Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier: CYM4Qyjgt+HSkXGHBTrpPt9VDwi0ObVZyqxMu2F5QrI=
Subject key identifier: 83:28:38:AE:2A:27:E9:07:86:42:A0:26:8F:52:6E:47:E1:01:4A:8A
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 019D37C05CB070ED4E9AEA6E7D204E1D885E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:46 +0000
Manifest this update: Sun 29 Mar 2026 04:00:46 +0000
Manifest next update: Mon 30 Mar 2026 04:00:46 +0000
Files and hashes: 1: gjzgYMADmxh6Q8pdc-WWoEw7shc.roa (hash: 0P8JuvcWmnVuYZSLeNadkGvm4K+4XLNVcmqTDBqXszk=)
2: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: DgHgkl1rZDuCYLbeGsOQfdoA3ppBqhUVzP5n9ro+E2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:5c:b0:70:ed:4e:9a:ea:6e:7d:20:4e:1d:88:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Mar 29 04:00:46 2026 GMT
Not After : Mar 30 04:00:46 2026 GMT
Subject: CN=832838ae2a27e9078642a0268f526e47e1014a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:79:6c:f3:7f:30:c7:3e:33:af:d6:29:78:
57:54:b8:8c:4a:0a:15:86:5e:f0:53:2e:2d:f0:3e:
44:92:82:05:31:58:33:69:bb:88:9d:67:bf:fe:db:
21:b2:c9:53:e6:6d:ae:7b:f6:a1:d5:dd:54:d0:30:
2e:b2:02:55:a6:69:a2:ac:cf:37:13:8a:12:82:ba:
39:f2:7c:d1:33:3a:9b:cd:16:2c:ec:8f:96:c9:48:
92:28:f0:57:8a:b5:4e:5f:eb:c9:35:53:cb:54:f6:
d6:ec:5b:93:d3:55:e2:f9:d3:53:eb:e7:97:1b:40:
86:f5:9b:56:f9:b7:13:dd:a3:e1:14:c7:e5:94:48:
1c:f1:cf:53:43:0d:67:b0:d7:99:67:65:8d:2c:18:
ef:83:d4:a7:4d:4d:08:15:19:59:ed:d7:ff:d6:49:
8e:20:7d:26:7e:35:00:0c:5e:6d:2c:96:a6:e1:b3:
1a:42:7c:07:55:d3:e0:8c:4f:8a:d3:eb:36:dd:88:
0f:58:e6:fe:b7:0c:76:11:4e:eb:14:7b:70:08:8d:
65:de:b8:5b:0a:9d:24:c0:84:75:f7:76:70:fa:4d:
4e:32:34:00:40:a6:b9:d1:05:63:b4:f7:05:bd:55:
1b:59:4a:42:c9:25:ec:b2:ba:28:b5:69:6e:3e:0b:
0a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:28:38:AE:2A:27:E9:07:86:42:A0:26:8F:52:6E:47:E1:01:4A:8A
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:ab:07:c3:7f:33:c2:f0:73:9c:d8:17:f8:57:88:a8:29:ca:
17:19:30:8c:e0:96:61:50:7a:f1:be:7c:82:d8:c3:73:8e:0b:
ff:90:84:87:ef:a2:52:81:ae:f8:3e:df:45:02:f5:16:a3:88:
5b:64:d2:4c:8f:f0:1e:eb:60:7d:c6:d3:84:bf:03:01:02:47:
22:55:8f:23:71:85:43:33:d0:df:3a:8d:32:1b:e6:b1:17:e0:
2b:d4:9a:fd:1f:91:00:31:cf:32:68:e2:25:e1:e9:11:2b:a3:
d4:04:22:97:52:ad:96:a3:33:97:5c:b8:bd:0c:09:ab:ad:ad:
13:38:76:93:6e:08:00:0b:20:34:b9:c0:39:2b:29:1e:92:3d:
59:a4:d1:4a:a0:60:0c:3c:bf:75:17:5c:4f:43:4e:b7:79:f5:
d9:52:3b:24:76:4e:20:0e:fe:ab:14:4a:14:02:05:2d:ff:6f:
4e:88:75:36:0a:a9:e7:dd:66:ad:e5:ac:60:e4:04:46:e8:2d:
ac:88:01:65:9e:b1:98:4a:61:ac:1a:e3:a8:c6:08:62:0f:58:
e0:04:f7:7c:3c:04:8b:8d:ed:30:c1:41:56:7a:cf:c9:f0:b0:
56:46:2f:be:93:75:13:56:02:ae:48:75:e1:03:36:30:8b:8a:
89:d1:02:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:48 2026 by rpki-client