Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
File: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft (raw, json)
Hash identifier: a0JaqZI9Yd0SfPDZTgRm5r8VYu/sAqWu9dLgRRGo9l0=
Subject key identifier: AF:38:52:B6:76:FA:4F:B6:C7:60:3F:34:94:FE:40:CF:0A:05:56:E2
Authority key identifier: 20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
Certificate issuer: /CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Certificate serial: 019D382E3ECB776EE2DDD0FA407DAA2CFE1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
Manifest number: 04D3
Signing time: Sun 29 Mar 2026 06:00:47 +0000
Manifest this update: Sun 29 Mar 2026 06:00:47 +0000
Manifest next update: Mon 30 Mar 2026 06:00:47 +0000
Files and hashes: 1: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl (hash: IaVr5/YmD8bjF7qzbjw+txU93AzlT8mcwaVt1ft4peQ=)
2: nZLcR_yXR-0QVOrPZOSeS_-bslo.roa (hash: B2ppS1gw4DWVMWucnYpphzHEsSRmHapQBZqWEMy4B3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:3e:cb:77:6e:e2:dd:d0:fa:40:7d:aa:2c:fe:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Validity
Not Before: Mar 29 06:00:47 2026 GMT
Not After : Mar 30 06:00:47 2026 GMT
Subject: CN=af3852b676fa4fb6c7603f3494fe40cf0a0556e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:8d:3d:1d:64:65:bf:9f:e0:42:8a:d7:cc:
9e:a3:56:f0:a1:4c:62:3c:d1:ce:78:b3:6b:b6:ff:
ac:cb:1b:d9:f6:64:a9:a2:a6:09:c3:b5:e3:ea:83:
bc:95:7a:f2:2b:cc:bd:83:d8:c6:28:cf:db:79:98:
9e:aa:aa:72:1a:69:52:f9:91:eb:0c:86:b3:58:92:
63:6b:ad:ed:b5:10:e8:d8:92:4f:78:4e:ab:60:50:
e2:d8:61:0e:dd:78:c7:a3:8f:01:ef:5c:98:51:f8:
90:9e:34:eb:35:c9:36:7b:29:37:0f:9d:8e:6f:da:
03:ff:d3:aa:57:73:a4:4b:ff:60:95:a7:80:3f:25:
5e:c3:c0:cb:be:13:41:3a:12:fe:a1:21:ad:a3:8f:
ac:37:65:6a:32:65:8e:34:23:ad:72:d3:36:07:59:
2b:a4:c5:52:4c:77:b9:3a:d2:b9:2a:da:6f:83:f2:
b3:12:e1:31:b2:e4:54:d2:1e:d3:03:46:a3:22:c0:
5c:25:f5:f2:34:c9:be:e6:ad:f9:d6:55:87:66:16:
2d:64:2c:8f:b2:88:c1:76:0b:0e:92:81:ea:15:06:
4d:4c:64:c9:f7:11:fb:c1:e6:ae:b0:03:2e:34:bb:
0b:b1:af:6b:b5:32:28:0d:3a:12:d7:dc:99:1f:d5:
9c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:38:52:B6:76:FA:4F:B6:C7:60:3F:34:94:FE:40:CF:0A:05:56:E2
X509v3 Authority Key Identifier:
keyid:20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4a:db:28:49:1b:6a:02:eb:98:5a:b0:b9:38:8a:30:3e:85:
c7:2f:4a:30:82:8f:b5:74:c3:c3:f3:13:7e:d6:a6:0d:50:e4:
ca:91:8b:56:a7:85:db:01:49:48:4e:7e:27:77:f0:29:ce:54:
d2:18:92:47:52:b2:1a:23:a3:2a:50:59:d2:5b:62:c0:8a:3d:
8a:1f:4e:67:12:05:e9:4e:61:93:b5:f1:c4:92:57:38:97:d2:
e3:ab:f7:60:e0:a9:be:48:e7:d2:9f:ca:35:af:e5:e3:85:b1:
71:d3:5c:d8:f5:4e:ab:8d:43:1a:24:03:08:f8:44:f0:ee:fc:
b7:cd:11:1e:ba:24:13:5b:b9:94:b7:17:7e:29:a2:ba:d2:9b:
a5:c6:c7:6f:f3:d0:09:a5:3a:25:91:ef:f9:7a:11:13:2f:2b:
16:eb:cd:27:92:7e:81:84:86:f5:54:20:69:22:a4:33:fc:3c:
92:c2:d8:a4:e0:e1:e5:64:2a:f7:aa:c7:0a:54:5c:52:be:41:
ca:0b:16:0d:69:e5:b3:2d:60:6c:79:ef:88:47:63:60:e3:1b:
3f:cc:72:41:f6:04:cd:e2:ce:a9:64:13:eb:c9:77:e7:83:7b:
45:f1:17:66:70:d1:e9:d0:60:cb:14:1e:88:48:5a:0f:f4:a8:
20:a5:8b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:09:45 2026 by rpki-client