Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: iwEReryu1vGT3AGhEff9s7dVGapZ2o4QL5Q5NcV+vjY=
Subject key identifier: FA:63:8F:44:E9:EC:84:E3:A8:F4:6E:95:66:D4:A0:CA:1F:03:E8:BB
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 019CE4EC608C3C45C125DBBBD3DC34B7CD1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 1866
Signing time: Fri 13 Mar 2026 02:00:22 +0000
Manifest this update: Fri 13 Mar 2026 02:00:22 +0000
Manifest next update: Sat 14 Mar 2026 02:00:22 +0000
Files and hashes: 1: cqgfNLDExy7FaffRoXOKMQXtqL4.roa (hash: TWz48Wr5Z6qhNEoUkqeyNmR7SZVnU/2APhq7EOM+kUQ=)
2: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: ZRWVcZEsVD2kei3UkRULYOvNkHqi/YKBfGf2IOoX35M=)
3: wy6ybCdcWedAi4Mt3ixAA7PS5a0.roa (hash: G/CGlMinA8eb2TiqC5edW4JcIc15BJpfk+/kohiZa2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:60:8c:3c:45:c1:25:db:bb:d3:dc:34:b7:cd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Mar 13 02:00:22 2026 GMT
Not After : Mar 14 02:00:22 2026 GMT
Subject: CN=fa638f44e9ec84e3a8f46e9566d4a0ca1f03e8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:25:b4:b4:e6:62:06:1c:3b:23:dc:42:4b:af:
cf:e3:60:7b:5d:17:20:42:ea:b5:92:8f:44:3a:dc:
1b:dc:86:fa:a7:6e:bb:00:20:d6:d0:e8:26:b7:33:
03:04:c2:df:3f:de:6e:3f:97:9a:0e:51:56:2c:70:
44:82:ed:ed:56:1d:eb:47:3d:53:a6:e9:36:32:f2:
93:19:a9:d7:4c:b7:5d:47:10:30:99:46:f8:85:84:
62:ba:5c:49:29:d3:8b:19:93:82:12:e4:7c:2d:05:
a6:67:da:66:af:b9:92:46:b6:1e:0d:35:63:6b:3a:
6f:9a:52:97:70:70:a3:42:a3:73:a2:70:32:89:41:
fb:cd:82:d9:5c:1a:d2:8d:de:e3:0f:bf:34:a2:3d:
2f:d2:b6:ee:b6:56:7e:be:0c:e2:22:e7:a0:14:51:
33:b3:68:e8:db:8e:d3:5a:d1:e9:29:e2:58:9e:89:
66:98:4c:8a:18:69:7e:10:4c:8b:5f:10:af:c8:ce:
5d:0f:63:06:f6:9b:7a:95:52:63:b4:53:1a:00:2f:
6b:fb:a2:d3:fa:11:68:a8:70:c8:ba:bb:35:3f:eb:
1e:10:9d:3c:44:e6:63:9c:f9:4b:ec:07:0f:8f:11:
9f:8d:eb:2a:27:32:3b:79:0d:3b:ec:18:93:c7:a2:
85:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:63:8F:44:E9:EC:84:E3:A8:F4:6E:95:66:D4:A0:CA:1F:03:E8:BB
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:79:cf:e6:39:15:97:54:e9:fe:ff:6f:e7:f8:cf:ea:b8:14:
f2:86:83:28:f8:67:a1:02:7a:6a:c4:01:ec:f9:78:46:88:c4:
fb:8c:d8:86:ec:04:e1:30:71:8f:1f:79:02:23:42:c7:5d:7a:
32:62:77:3f:e0:0f:d3:ed:d0:12:db:98:0c:e8:4f:6d:1a:29:
51:69:f4:d0:82:48:0c:e3:c8:88:a0:28:61:84:2f:82:2d:d9:
f3:ae:a9:2b:42:76:d3:6c:52:12:0a:ea:3e:4a:19:14:5a:c3:
6d:9b:07:98:63:8b:6d:a9:1c:04:bf:51:eb:59:dc:b9:c2:7b:
05:3c:71:0e:e8:03:e5:99:9f:4f:ac:90:af:0c:86:7e:63:60:
1a:18:72:a0:4b:06:31:ad:a1:24:50:a8:35:ec:d3:80:f9:f8:
e6:38:de:f4:cf:10:a6:cd:e7:fc:9e:dd:a9:84:f2:9b:93:6c:
ef:5f:98:1c:11:7a:d0:0d:0c:d4:26:95:47:b0:37:dd:66:44:
01:8b:0a:62:fd:a8:29:1d:09:87:c2:00:79:ae:54:c4:a0:db:
bc:21:8f:ae:84:45:dd:32:57:5d:bb:ad:88:64:d1:db:a6:59:
e2:a7:e9:a9:7b:af:d1:e4:90:3f:ab:74:d0:ba:1e:be:93:b6:
23:42:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 06:06:13 2026 by rpki-client