Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
File: io-pkrwKYdssvnhuHFnTYMzlRIY.mft (raw, json)
Hash identifier: yWHQ3EhkDrEyr8qiPEjpWaQ1OSgYa0cDFOYtDjGaqh0=
Subject key identifier: 51:CB:CD:A8:C7:AC:8B:31:28:97:B1:FD:1C:08:EE:1F:E4:02:51:2E
Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Certificate serial: 019D37C03194A487B541B42E4E0709B4DEB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
Manifest number: 09E5
Signing time: Sun 29 Mar 2026 04:00:35 +0000
Manifest this update: Sun 29 Mar 2026 04:00:35 +0000
Manifest next update: Mon 30 Mar 2026 04:00:35 +0000
Files and hashes: 1: CoFj8wqKTvU7pOYnL2WgDpvdELY.roa (hash: SwwUsyZHkvE2PDZCEhOVTo7T7TrLwZ2CcQ1+6tgDIC0=)
2: io-pkrwKYdssvnhuHFnTYMzlRIY.crl (hash: AOfM9gKvakmYG4nLaEqsvp8wLreGOpAm1AhjvtdUYwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:31:94:a4:87:b5:41:b4:2e:4e:07:09:b4:de:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Validity
Not Before: Mar 29 04:00:35 2026 GMT
Not After : Mar 30 04:00:35 2026 GMT
Subject: CN=51cbcda8c7ac8b312897b1fd1c08ee1fe402512e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:20:1f:40:5f:0d:72:f2:0f:2d:59:32:70:d2:
9f:12:7d:e0:ca:7e:5f:dc:e6:42:1e:da:8c:e5:1d:
02:db:77:fb:4d:91:8a:6a:be:33:e0:da:00:0a:b4:
18:71:7f:65:87:e9:32:de:94:fe:9f:53:b0:ce:55:
86:ca:9f:bd:12:1a:e4:df:de:79:86:6c:64:2f:5c:
e7:5b:05:a3:75:32:d2:de:5c:4a:b3:f8:a5:88:4a:
4b:41:01:dd:b5:c3:25:74:08:94:82:c2:d0:30:18:
f0:4a:61:22:3b:58:89:f7:2d:c0:94:47:01:3d:8f:
8a:fb:5e:24:ce:38:7a:91:ad:c1:fc:12:56:a8:10:
fb:e1:1a:bc:3f:23:32:2e:30:34:c2:37:ad:c7:68:
b6:18:32:48:c1:61:ee:58:d8:ea:b2:ed:5c:2a:99:
ef:a5:7d:71:04:a1:4a:38:be:43:4a:8f:0b:af:9b:
93:6a:00:27:3a:1c:cf:e1:43:0f:cf:3a:ad:00:c8:
53:82:39:8e:db:57:c9:9d:f4:23:6a:06:76:b7:d4:
bf:1f:71:b3:c8:85:23:34:26:c9:a6:60:fb:b0:81:
56:6f:7d:a9:a0:7d:ba:8c:31:da:eb:a3:22:29:5a:
02:58:a9:ee:8a:f8:ab:bf:61:0f:42:fb:da:65:b5:
34:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CB:CD:A8:C7:AC:8B:31:28:97:B1:FD:1C:08:EE:1F:E4:02:51:2E
X509v3 Authority Key Identifier:
keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:e1:e7:cf:30:78:cf:72:54:cd:f1:8e:42:ca:c4:16:88:4d:
7b:2b:32:26:12:5f:f2:3a:16:d0:f8:52:5f:ad:a2:75:65:87:
4d:30:22:25:9c:36:ee:b9:c6:d1:89:a3:50:8f:35:31:1c:0a:
ca:8e:6c:26:5c:b4:89:13:1d:a5:22:d5:f9:1d:8f:a0:b7:ae:
6f:e9:80:a2:24:96:da:85:07:13:52:2a:f8:c9:21:b7:af:1b:
2c:fc:6a:40:22:3d:15:34:70:9f:27:21:03:f8:46:a5:53:d8:
1c:4b:62:c3:c3:46:8f:02:70:2b:19:96:a3:8f:8c:58:6f:50:
f7:d0:d3:b4:c9:48:21:6b:10:bd:de:4f:d7:8a:a4:c7:83:6f:
69:55:69:af:f9:f9:d0:d5:9d:8c:0e:44:8f:b7:0f:f5:26:72:
3c:32:d5:4e:4f:9f:ce:78:32:9f:04:18:44:b7:f9:e5:9a:00:
df:bd:a6:82:e1:6e:9d:d9:f9:da:ac:62:40:dc:09:15:49:7a:
33:fb:c8:cc:6d:a3:3b:88:15:ff:da:50:3e:b3:f0:dd:5a:38:
71:dd:2d:fe:41:31:cd:e7:18:f8:51:75:45:1a:b6:1f:79:f1:
1c:00:a4:30:8a:9b:78:45:e6:e3:8c:ac:35:76:8b:ef:b7:ec:
83:de:64:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:50:01 2026 by rpki-client