Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
File: iay4iT6UGAdH7sGXXtVgTE3b4MU.mft (raw, json)
Hash identifier: oy2l4BsNa+bAb/7VZ4lBRu5y7G2p0NgRMLej9DaQHjE=
Subject key identifier: A8:C0:DA:0E:8B:B2:AD:5F:52:8D:CA:4F:41:10:D6:36:34:D0:A9:D9
Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Certificate serial: 019D38D3B3A810CE6E8E3960B95E0C7EEEC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:01:31 +0000
Manifest this update: Sun 29 Mar 2026 09:01:31 +0000
Manifest next update: Mon 30 Mar 2026 09:01:31 +0000
Files and hashes: 1: 7oSS-r2bMLw-tHLZnTLEn6ZKtA0.roa (hash: sEaYDQdsiX4RB8VnPuUfSRtKLpLITXk4UddGS53dMkM=)
2: iay4iT6UGAdH7sGXXtVgTE3b4MU.crl (hash: UyCLAxKJMI2iBIgtIt93NF6q557zkvC4xqv1cHgdv3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b3:a8:10:ce:6e:8e:39:60:b9:5e:0c:7e:ee:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Validity
Not Before: Mar 29 09:01:31 2026 GMT
Not After : Mar 30 09:01:31 2026 GMT
Subject: CN=a8c0da0e8bb2ad5f528dca4f4110d63634d0a9d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:2f:97:ea:f8:e3:e4:57:7b:78:aa:34:08:
13:93:08:54:74:b0:20:ac:9d:f5:73:34:cf:74:e1:
f6:6d:f3:fe:7f:4b:b9:ed:bf:44:90:d6:cf:4e:46:
c0:38:f6:73:e1:2d:df:74:31:4f:bc:d6:3b:dd:82:
61:f8:d3:fe:f1:af:c6:f2:1e:87:3c:38:fe:1f:07:
75:85:37:1b:ef:d5:26:4d:ce:19:ef:a5:25:c7:3e:
ce:74:ef:32:a9:3b:a5:ac:32:74:4f:75:eb:b7:b0:
0a:cb:d3:82:12:92:cb:62:15:df:ca:5d:c8:c9:e9:
d1:8b:f3:8f:b2:b4:4d:fe:22:90:74:45:eb:c1:30:
e4:50:f8:46:c2:11:ef:80:a7:7c:6f:25:bd:b4:f0:
25:5a:42:7c:01:70:8b:3d:c0:d1:b9:4a:93:30:2b:
1c:2e:02:45:e2:80:11:10:56:7e:e6:1c:14:e0:58:
f7:96:0c:85:a5:2f:f6:b5:d8:b2:86:fd:bb:52:a5:
72:46:2e:a6:82:ef:86:9f:1a:ff:9f:87:27:e3:33:
c7:a8:12:b7:95:52:10:d2:8b:d2:56:b2:ef:d9:8d:
fd:3f:40:52:d9:46:83:3a:76:06:27:a7:30:5b:dd:
f8:16:47:10:f0:f6:6b:52:57:7f:1c:6f:d5:3a:80:
c7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C0:DA:0E:8B:B2:AD:5F:52:8D:CA:4F:41:10:D6:36:34:D0:A9:D9
X509v3 Authority Key Identifier:
keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e2:23:f8:eb:dc:ee:96:17:d6:d6:5c:4e:3c:6b:7a:22:d7:
1d:22:74:96:1d:ca:1a:27:56:09:a1:44:06:32:6f:11:a7:66:
05:21:30:da:14:5c:c9:80:da:3a:22:c2:57:39:ea:4b:5b:17:
75:0a:3f:ac:97:3e:b2:14:29:be:46:72:4c:8e:16:37:1b:24:
00:b4:86:4a:8a:0d:24:50:67:fa:7a:d4:50:07:72:e5:55:5b:
73:ea:5f:01:e4:b7:14:d4:94:99:f0:53:bf:5c:60:57:01:2e:
44:57:ce:11:2f:81:d3:0b:3b:63:62:af:95:c1:10:94:aa:29:
54:14:c0:fe:94:28:73:20:33:54:ad:4c:7f:40:0c:1a:44:c3:
66:4d:d9:a4:f3:7c:60:2e:6f:9d:d3:1f:5e:5b:d1:5f:ff:f6:
45:60:f3:00:4e:da:d5:08:11:c9:fc:10:d1:a9:84:43:19:26:
ca:a5:03:cb:0a:1c:1e:7e:8f:12:de:e2:40:81:29:e7:63:44:
b0:4a:b3:8d:d3:13:db:33:6f:25:29:c0:b5:a0:66:71:f7:1b:
41:d0:f6:5e:31:d9:3a:34:67:bf:d1:34:fc:ea:0f:92:00:39:
98:99:d5:d5:04:b7:d8:64:6f:6f:61:04:48:b3:f5:e4:9d:00:
0a:44:21:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0407OoEM5ujjlguV4Mfu7GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YWNiODg5M2U5NDE4MDc0N2VlYzE5NzVlZDU2MDRjNGRk
YmUwYzUwHhcNMjYwMzI5MDkwMTMxWhcNMjYwMzMwMDkwMTMxWjAzMTEwLwYDVQQD
EyhhOGMwZGEwZThiYjJhZDVmNTI4ZGNhNGY0MTEwZDYzNjM0ZDBhOWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04svl+r44+RXe3iqNAgTkwhUdLAg
rJ31czTPdOH2bfP+f0u57b9EkNbPTkbAOPZz4S3fdDFPvNY73YJh+NP+8a/G8h6H
PDj+Hwd1hTcb79UmTc4Z76Ulxz7OdO8yqTulrDJ0T3Xrt7AKy9OCEpLLYhXfyl3I
yenRi/OPsrRN/iKQdEXrwTDkUPhGwhHvgKd8byW9tPAlWkJ8AXCLPcDRuUqTMCsc
LgJF4oAREFZ+5hwU4Fj3lgyFpS/2tdiyhv27UqVyRi6mgu+Gnxr/n4cn4zPHqBK3
lVIQ0ovSVrLv2Y39P0BS2UaDOnYGJ6cwW934FkcQ8PZrUld/HG/VOoDHTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKjA2g6Lsq1fUo3KT0EQ1jY00KnZMB8GA1UdIwQY
MBaAFImsuIk+lBgHR+7Bl17VYExN2+DFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wY2Q0YmUtMjQ3Zi00ZGUyLTkzOGMt
ZjBjZDhiYjU1MmUwLzEvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wY2Q0YmUtMjQ3Zi00ZGUyLTkzOGMtZjBjZDhiYjU1MmUw
LzEvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAleIj+Ovc
7pYX1tZcTjxreiLXHSJ0lh3KGidWCaFEBjJvEadmBSEw2hRcyYDaOiLCVznqS1sX
dQo/rJc+shQpvkZyTI4WNxskALSGSooNJFBn+nrUUAdy5VVbc+pfAeS3FNSUmfBT
v1xgVwEuRFfOES+B0ws7Y2KvlcEQlKopVBTA/pQocyAzVK1Mf0AMGkTDZk3ZpPN8
YC5vndMfXlvRX//2RWDzAE7a1QgRyfwQ0amEQxkmyqUDywocHn6PEt7iQIEp52NE
sEqzjdMT2zNvJSnAtaBmcfcbQdD2XjHZOjRnv9E0/OoPkgA5mJnV1QS32GRvb2EE
SLP15J0ACkQhvw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:38 2026 by rpki-client