Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: +Gj32l9hOQnCu9iy88jZ1Tgs+rEJJxXXrYWqx8TUwyU=
Subject key identifier: 2B:25:A0:56:D7:61:5E:BA:4A:77:42:00:63:21:E9:A0:2F:52:39:B9
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019CF34D017BF6A034F500AAC12DFD6056C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0C53
Signing time: Sun 15 Mar 2026 21:00:35 +0000
Manifest this update: Sun 15 Mar 2026 21:00:35 +0000
Manifest next update: Mon 16 Mar 2026 21:00:35 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: VeJsAgNiuAtrJpnTyZ9yyYcexQG/fpDhsgFbyTsN2sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 21:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f3:4d:01:7b:f6:a0:34:f5:00:aa:c1:2d:fd:60:56:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Mar 15 21:00:35 2026 GMT
Not After : Mar 16 21:00:35 2026 GMT
Subject: CN=2b25a056d7615eba4a7742006321e9a02f5239b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:73:b3:d7:fa:b7:d2:d8:fb:f4:7e:02:7b:fc:
07:5c:a6:53:ee:4c:40:e7:c3:db:43:45:01:24:fa:
d9:ce:ee:00:86:17:b8:80:6d:c2:f8:df:c6:98:fb:
3a:56:ee:4b:b6:8b:50:c2:60:0b:9d:14:94:c2:bf:
09:8f:5e:19:c3:ae:c1:8a:9b:58:07:55:0c:de:3f:
19:fb:4b:8c:4e:81:bc:0c:f1:32:66:b0:44:90:1a:
e5:b7:3d:8f:6b:f1:08:d4:14:b0:af:98:8f:bc:7f:
54:cf:ac:7c:7f:27:16:b5:5c:2d:47:22:37:cc:b2:
98:8d:24:3c:57:6d:0c:38:e9:0a:cf:2b:82:2d:10:
7b:1f:13:3b:98:53:16:81:52:d9:89:ff:9c:f0:17:
ab:9e:b0:8a:ef:71:56:9c:92:f4:10:21:ae:88:4e:
d7:89:ad:45:04:df:51:37:85:ee:76:ae:c0:e3:1a:
0f:53:ff:85:8f:df:60:cb:49:3b:7f:a5:51:48:90:
04:ca:dd:7a:49:57:c3:69:be:a7:54:14:b2:f8:aa:
eb:95:1d:5f:b9:20:55:5d:09:ab:79:9b:70:47:90:
f0:3e:0f:c3:6e:0a:7c:8a:a4:b2:53:47:6c:3c:cc:
97:96:18:f2:70:1c:0a:36:09:3b:3b:ba:71:a8:d8:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:25:A0:56:D7:61:5E:BA:4A:77:42:00:63:21:E9:A0:2F:52:39:B9
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:ca:f8:c5:dc:2c:1e:f3:ab:51:0a:c9:ad:89:52:87:1a:c6:
3a:2c:0b:47:44:32:98:63:a2:e6:38:0b:9e:13:3a:a0:2c:e7:
4f:b2:2e:9e:9f:1b:02:68:6a:87:21:c9:33:71:93:b1:f3:f7:
64:15:64:d3:ab:03:5b:3d:09:cf:d4:e7:5c:b8:c3:9b:d2:e7:
2c:76:6f:03:ab:68:55:47:62:b3:81:c5:9b:fd:b5:d9:aa:8d:
63:21:77:de:fa:47:07:bc:a1:87:03:6f:41:cc:e7:6a:21:72:
8b:55:29:4f:1f:53:d0:2c:00:d5:f2:82:e6:d8:66:b3:70:f1:
87:06:e8:06:8a:4d:e4:90:8c:e6:2c:fa:ad:7d:77:a5:5f:34:
e1:10:8c:2e:b0:ca:5f:36:ed:6b:8a:44:4f:4b:f1:b4:b6:00:
a5:d6:fc:14:d2:25:b5:2c:35:5a:89:65:21:9e:3b:6c:78:ae:
a4:eb:58:0d:78:5d:0e:19:86:1e:aa:b9:3b:67:6b:09:00:9a:
f9:23:d5:41:3f:3a:c7:c1:82:16:dc:aa:3a:fb:7d:11:45:a2:
76:43:5a:ca:f6:f8:82:30:81:85:38:59:b2:e2:c6:aa:5b:c9:
64:87:b2:5d:a0:ed:de:de:44:a3:35:86:62:5a:4d:c4:17:98:
ee:fa:07:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 03:36:43 2026 by rpki-client