Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: hwXjlcFI4RdIDSFyiGpQuNaFl9GAlTzYYsFjJl/gAiA=
Subject key identifier: D7:42:48:BE:42:99:D1:C3:17:CC:BB:83:C9:B2:1F:2D:F0:A5:99:D5
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019DDCFA731CB498B509421302F923F144E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0CCC
Signing time: Thu 30 Apr 2026 06:01:34 +0000
Manifest this update: Thu 30 Apr 2026 06:01:34 +0000
Manifest next update: Fri 01 May 2026 06:01:34 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 0DLigWts8DWtk+vPcYlEK3koJN3j38UM8KErq7B1HJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 06:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dc:fa:73:1c:b4:98:b5:09:42:13:02:f9:23:f1:44:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Apr 30 06:01:34 2026 GMT
Not After : May 1 06:01:34 2026 GMT
Subject: CN=d74248be4299d1c317ccbb83c9b21f2df0a599d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:70:2c:e4:f2:af:b7:1c:cd:2a:7c:f9:20:
4b:54:06:2b:2d:88:c1:9f:66:56:5e:17:ce:71:1f:
47:87:f9:d0:ec:cf:5e:50:22:00:ff:fa:40:bc:65:
1e:4e:7a:64:a0:0b:4d:06:81:c9:4a:85:07:20:bd:
a4:9c:f5:f4:7d:5d:f2:ee:94:32:7b:eb:e4:91:8c:
f6:22:e8:0e:c7:fc:3b:0e:1c:71:b0:6f:af:d0:b2:
e3:03:42:14:53:a5:76:7e:af:36:42:a8:b4:3d:ab:
f6:e0:63:f2:88:81:37:8a:49:82:30:68:8a:84:97:
b5:c2:00:7b:f5:a0:d0:15:f2:16:2e:79:68:02:37:
b3:e6:42:3b:08:67:bb:cb:b7:6a:e3:52:e6:43:18:
2c:9d:f9:7d:c7:0c:b1:d0:da:d6:e1:0c:37:dd:ab:
a3:6d:0e:12:76:80:f6:72:ca:28:e0:0a:d1:ec:c4:
24:42:4b:c5:0e:67:7b:f4:09:b9:27:37:a2:61:83:
77:22:20:df:08:ee:ec:29:cd:6e:56:9e:3e:1f:e2:
72:78:4c:93:13:e7:ac:01:48:13:e6:58:bc:de:74:
cc:ec:6c:af:bd:1a:ef:03:f9:54:4c:ae:29:0a:c9:
83:87:b8:f7:56:55:6f:90:d3:36:84:62:0e:f3:00:
89:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:42:48:BE:42:99:D1:C3:17:CC:BB:83:C9:B2:1F:2D:F0:A5:99:D5
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:2c:28:86:91:e9:65:07:1d:d3:e1:ef:63:04:90:c9:8f:10:
8c:ba:00:9e:96:b5:80:61:24:67:7f:1a:f6:d8:14:ee:2f:68:
14:32:b5:7e:24:72:66:2b:65:91:f2:c4:29:ea:0b:52:5e:00:
64:e8:72:51:19:ae:48:f4:3c:c1:65:76:4a:a5:72:7e:50:ff:
e1:2b:49:12:bb:15:88:bc:cb:b5:48:02:0c:d5:cc:f2:c0:c1:
18:bf:ad:28:63:75:55:1d:5a:c3:18:df:9b:ea:a8:07:c8:29:
b1:44:29:25:db:ff:e4:70:1e:c3:2c:6b:bc:9d:60:5b:a0:f7:
d6:e8:d3:12:93:8a:63:ed:3a:16:51:38:65:ca:00:9e:4e:63:
d3:8d:74:c5:f5:1f:4e:75:51:0d:ca:2e:44:87:1a:3e:0f:c2:
b7:9f:56:36:25:76:ed:40:f4:dc:6f:4b:b2:6d:17:ec:e8:4d:
65:99:99:af:18:aa:7f:28:be:a7:32:dc:b6:7d:38:a7:ba:7b:
a5:79:81:89:cc:13:c6:55:0e:d3:6d:be:44:d8:af:6f:bd:5d:
44:c7:69:f3:ed:90:ba:e2:6f:f2:74:90:35:bb:94:b1:6c:e1:
9f:60:84:9e:f9:56:6b:bd:94:3a:b4:c4:cf:cf:ed:82:29:aa:
21:fd:64:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 13:45:28 2026 by rpki-client