Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: vQYd0PlTdw+MpLaozLhVJI9/fIP03cZgNa6V3EV/8gw=
Subject key identifier: 2F:BC:AA:4C:79:4F:48:82:C1:B6:08:AD:4F:A2:B2:A7:8A:CF:65:B2
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 019CE5918E3C8C0B0460C897AF9E1B039318
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 05:00:47 +0000
Manifest this update: Fri 13 Mar 2026 05:00:47 +0000
Manifest next update: Sat 14 Mar 2026 05:00:47 +0000
Files and hashes: 1: BTEAuUNa_YsO4Msc4ADixEUAqHw.roa (hash: RPWke+z8J8p3T5a+cxL5wCmrsKLPXY/+WIucQz9R2x4=)
2: Fdb2MRiz20g2xgX0HTiyiVn6wdM.roa (hash: P7ndLT2N2wnmbFCzRdtX0zBZJo6QlqplqMU+f7R4Fys=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: BpAnIcHGRKtT+MNBvqR+l7LfpxXMqlU3psVZiQHheJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:8e:3c:8c:0b:04:60:c8:97:af:9e:1b:03:93:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Mar 13 05:00:47 2026 GMT
Not After : Mar 14 05:00:47 2026 GMT
Subject: CN=2fbcaa4c794f4882c1b608ad4fa2b2a78acf65b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:22:be:43:34:f3:e5:a6:db:82:c1:da:b4:f9:
58:b5:42:7f:84:5f:b6:73:b9:40:90:a7:00:25:06:
4c:e4:df:c7:55:4a:52:8e:b7:e1:4e:aa:20:7c:03:
96:f8:9f:e9:2c:83:57:be:d0:05:6c:6b:79:cb:a4:
0c:04:1c:40:b4:30:e8:bf:2b:33:da:84:bc:69:16:
03:54:e8:11:18:76:40:69:8a:ac:ae:43:87:c8:61:
af:74:b4:0d:c2:f8:5a:eb:c9:06:3e:f9:ac:a7:6e:
8c:52:d1:b0:a3:32:09:1e:9f:16:2f:05:5d:b3:d1:
c2:b9:32:63:74:99:16:68:49:4b:9e:05:57:be:77:
25:e9:14:4f:73:50:96:f0:62:4b:39:7d:b9:5f:67:
a9:41:b9:d6:58:cb:fb:6f:71:b1:c3:12:a0:69:4f:
d1:04:21:aa:61:48:47:04:3e:74:57:ff:f0:8c:1c:
65:80:0f:d0:bc:cb:51:67:2c:9d:90:9a:87:eb:93:
af:f6:68:ce:22:7b:5d:a1:ee:5d:18:03:93:57:1d:
47:d4:a5:b2:73:84:ec:fb:71:39:15:18:cf:dd:fa:
20:93:7a:ba:cf:5b:56:a7:2b:06:11:c4:ea:ea:6f:
a8:1c:3c:eb:4c:6f:ce:f5:14:ec:fc:69:6d:fa:d5:
d5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BC:AA:4C:79:4F:48:82:C1:B6:08:AD:4F:A2:B2:A7:8A:CF:65:B2
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:74:4c:b5:35:ef:83:43:52:e9:50:8c:26:db:cd:49:3f:13:
2f:c5:06:89:b1:30:b3:79:ca:55:7a:a2:15:84:95:c7:17:3b:
45:e4:9a:7b:73:16:d9:9e:b6:b0:3b:32:e6:b0:a8:09:3a:36:
09:59:19:e5:35:c5:31:d0:62:06:6c:b6:4d:c1:95:c1:77:93:
a5:fd:84:5f:f4:47:b3:60:fe:26:62:f5:d4:6d:0f:4e:dc:92:
7f:36:6f:dc:e0:f3:4d:12:74:7f:b0:b6:83:c3:b9:8d:71:fe:
c2:bd:15:30:48:b5:51:88:68:ff:de:8d:ad:13:cd:b0:8f:1e:
d8:04:14:ce:0c:e7:f9:4d:4b:23:15:87:8c:05:ec:0c:5e:54:
b4:c0:04:d4:b1:28:45:41:c6:44:c3:2a:78:1b:03:dd:58:0e:
4c:34:31:e3:9d:1c:17:b3:87:7d:88:ce:b6:a8:a4:61:5d:c8:
39:ca:0e:28:ac:44:cd:da:b9:c5:7f:f4:10:25:72:77:8a:af:
e2:62:98:65:e8:84:7a:f0:99:c8:56:6f:0c:ad:cc:96:96:ef:
22:49:5f:8d:3b:4e:a5:d9:2f:95:dd:b9:ec:86:32:52:51:d7:
09:f1:d8:59:b8:6b:1c:7d:db:11:88:53:69:4b:77:b6:3b:55:
a9:93:0a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:51:14 2026 by rpki-client