Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: hHEFpaDkxD7c/waoz9QoYYd7BcyldCdiip1EIYknC1w=
Subject key identifier: B4:DE:7E:3A:21:41:28:07:07:2D:03:9C:22:50:09:E1:70:7A:E5:41
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 019CE2597D8D70867A0F50DBA447BEE95B8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 1002
Signing time: Thu 12 Mar 2026 14:00:41 +0000
Manifest this update: Thu 12 Mar 2026 14:00:41 +0000
Manifest next update: Fri 13 Mar 2026 14:00:41 +0000
Files and hashes: 1: EG_Id09DvFvq6OjCzlCxHI8GXVg.roa (hash: SEYIizAUZ8Gr2yBztTyZlf2jtywb5D92XRV6mbkv9uw=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: XULBLtgbrKi6fAtrX/FcFO9qnco/I+YXPjQG9fVtUTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:59:7d:8d:70:86:7a:0f:50:db:a4:47:be:e9:5b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Mar 12 14:00:41 2026 GMT
Not After : Mar 13 14:00:41 2026 GMT
Subject: CN=b4de7e3a21412807072d039c225009e1707ae541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:26:df:da:5d:42:37:3b:d6:e6:30:9e:fa:39:
95:d0:b5:1c:7c:a7:3f:8f:0f:d5:58:28:2b:32:03:
67:f7:d2:aa:33:41:92:bc:72:ae:72:1e:69:6a:26:
fa:66:3f:5a:92:c4:9f:fc:47:25:64:d8:9d:15:4e:
65:a1:85:fc:f5:64:83:8c:96:ea:08:f4:a8:89:50:
f3:b9:44:56:d2:0e:d6:d0:25:af:ae:d4:59:15:83:
78:25:08:35:ff:0c:99:2c:38:5a:5f:88:ae:ff:cf:
a7:39:f0:b2:df:6a:de:1e:5b:bb:2e:3a:bf:56:4e:
09:01:d6:d8:fb:31:2c:0b:1c:ff:d1:26:33:99:4b:
d7:dd:b5:a7:01:7f:31:e5:e7:d9:c2:e8:be:b8:2b:
0f:9e:ce:f0:f0:d6:74:5f:db:b0:01:bc:1c:6a:a1:
ee:d4:e7:d6:50:70:95:73:72:77:80:43:02:ac:c3:
17:b8:6a:21:36:81:9a:c3:1e:a8:95:38:7a:24:89:
bc:03:41:04:3c:82:1b:ca:f0:3d:18:92:47:44:68:
b1:eb:51:ee:ce:da:33:da:b4:9d:4e:36:d5:23:e8:
37:93:9b:1d:06:9c:30:91:be:a7:3b:a6:84:ef:8d:
f5:43:0d:4f:b8:4a:e8:a6:33:13:20:4c:dc:11:9d:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DE:7E:3A:21:41:28:07:07:2D:03:9C:22:50:09:E1:70:7A:E5:41
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b3:55:68:2b:ca:13:fb:f9:9f:94:6c:d1:05:47:64:f9:5f:
3e:67:f2:f1:ae:a5:4b:f0:18:ab:b6:61:65:82:52:3c:7f:66:
69:31:ef:7a:3c:4e:13:47:d8:16:f2:22:a2:80:b3:fe:26:b7:
5b:8c:4f:a3:be:94:a5:ad:b4:a1:48:a0:62:4a:e6:75:09:47:
c5:1e:d9:42:13:85:bc:71:a7:2d:d9:16:69:8c:d5:86:d1:fa:
68:d1:05:68:e2:ad:1a:44:72:db:48:48:2a:41:22:23:c8:4a:
dd:3e:62:fa:cb:e0:05:fc:78:bb:51:0a:7c:7d:a6:c6:bc:bb:
6b:06:04:c7:3b:e0:04:c3:b8:0a:46:32:39:b6:df:98:e0:9c:
33:04:15:2f:a1:52:34:27:73:c9:29:8c:02:23:ed:34:0b:1e:
8f:8f:bc:d9:00:f8:89:84:0c:fb:07:a9:d6:69:67:87:7f:59:
af:6b:2b:89:5c:71:f6:77:ef:b7:12:e7:63:65:9b:65:02:f9:
f6:9c:85:82:b9:aa:06:6c:3c:46:8f:a3:d5:fb:0e:89:8b:e7:
43:d8:27:cc:1b:62:ca:be:7b:6e:ca:8d:09:44:7d:c8:6d:9f:
7f:3b:90:c0:35:ec:ec:d3:a2:a5:b1:4b:2b:aa:93:14:26:c0:
a5:22:bb:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 19:07:24 2026 by rpki-client