Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: 8R0VQh2zVoVyCV6Zd2yIG2s6/bH2xi15UCcGWul3+gc=
Subject key identifier: 61:21:C0:01:3D:D7:32:BC:6C:65:A7:2E:37:FE:74:EE:78:85:E4:3D
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 019CE447B296525422DC106A92C5C630696D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 0369
Signing time: Thu 12 Mar 2026 23:00:29 +0000
Manifest this update: Thu 12 Mar 2026 23:00:29 +0000
Manifest next update: Fri 13 Mar 2026 23:00:29 +0000
Files and hashes: 1: Af_5rqEWBhs_t_5t3ubsN4ME7qQ.roa (hash: US3yyitysBySkBj1duM7uaT/kHoh5Ro/nrveWTewP9E=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: d4+bYXdfKEpxG5lpktZ9hZuYEcIGLWhXYIX0QzACDt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 23:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:b2:96:52:54:22:dc:10:6a:92:c5:c6:30:69:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Mar 12 23:00:29 2026 GMT
Not After : Mar 13 23:00:29 2026 GMT
Subject: CN=6121c0013dd732bc6c65a72e37fe74ee7885e43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:1c:4f:bf:01:44:00:bb:b4:85:17:4e:cf:
a8:6e:57:33:42:10:23:07:77:18:7f:9c:cd:bd:ef:
09:f2:3b:fd:c2:67:d8:8d:da:06:f8:a7:eb:93:60:
dd:ae:46:03:c6:5c:c7:82:cd:b0:9e:1e:f7:62:ad:
4d:2d:c4:38:d4:da:01:e0:da:3c:44:23:85:6f:81:
e5:79:0d:8f:7c:ff:90:0a:db:92:0f:b3:45:14:a1:
a3:51:6b:52:67:eb:5d:50:e4:2d:c9:87:41:87:76:
a9:ea:88:91:ca:2c:45:00:1e:d1:16:c2:52:13:e7:
eb:ef:46:3d:64:46:7f:7b:b4:21:39:6b:9f:2c:53:
e5:f6:61:be:bf:75:d1:ef:94:61:da:42:7f:c2:a3:
90:85:bd:10:e2:86:11:9f:f3:ff:07:38:90:54:3f:
2a:a2:67:e4:1c:18:61:b7:ee:61:87:84:30:02:49:
f9:08:0f:b5:e2:0a:6b:c7:01:fd:29:14:5d:26:3d:
a4:35:19:62:67:b0:cc:95:d2:a6:90:4b:63:ee:78:
95:f6:4e:b1:9a:c7:52:0d:7c:3a:13:fa:1a:d5:94:
72:88:02:06:9c:e9:11:8a:f8:b1:87:ba:ba:35:02:
e3:10:d9:34:21:e6:5c:7b:e2:90:24:3d:85:d1:7d:
33:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:21:C0:01:3D:D7:32:BC:6C:65:A7:2E:37:FE:74:EE:78:85:E4:3D
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:09:de:eb:7f:73:52:1d:8b:71:ac:df:8a:6b:c6:48:b0:17:
d4:98:f7:46:14:0b:6a:15:22:4d:e3:58:cd:d8:5a:9f:81:98:
e8:d2:24:88:ed:93:c0:bb:c4:12:05:bb:b3:11:e1:67:99:6f:
f8:6c:6e:fd:50:8f:e2:1b:95:91:e7:ff:60:13:de:4b:7f:50:
9d:d8:1b:7a:47:76:f2:8e:bf:62:e7:7a:46:c3:7d:2a:73:fa:
8c:ea:b1:24:06:bf:2f:12:31:96:67:d8:b0:f3:8d:d9:3b:4c:
9c:6d:3c:9c:f8:73:c1:bd:1e:26:2a:4c:60:ac:bb:33:e4:59:
2a:08:e3:22:de:35:99:2b:c8:59:67:4a:f9:c9:6c:63:1b:ab:
6a:b8:61:cf:4f:f5:3a:b1:41:ca:90:96:03:4f:a6:5e:37:85:
99:c3:34:94:13:c5:82:ae:95:cd:e7:79:09:b9:6f:27:c9:55:
44:f2:4a:2c:d0:99:3c:a0:86:fc:7d:7e:b7:4e:a0:95:b4:e2:
6f:08:38:6e:d1:45:c4:24:14:89:69:3f:f2:1c:c7:e1:44:ea:
db:92:ec:ec:0a:fc:3a:9e:fb:ca:f2:cd:82:a0:d6:69:af:3e:
41:f7:ec:fd:8b:c5:1a:e0:4d:a0:75:95:e1:ad:dd:2e:36:5c:
33:f7:75:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:41:41 2026 by rpki-client