Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: H42BzUu1m6F54rFMmzr+5SbA1J3aIPZD7ojZUVmGJFk=
Subject key identifier: 7C:6E:1F:96:8B:33:4C:45:BD:FD:52:54:14:24:5F:ED:1B:90:E5:89
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 019D37F78E0C79C74AF6DF09054D39256397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 0737
Signing time: Sun 29 Mar 2026 05:01:03 +0000
Manifest this update: Sun 29 Mar 2026 05:01:03 +0000
Manifest next update: Mon 30 Mar 2026 05:01:03 +0000
Files and hashes: 1: C15rJO_bJRsVwZitZCSgh0qDMBk.roa (hash: rFrB85LTHmEZy4HaNwBvd/+Qzbn2vKgCWTAZhL3DIhc=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: qTv29sY1sTqm7+7noMGq10ru8Kqd5kdvQONT6FalyeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:8e:0c:79:c7:4a:f6:df:09:05:4d:39:25:63:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Mar 29 05:01:03 2026 GMT
Not After : Mar 30 05:01:03 2026 GMT
Subject: CN=7c6e1f968b334c45bdfd525414245fed1b90e589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:04:de:f5:9c:2d:1b:32:99:98:f0:50:aa:99:
e9:e3:46:a4:17:7d:22:53:d5:00:e2:6b:ad:f2:53:
5d:c2:c4:f7:8a:22:cb:bb:52:56:a6:1a:4b:f3:c5:
8f:7c:e4:96:f8:fc:5e:9d:65:65:12:b0:6f:25:f4:
f7:d3:86:7c:80:4a:3c:f3:ba:c5:9d:d0:19:12:3d:
31:49:d8:c6:e7:15:92:f7:b6:85:52:b7:d5:e1:ec:
9b:65:31:0a:50:f5:1f:fe:b5:9c:e4:36:c9:16:df:
43:86:00:51:5f:33:31:d7:2c:06:34:69:16:4f:9f:
0f:28:e6:ec:06:21:c7:df:a3:03:a1:47:61:e5:1f:
b4:59:e4:25:bb:2c:91:f3:92:e1:5b:01:c2:c8:3b:
72:87:2b:d1:08:d8:41:18:fb:e2:cd:67:90:f9:82:
bd:d4:a6:02:c8:d0:9a:2b:28:5e:0e:08:8c:70:51:
30:35:e8:64:a5:71:ba:1c:71:ab:8b:1b:d9:c3:7c:
56:07:96:7b:b3:95:c5:12:29:f1:56:2b:d8:85:08:
43:c6:87:77:09:d1:98:74:ed:bc:56:36:e8:c5:d4:
80:9b:58:08:c4:20:98:b1:64:b7:79:d8:c6:af:6c:
2e:7d:13:d0:5f:b7:c5:fc:ad:7e:70:2f:d0:9c:84:
92:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6E:1F:96:8B:33:4C:45:BD:FD:52:54:14:24:5F:ED:1B:90:E5:89
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:84:dc:ca:ae:c7:59:23:76:b7:8d:a5:d6:3a:3c:25:bb:44:
60:71:ac:3d:04:df:e1:f9:33:86:55:00:6d:9a:5e:b0:fc:56:
25:47:39:b8:4f:cb:75:8f:ef:63:33:84:3c:7d:8c:b5:84:43:
81:cc:ad:43:3f:6e:8c:2c:72:59:1c:e4:a6:60:0c:ac:67:1d:
f8:76:7b:03:96:ae:01:5e:fa:2b:0f:03:83:60:c4:20:4e:a2:
b0:05:c9:f0:d7:10:7b:6c:ac:56:15:b4:f2:f2:76:3a:df:03:
04:43:8d:34:94:9a:57:8a:39:3a:20:06:97:96:5b:6b:f7:e2:
6b:6c:04:68:69:0d:73:9f:ac:e8:f5:eb:f3:d4:32:31:7b:25:
9c:d5:0d:fe:21:48:78:86:43:2b:1f:50:1f:9a:d9:8a:61:e4:
96:a6:44:22:fa:ef:ee:80:d9:01:de:1a:29:be:fd:5f:85:a0:
b8:bd:e1:fd:34:94:fe:99:b8:9e:f3:98:8c:63:b6:ce:88:5c:
70:da:ec:ec:6a:84:17:f9:cb:59:70:43:9d:04:6c:ea:95:8b:
ad:ba:f0:6c:27:23:56:5a:55:29:d9:fe:30:ce:b2:5c:74:fe:
ce:2f:b4:5f:c3:78:6d:8f:ec:d4:fc:b3:ff:4d:d2:17:e1:98:
02:c5:56:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:53 2026 by rpki-client