fe:
66:06:7c:c7:99:e9:a5:6b:8e:2b:2d:c2:f1:0b:89:33:58:08:
e8:4d:a5:3a:4b:05:df:ae:e6:f5:51:50:af:86:94:1c:74:05:
8c:2a:31:8f:1e:8e:84:9b:71:08:fb:d7:a6:22:62:2b:03:3a:
ab:54:91:06:76:fc:8a:55:71:fc:a2:9f:47:92:23:57:6a:2a:
db:2a:e7:e7:e8:25:4d:9e:86:52:b2:12:43:4a:71:de:28:f3:
5d:62:2a:a5:1c:fb:fe:1d:14:ba:90:72:74:21:66:a8:5d:ad:
27:f8:23:13:6f:95:ed:04:4c:a8:26:ff:87:b4:57:1e:85:55:
cd:e0:fc:c6:25:4b:6a:09:de:45:03:b0:63:08:42:6c:9c:c8:
b7:fe:4c:dd:39:41:85:d0:c5:27:16:d0:5a:a4:0f:41:27:b1:
5c:a0:59:22:a9:ca:ae:a4:0d:a3:90:55:9c:19:fc:d3:52:33:
ca:1a:cf:17:7b:3c:4c:b8:6e:2b:fa:f4:ec:75:c5:3b:34:d6:
f2:0e:c3:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:25:49 2026 by rpki-client