Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
File: ij8nyT77e7wLCv6OzCT3A50nUQg.mft (raw, json)
Hash identifier: zJyVKjc27i810tkf0bnGNQP08NQtT/PCR+FeqormoCs=
Subject key identifier: 8F:26:42:CE:2C:86:09:0F:9E:72:E2:FE:80:38:33:99:E7:30:E2:4B
Authority key identifier: 8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
Certificate issuer: /CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Certificate serial: 019D3A1C738415FE9E052996637E600B9825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
Manifest number: 0686
Signing time: Sun 29 Mar 2026 15:00:36 +0000
Manifest this update: Sun 29 Mar 2026 15:00:36 +0000
Manifest next update: Mon 30 Mar 2026 15:00:36 +0000
Files and hashes: 1: QdViC720LUGk8rbETFc7icn6Tx4.roa (hash: wxpHqs3D6Qy6qVLUeFjXp0nQiZFcnT7PBeNSBBjzhuM=)
2: ij8nyT77e7wLCv6OzCT3A50nUQg.crl (hash: kEseIYU+zQEMRbsHjm1r6lYMABgYo0esIuVjRwcFWxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:73:84:15:fe:9e:05:29:96:63:7e:60:0b:98:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108
Validity
Not Before: Mar 29 15:00:36 2026 GMT
Not After : Mar 30 15:00:36 2026 GMT
Subject: CN=8f2642ce2c86090f9e72e2fe80383399e730e24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bd:01:14:ab:3b:44:29:eb:69:d8:61:fe:74:
d3:9c:dd:3e:dd:f9:73:bf:50:0b:54:d4:6f:dd:0b:
ba:d4:bd:d7:04:fe:ec:c9:c9:5c:39:ed:66:45:31:
ea:c4:0e:58:93:f0:23:cc:85:41:aa:c9:a6:b8:75:
13:b4:30:e7:4c:50:bb:82:e3:92:69:40:52:e7:ca:
69:25:d6:6a:84:7d:e7:35:1d:98:e8:ce:18:88:5f:
96:10:91:f4:82:c8:1a:b4:68:f2:6a:8a:5b:fd:c5:
c2:c4:4f:40:6b:cb:e9:e5:fa:94:76:a2:dc:d8:b2:
80:39:d9:e1:01:4a:2b:4d:58:85:e2:80:df:3a:6c:
9f:4d:66:d0:29:a8:6d:9d:22:4e:17:d5:29:ec:ce:
e1:53:ab:e3:66:a5:07:9d:08:a5:02:83:26:9e:4f:
e5:00:7f:12:a5:0b:59:63:8c:9b:54:3f:49:dd:a4:
71:8e:5c:db:ab:ad:7b:94:9f:90:4f:41:64:ac:b0:
8d:0e:30:70:e0:b3:0c:9e:d8:29:b8:07:25:7f:cc:
d9:44:a6:2e:2f:8e:9e:ff:78:a8:fa:a2:40:7f:f9:
2b:e8:f3:df:20:e1:43:bc:98:69:1f:17:8d:08:99:
05:b1:7d:94:f9:76:86:a2:12:65:6c:99:c2:33:49:
25:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:26:42:CE:2C:86:09:0F:9E:72:E2:FE:80:38:33:99:E7:30:E2:4B
X509v3 Authority Key Identifier:
keyid:8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:51:84:e6:19:58:c0:ba:da:d5:00:04:54:44:3d:c9:06:3f:
69:2c:31:51:fc:47:46:b8:16:ba:35:a1:89:8f:c7:28:ae:4d:
ea:15:82:b5:dd:f0:dd:6c:2c:3b:6b:9d:3b:32:79:03:10:1a:
88:79:9c:31:be:05:c8:62:62:76:97:0f:c7:3b:21:3d:5e:c9:
91:40:b8:c3:86:5a:ab:17:b2:9c:ab:89:c6:d5:dd:14:32:af:
49:70:54:d8:23:c1:9a:76:32:47:19:f1:49:82:39:3f:a3:69:
dd:3b:04:50:94:87:10:69:09:83:b5:45:66:c5:3e:40:ef:23:
89:b9:3f:aa:3c:af:c0:92:e0:fe:3c:06:98:c1:a3:0b:20:04:
f7:fc:61:fa:e1:77:ef:a6:b8:84:12:9a:d9:2d:ce:db:bc:7c:
27:92:31:b3:56:6d:d5:ca:e9:45:e1:2f:47:8d:10:63:99:62:
68:0b:c2:b8:01:fd:79:f6:93:e5:44:da:69:69:6e:a9:84:5e:
27:56:2b:f4:26:b7:bb:cc:91:21:ad:c9:4d:3a:31:e4:71:ac:
f0:27:53:bf:8f:e2:3b:d4:e3:54:d8:87:66:5d:76:da:69:99:
99:53:da:31:7f:37:b2:fe:9e:e2:d5:92:4b:93:ea:44:41:6a:
ef:5d:b0:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HHOEFf6eBSmWY35gC5glMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhM2YyN2M5M2VmYjdiYmMwYjBhZmU4ZWNjMjRmNzAzOWQy
NzUxMDgwHhcNMjYwMzI5MTUwMDM2WhcNMjYwMzMwMTUwMDM2WjAzMTEwLwYDVQQD
Eyg4ZjI2NDJjZTJjODYwOTBmOWU3MmUyZmU4MDM4MzM5OWU3MzBlMjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm70BFKs7RCnradhh/nTTnN0+3flz
v1ALVNRv3Qu61L3XBP7syclcOe1mRTHqxA5Yk/AjzIVBqsmmuHUTtDDnTFC7guOS
aUBS58ppJdZqhH3nNR2Y6M4YiF+WEJH0gsgatGjyaopb/cXCxE9Aa8vp5fqUdqLc
2LKAOdnhAUorTViF4oDfOmyfTWbQKahtnSJOF9Up7M7hU6vjZqUHnQilAoMmnk/l
AH8SpQtZY4ybVD9J3aRxjlzbq617lJ+QT0FkrLCNDjBw4LMMntgpuAclf8zZRKYu
L46e/3io+qJAf/kr6PPfIOFDvJhpHxeNCJkFsX2U+XaGohJlbJnCM0klkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8mQs4shgkPnnLi/oA4M5nnMOJLMB8GA1UdIwQY
MBaAFIo/J8k++3u8Cwr+jswk9wOdJ1EIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWo4bnlUNzdlN3dMQ3Y2T3pDVDNBNTBuVVFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8yYzlhMjQtODU2MC00MzA3LWFjYzct
ZWJmODM0ZmU5YTE1LzEvaWo4bnlUNzdlN3dMQ3Y2T3pDVDNBNTBuVVFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8yYzlhMjQtODU2MC00MzA3LWFjYzctZWJmODM0ZmU5YTE1
LzEvaWo4bnlUNzdlN3dMQ3Y2T3pDVDNBNTBuVVFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1GE5hlY
wLra1QAEVEQ9yQY/aSwxUfxHRrgWujWhiY/HKK5N6hWCtd3w3WwsO2udOzJ5AxAa
iHmcMb4FyGJidpcPxzshPV7JkUC4w4ZaqxeynKuJxtXdFDKvSXBU2CPBmnYyRxnx
SYI5P6Np3TsEUJSHEGkJg7VFZsU+QO8jibk/qjyvwJLg/jwGmMGjCyAE9/xh+uF3
76a4hBKa2S3O27x8J5Ixs1Zt1crpReEvR40QY5liaAvCuAH9efaT5UTaaWluqYRe
J1Yr9Ca3u8yRIa3JTTox5HGs8CdTv4/iO9TjVNiHZl122mmZmVPaMX83sv6e4tWS
S5PqREFq712wNw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:39 2026 by rpki-client