Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: 55oS+wVQoLPqqD9dWo/FGBAfdEA0kP/y46X2B5uKzf4=
Subject key identifier: 95:A7:D6:71:57:25:E1:C5:17:93:5E:8B:A6:94:F5:A6:26:52:9F:40
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019DDEE83A391B6E30252C448F227A3F215B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 13BF
Signing time: Thu 30 Apr 2026 15:00:54 +0000
Manifest this update: Thu 30 Apr 2026 15:00:54 +0000
Manifest next update: Fri 01 May 2026 15:00:54 +0000
Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: 7UTuExA4RBqru+y9DFZdK0Y/7vF8NUCYOHxHInP2cMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 14:07:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:de:e8:3a:39:1b:6e:30:25:2c:44:8f:22:7a:3f:21:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Apr 30 15:00:54 2026 GMT
Not After : May 1 15:00:54 2026 GMT
Subject: CN=95a7d6715725e1c517935e8ba694f5a626529f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:23:68:c2:b9:95:af:01:91:b3:97:0d:d8:02:
e2:fb:ba:5e:83:bd:89:d2:b1:6d:bf:50:dd:a2:81:
93:e9:91:81:59:42:36:4d:cf:94:b0:f3:22:6d:61:
28:18:ff:44:2e:31:b1:92:d6:23:d1:2e:dc:f7:98:
3f:dd:0b:04:97:39:9e:b7:e7:52:e2:c6:8a:b1:27:
58:23:98:34:63:5e:7c:cb:03:a4:80:1e:19:b4:cb:
54:d0:79:c6:4e:b5:22:90:f2:70:dc:c1:72:1d:1f:
b2:92:f1:20:79:7b:e5:b5:bc:3e:98:4f:53:73:71:
7b:7b:0c:19:c8:19:4a:56:77:8a:a3:ab:05:30:29:
23:b9:f3:9d:2b:c7:6f:d2:2d:b7:2a:c1:44:72:1d:
ae:3d:78:07:90:15:be:33:24:c6:af:b1:50:2a:c0:
59:7b:c2:d0:a9:0b:82:21:4f:12:bc:60:6b:4e:cf:
04:ba:87:0a:b2:17:df:21:18:67:00:ca:b6:e6:e4:
29:6e:d1:33:9c:16:ac:86:76:69:7e:02:73:f3:f3:
9c:18:e8:01:d3:10:f7:7a:21:b2:d7:da:c5:6d:0e:
69:ff:16:2a:79:4b:35:95:35:bc:2a:02:f1:99:43:
58:26:e4:10:a1:32:b2:03:f4:d6:1c:e1:03:f3:65:
62:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A7:D6:71:57:25:E1:C5:17:93:5E:8B:A6:94:F5:A6:26:52:9F:40
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f0:cb:86:12:e3:42:d2:ce:29:e2:b3:02:f5:07:a0:b0:0b:
e1:a8:e7:44:54:50:df:74:54:b8:af:7c:fb:84:6d:da:63:ba:
3a:dc:d8:03:0c:7a:68:d2:b3:d8:ff:6f:f3:6c:bc:c5:6b:1e:
72:50:22:0c:7e:1b:01:6b:c2:32:09:13:d1:28:4d:81:8a:78:
c1:3a:f7:ed:33:d6:91:37:5d:2f:a5:cb:03:55:09:96:36:43:
63:d9:c2:b0:4d:fa:a4:47:d9:6e:c5:b4:f6:9c:76:96:fc:e8:
a1:f5:c0:c9:93:6e:2c:fc:bd:5f:02:d5:d1:40:24:c4:c0:33:
d5:48:3f:62:74:6d:7b:c5:7f:6f:69:e6:ca:d3:26:cf:f5:9c:
40:50:38:7b:ce:aa:30:26:e8:a8:ba:3d:a1:ca:23:fa:a0:66:
b1:02:92:3d:c9:5b:f8:a1:2b:a0:f9:54:57:5b:d2:97:85:11:
19:8f:fc:02:aa:64:93:c7:f9:dc:32:67:b5:58:4c:9e:43:74:
2e:4e:cd:ab:40:85:dd:71:78:01:4a:fa:8d:e2:a9:55:ea:0a:
46:4d:9d:b9:85:aa:33:22:bc:d2:6c:e7:e8:20:31:9e:47:7f:
e0:af:21:a8:35:9f:5d:c3:38:08:3f:c1:6a:5c:e8:91:47:a0:
2b:4d:5d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 17:47:36 2026 by rpki-client