Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: bv0XSxsXorfquYQ9IFXMOhpjE6zw3meJW/7NCDvab9c=
Subject key identifier: AF:49:0F:F6:F7:DF:BE:AC:B9:69:24:2A:2C:49:35:68:D1:C4:3B:68
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 019DCE99902D750089A5A331BF36ECC8E915
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 18DF
Signing time: Mon 27 Apr 2026 11:01:03 +0000
Manifest this update: Mon 27 Apr 2026 11:01:03 +0000
Manifest next update: Tue 28 Apr 2026 11:01:03 +0000
Files and hashes: 1: cqgfNLDExy7FaffRoXOKMQXtqL4.roa (hash: TWz48Wr5Z6qhNEoUkqeyNmR7SZVnU/2APhq7EOM+kUQ=)
2: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: zN8iMC7iePFABqmBizQ/qSyomlGcxoEIaoCfgnX/ym4=)
3: wy6ybCdcWedAi4Mt3ixAA7PS5a0.roa (hash: G/CGlMinA8eb2TiqC5edW4JcIc15BJpfk+/kohiZa2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:90:2d:75:00:89:a5:a3:31:bf:36:ec:c8:e9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Apr 27 11:01:03 2026 GMT
Not After : Apr 28 11:01:03 2026 GMT
Subject: CN=af490ff6f7dfbeacb969242a2c493568d1c43b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a9:cf:66:ac:63:b3:c0:ab:a1:ea:d8:8b:7f:
25:c3:15:de:a7:74:c3:4c:05:c9:61:d5:54:83:5b:
23:ac:82:f0:8c:9e:9e:9d:5c:3e:fc:ee:f6:d3:d7:
0a:67:77:7c:66:a4:34:7d:1e:54:18:fb:99:52:3b:
6a:f9:df:f1:54:5c:04:65:19:0b:33:7e:e1:1e:7b:
23:94:87:6c:40:07:b5:09:27:e0:cb:0d:00:a2:4c:
23:1b:9e:34:e4:aa:2a:e8:2b:d6:26:e8:03:82:b6:
a6:0f:5e:53:90:de:bc:af:b4:a0:96:46:78:26:6a:
c7:65:a0:f6:e1:e6:dc:a8:75:44:b9:3c:6a:13:7a:
42:3a:22:ee:83:db:06:51:d2:3b:75:da:0a:32:5c:
c9:aa:e3:96:a4:2b:91:38:15:1c:5a:1f:a4:8a:0f:
ce:3f:17:15:09:c1:13:25:97:26:ca:6b:10:35:a4:
45:99:8e:bb:b0:19:70:98:53:d8:76:0b:44:66:81:
af:f3:73:03:fa:8b:90:f2:cb:dc:87:91:26:95:f1:
c6:25:ab:2f:a5:90:ba:98:1e:51:e6:10:b7:2c:c1:
63:c5:0e:f4:ee:02:a7:e9:4c:63:d6:92:d4:5d:91:
e5:b0:c6:8e:a8:13:8d:f8:04:26:d6:8a:1a:25:24:
65:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:49:0F:F6:F7:DF:BE:AC:B9:69:24:2A:2C:49:35:68:D1:C4:3B:68
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ed:1d:31:81:de:1b:40:25:d8:d7:65:ab:5d:d4:2b:be:db:2d:
df:d1:09:ac:ce:39:f1:25:b7:38:cc:0a:ce:4f:0e:a3:40:41:
1a:4c:44:20:44:7c:1f:eb:2a:6b:ee:55:7e:d7:3b:e5:55:4e:
02:79:77:aa:43:d3:65:57:22:a3:b9:8d:8e:fc:c4:00:4f:4c:
50:3e:63:71:6a:bf:6a:c5:6e:3e:3d:0b:25:2c:24:f9:6b:44:
f5:85:af:8b:f9:81:32:c1:5b:67:c8:c3:89:9d:e5:0a:aa:b7:
14:38:2d:04:b8:af:15:d5:09:58:ed:60:30:b2:a5:6f:d4:1d:
85:3d:db:45:e4:5b:6a:e2:74:f6:a3:56:5b:48:5d:ac:18:62:
7a:38:98:31:85:66:45:63:80:0c:2b:e2:b1:28:7f:e8:3d:a1:
c5:d5:1e:d4:3c:20:97:e9:5a:e0:89:3d:3b:ef:e6:3e:00:dd:
6a:6c:18:4a:67:5d:c5:15:ca:91:bf:21:37:33:be:99:1a:c9:
a3:f5:ec:2c:c6:3a:3f:9a:f1:86:1f:d9:93:98:cd:8b:9b:01:
27:eb:b1:df:87:19:c9:4e:a7:b1:b0:0b:6c:4b:cb:fb:34:b7:
8d:00:bc:71:af:d6:f5:d3:cd:1f:1c:a4:b7:8d:6b:3b:33:82:
12:01:a8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:36:01 2026 by rpki-client