Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: WkNPakHfaYDe1fFCKNHmUO/SkEgcdUYP/eX6cvBDHIg=
Subject key identifier: B3:2D:50:0D:4E:0A:52:97:F0:6E:D7:D4:1D:54:7D:C2:DB:9F:1F:C4
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 019DCD4FF2A9301E09420A123B11A6D149AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 18DD
Signing time: Mon 27 Apr 2026 05:01:01 +0000
Manifest this update: Mon 27 Apr 2026 05:01:01 +0000
Manifest next update: Tue 28 Apr 2026 05:01:01 +0000
Files and hashes: 1: BTEAuUNa_YsO4Msc4ADixEUAqHw.roa (hash: RPWke+z8J8p3T5a+cxL5wCmrsKLPXY/+WIucQz9R2x4=)
2: Fdb2MRiz20g2xgX0HTiyiVn6wdM.roa (hash: P7ndLT2N2wnmbFCzRdtX0zBZJo6QlqplqMU+f7R4Fys=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: jL01nTm9KHn6MoFPC3gtxBdlOQHWoNknoDnxmX6Rwvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:4f:f2:a9:30:1e:09:42:0a:12:3b:11:a6:d1:49:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Apr 27 05:01:01 2026 GMT
Not After : Apr 28 05:01:01 2026 GMT
Subject: CN=b32d500d4e0a5297f06ed7d41d547dc2db9f1fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:09:1a:ce:cf:58:88:bc:dc:5e:bb:11:af:35:
a8:21:03:84:62:fd:8b:0f:de:3f:e8:29:35:50:8a:
65:86:b1:26:43:19:ae:2c:d1:2a:e4:8e:0c:d4:1e:
14:13:5b:30:31:f3:d5:d6:dd:93:64:f8:8d:71:73:
9b:f2:22:ce:cc:64:38:44:fe:0f:44:05:23:83:ca:
76:36:57:3a:33:f5:3b:1c:89:cf:9d:91:c4:b8:fe:
fc:1f:62:1e:a4:21:87:64:b2:13:f3:93:ca:99:b5:
4b:e9:a5:2f:67:5e:3d:2c:74:40:d4:de:5d:99:73:
50:fa:d7:df:13:35:61:1f:2b:64:a5:de:4d:ac:30:
5d:df:f2:2a:5e:06:5a:78:2c:c0:09:1f:30:93:04:
aa:5c:18:0d:a5:da:62:fa:e4:2d:2f:77:df:8c:80:
f5:b6:b0:d9:c7:79:68:cb:f2:28:6f:81:e4:b1:a2:
08:25:fc:54:90:cb:5b:87:ee:df:26:bf:69:42:ce:
df:21:aa:97:84:c9:bf:20:8a:56:da:51:22:87:ec:
14:1d:60:49:00:a0:c5:58:e0:16:82:7c:a1:cf:ea:
bc:4c:69:b7:91:59:f4:7e:d3:e2:89:aa:7c:17:39:
66:d4:1e:df:04:2c:08:be:52:bc:71:8b:e9:2f:ff:
99:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2D:50:0D:4E:0A:52:97:F0:6E:D7:D4:1D:54:7D:C2:DB:9F:1F:C4
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:6c:5b:11:c0:29:00:d6:01:83:c4:4e:8d:2d:d8:23:9d:83:
d2:5f:91:82:cf:77:3c:a9:52:57:e6:d5:3e:af:83:ca:d9:92:
a7:4c:5a:90:17:ab:7f:60:03:5a:98:9a:fb:8c:80:ed:b1:55:
86:44:42:54:42:c5:67:61:6a:dc:fc:3f:9c:fa:8e:7f:bf:c1:
13:e3:a0:34:98:9e:4d:12:fe:44:9b:91:21:51:fa:e3:b8:8c:
ab:bb:47:50:9c:09:c7:a1:14:55:d7:cb:0b:ac:d2:10:bf:5a:
c3:4d:18:e8:2e:33:ac:c7:c2:b6:0b:ae:6e:f6:8f:ca:c7:d5:
e9:91:83:e0:7e:d5:e5:8b:48:85:a3:a6:b4:3f:06:65:c1:17:
98:0c:44:b7:b5:74:1f:3d:3f:f6:12:e2:76:d0:92:b1:67:3f:
47:76:b3:2c:c2:1d:e4:6c:53:67:8a:72:cc:2b:3e:f3:8d:23:
42:6c:f2:77:7a:0e:da:97:46:83:67:7e:5e:1d:96:90:ab:66:
d0:e6:e8:09:d4:d7:6c:47:92:8d:60:c3:46:63:9b:44:28:f6:
78:76:2d:60:cb:e2:30:43:16:8e:4a:24:08:8a:6c:a1:c8:56:
d7:70:db:17:c1:b7:13:9e:c9:34:0c:1e:58:6b:ed:53:6c:40:
cd:92:c1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:17:26 2026 by rpki-client