Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: 3sXK9zj26aMrVOBwOX5wrkp+cdhH9gC/96qOGuu4tyc=
Subject key identifier: 9D:1C:3F:1C:D7:E4:35:6F:22:57:21:7E:9B:1C:C9:14:A0:04:B4:44
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019CF53C3589B35D17A93A408AB99087F844
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 1346
Signing time: Mon 16 Mar 2026 06:01:29 +0000
Manifest this update: Mon 16 Mar 2026 06:01:29 +0000
Manifest next update: Tue 17 Mar 2026 06:01:29 +0000
Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: Y5r6Xhc6Ie19nXL2R6LmUsCJMwZ+3gwQ+RGCxMFDtU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f5:3c:35:89:b3:5d:17:a9:3a:40:8a:b9:90:87:f8:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Mar 16 06:01:29 2026 GMT
Not After : Mar 17 06:01:29 2026 GMT
Subject: CN=9d1c3f1cd7e4356f2257217e9b1cc914a004b444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:93:c4:33:f1:6d:4a:66:6e:df:25:ae:1a:13:
b9:e1:cb:3a:30:4f:39:eb:f7:34:64:bc:5d:9c:b3:
b2:e2:e8:82:b1:ee:65:d1:d7:91:99:55:d0:1d:90:
5e:3a:7d:83:9f:89:d2:56:8f:c2:09:a6:ab:d1:85:
22:5b:b4:6c:ba:5f:9a:a3:72:fc:e5:0e:75:0c:f1:
ad:09:a4:0a:d1:5f:00:1a:50:67:b8:64:2f:04:83:
68:92:db:32:44:f1:88:f0:2d:c1:63:f9:73:ac:e6:
b9:7e:49:a2:be:36:52:12:25:a3:2a:f3:c9:98:8b:
9c:86:cc:be:af:1e:db:75:ea:59:d8:41:e5:ac:3e:
5d:23:9e:73:b1:e1:cf:93:e3:22:8f:13:ff:83:54:
8c:3f:1d:dd:d6:ca:73:54:66:96:6b:77:d4:5a:3c:
43:f7:13:e5:29:d9:69:16:4d:fe:ac:07:53:a8:3a:
c4:2e:3d:11:24:62:92:b0:37:5f:28:a9:61:79:a8:
ac:3a:0d:cf:21:88:4e:15:5c:b4:d1:63:53:13:90:
4a:44:6b:1a:1b:16:5d:cc:8f:66:af:02:d6:23:ea:
c5:2d:e5:db:98:ae:62:81:aa:d0:01:26:37:7a:2b:
75:81:fd:57:73:17:e2:32:87:26:ad:f6:2a:25:b0:
b4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1C:3F:1C:D7:E4:35:6F:22:57:21:7E:9B:1C:C9:14:A0:04:B4:44
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:5a:c0:de:f3:72:41:fe:76:bd:5a:d0:8e:58:bf:31:1f:b3:
14:6f:4a:b7:cb:d7:d9:79:dd:63:b4:2d:15:0e:fb:8f:7c:a9:
67:fd:fe:f7:a2:1e:fe:c6:9f:57:cc:cd:66:87:4d:d2:d8:0f:
f1:00:23:ab:3c:2c:e0:03:c8:4f:41:91:1a:8f:3b:4c:f0:82:
25:ef:ce:d4:e6:1c:11:46:98:a6:e8:6a:ad:c2:9c:20:cf:a2:
43:15:fe:e0:05:c3:5b:c3:08:d9:4e:c8:0e:b5:49:d3:74:bd:
00:f0:06:8b:58:24:ca:6e:99:fd:af:50:c0:70:1c:6b:d4:65:
35:05:47:b5:ac:7d:fb:e7:74:70:d5:a2:1a:58:38:69:c0:31:
cf:6d:ca:6d:59:22:14:aa:ab:37:e0:f9:8f:40:ba:ef:7a:30:
c1:59:56:a2:a4:51:f0:40:43:98:48:7f:6a:7f:e9:0b:39:66:
f8:40:13:39:cb:9e:4f:ef:e3:95:40:3e:59:7a:be:5b:0e:3b:
3d:46:d0:0f:51:ae:40:b2:a3:ad:f2:5d:2a:ca:e5:13:ed:f8:
3d:2a:49:7a:c4:a4:16:2c:ef:83:61:e1:97:96:8e:61:2a:0e:
e3:f3:d2:a8:d5:6f:17:79:fe:fe:ca:58:30:54:dd:2b:d6:93:
eb:34:41:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZz1PDWJs10XqTpAirmQh/hEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw
OTE5ODYwHhcNMjYwMzE2MDYwMTI5WhcNMjYwMzE3MDYwMTI5WjAzMTEwLwYDVQQD
Eyg5ZDFjM2YxY2Q3ZTQzNTZmMjI1NzIxN2U5YjFjYzkxNGEwMDRiNDQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZPEM/FtSmZu3yWuGhO54cs6ME85
6/c0ZLxdnLOy4uiCse5l0deRmVXQHZBeOn2Dn4nSVo/CCaar0YUiW7Rsul+ao3L8
5Q51DPGtCaQK0V8AGlBnuGQvBINoktsyRPGI8C3BY/lzrOa5fkmivjZSEiWjKvPJ
mIuchsy+rx7bdepZ2EHlrD5dI55zseHPk+MijxP/g1SMPx3d1spzVGaWa3fUWjxD
9xPlKdlpFk3+rAdTqDrELj0RJGKSsDdfKKlheaisOg3PIYhOFVy00WNTE5BKRGsa
GxZdzI9mrwLWI+rFLeXbmK5igarQASY3eit1gf1XcxfiMocmrfYqJbC07QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ0cPxzX5DVvIlchfpscyRSgBLREMB8GA1UdIwQY
MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt
MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1
LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIVrA3vNy
Qf52vVrQjli/MR+zFG9Kt8vX2XndY7QtFQ77j3ypZ/3+96Ie/safV8zNZodN0tgP
8QAjqzws4APIT0GRGo87TPCCJe/O1OYcEUaYpuhqrcKcIM+iQxX+4AXDW8MI2U7I
DrVJ03S9APAGi1gkym6Z/a9QwHAca9RlNQVHtax9++d0cNWiGlg4acAxz23KbVki
FKqrN+D5j0C673owwVlWoqRR8EBDmEh/an/pCzlm+EATOcueT+/jlUA+WXq+Ww47
PUbQD1GuQLKjrfJdKsrlE+34PSpJesSkFizvg2Hhl5aOYSoO4/PSqNVvF3n+/spY
MFTdK9aT6zRB0w==
-----END CERTIFICATE-----
Generated at Mon Mar 16 07:30:48 2026 by rpki-client