Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: JDhrQ1hiCPih8zZfnHeZYgp9GJoTCJ571owCqRnRG34=
Subject key identifier: C8:32:FF:28:05:23:32:97:08:FD:47:0F:E9:68:2E:9B:43:64:95:D6
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019CB9CC1FF988CE3FA5496730BFEA8721D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0BAD
Signing time: Wed 04 Mar 2026 17:01:28 +0000
Manifest this update: Wed 04 Mar 2026 17:01:28 +0000
Manifest next update: Thu 05 Mar 2026 17:01:28 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: HjgbA/iOY8Q0OugUhWv7FA48hcYsyTIOrxJUzC69z94=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
7: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 14:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b9:cc:1f:f9:88:ce:3f:a5:49:67:30:bf:ea:87:21:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Mar 4 17:01:28 2026 GMT
Not After : Mar 5 17:01:28 2026 GMT
Subject: CN=c832ff280523329708fd470fe9682e9b436495d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5a:8c:3c:3c:ca:c9:d4:fe:bf:31:b9:f0:c7:
94:d7:9b:f0:a9:8a:30:21:07:33:18:33:9b:66:cd:
5e:c0:6a:64:ca:77:2b:4c:c8:a0:9f:20:e5:82:99:
96:a6:d9:10:4c:11:dc:cd:88:fc:8d:9b:76:04:5c:
9e:18:5d:59:ea:ca:51:96:45:32:e8:71:d8:76:bd:
ce:e3:a8:78:19:4d:b0:9a:8f:e1:29:ac:64:41:1c:
e2:c6:ee:7f:9b:bd:cc:9a:fa:11:59:6f:a8:14:fb:
8a:dc:c8:15:16:92:3a:7a:f1:6d:25:b2:a9:be:6f:
6a:d7:bf:a9:20:8f:ba:ed:b0:f3:72:c8:28:cb:7a:
34:93:26:77:b7:61:0c:f2:58:a2:e4:9a:31:83:ef:
6a:93:8e:46:8a:c5:02:59:12:4d:bc:f9:7d:8c:67:
3f:aa:87:ed:3e:bc:b1:d3:78:b2:8f:3c:57:9e:5c:
5e:d3:8a:07:d0:85:c2:63:6c:96:74:32:ea:0f:7c:
e5:53:b8:22:94:8e:29:84:38:db:a2:08:10:69:87:
b1:09:f2:02:0f:90:19:88:a4:72:73:b1:6a:8c:9a:
4a:ee:2b:ea:24:4e:1e:93:5f:df:6e:1c:37:d4:b5:
a2:c7:6a:50:e7:f3:b0:a4:64:b2:91:69:3e:a1:30:
c7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:32:FF:28:05:23:32:97:08:FD:47:0F:E9:68:2E:9B:43:64:95:D6
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:52:35:aa:31:db:72:50:72:b1:3e:88:c3:c3:8a:73:c8:3b:
ef:07:4c:c0:7c:4a:08:23:7d:9e:fc:e7:0d:94:8b:67:26:ed:
b3:3b:bf:5f:d4:0b:61:d5:38:87:2b:69:3a:26:e9:60:04:b5:
1d:dc:c0:c1:09:e6:09:ed:26:62:e1:3f:f3:b2:6f:4d:91:75:
c4:a2:79:62:01:e2:18:4c:aa:b7:c9:bf:01:57:3d:7d:41:5c:
c3:ed:0b:39:ac:44:d3:ea:87:d4:17:e6:c9:2f:c8:9d:04:c7:
f7:99:33:fe:5f:71:ab:75:93:55:af:64:f5:29:b6:f1:9b:45:
ee:2b:b2:99:6a:85:d6:49:de:b0:5b:02:f2:47:45:75:41:d9:
a1:97:6c:b7:2b:98:49:e9:4a:58:c7:d0:c9:4d:65:08:e0:5c:
ad:18:5d:2e:5b:f0:48:ee:b1:80:c0:66:28:c7:bd:18:cd:de:
f8:c6:dd:9f:c6:d5:64:a5:5d:a4:fe:2e:64:a3:23:c3:75:9c:
dc:11:d7:43:44:94:78:ab:47:1d:78:5d:37:08:67:f3:61:70:
b8:d9:5e:2a:8f:79:cd:99:1e:e5:42:b4:13:9c:42:8b:58:cd:
d1:cb:1a:27:81:44:91:87:d8:b3:b5:fb:68:06:f6:5d:04:2f:
88:cc:84:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 20:55:28 2026 by rpki-client