Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: oh3LWoe53tSZXi+17N3X0EA07LNXhFbzUAIZXyJTViQ=
Subject key identifier: 86:79:F2:09:4C:5F:33:0A:2D:9F:3E:E8:C4:64:4A:A3:01:CB:73:92
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 019D3752FE686C74B69EDB337A6D98658531
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 02:01:19 +0000
Manifest this update: Sun 29 Mar 2026 02:01:19 +0000
Manifest next update: Mon 30 Mar 2026 02:01:19 +0000
Files and hashes: 1: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: XKOG3v6ismvKzCT6Fbm8BQIyfL8u4hR/d+u9JCoEYcU=)
2: ToOm_DRG8L881LK0bTvQrJEi9zE.roa (hash: DCNqoXRqfdwODxjtc8J2/AVxGOKRF24UDLD2fHtc4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:fe:68:6c:74:b6:9e:db:33:7a:6d:98:65:85:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Mar 29 02:01:19 2026 GMT
Not After : Mar 30 02:01:19 2026 GMT
Subject: CN=8679f2094c5f330a2d9f3ee8c4644aa301cb7392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b7:f0:76:4b:f1:9b:fe:c1:7f:21:f3:0d:17:
57:a1:84:0e:3c:73:54:eb:6d:8c:b4:56:c5:d2:4a:
e6:20:8c:5b:94:99:20:e6:8b:46:81:47:b1:e2:a6:
5f:3a:e2:a9:be:3d:49:34:00:5b:6a:ff:0c:f7:65:
0f:a6:5b:1f:73:cc:9e:5e:6d:68:b0:c3:3d:13:27:
50:c7:fa:a7:d9:a9:35:ae:b1:66:56:3c:87:92:f3:
e5:da:d7:ae:ef:3e:2f:58:1f:1a:b3:73:4c:73:03:
9f:ec:7c:e4:34:a8:dc:c0:83:11:e3:fc:a4:97:24:
47:51:74:d0:5c:66:32:a0:cf:94:7c:e4:1c:a3:e7:
18:6c:50:a9:6b:81:8b:62:34:88:3a:d4:4f:37:b6:
79:64:fa:0a:46:ee:24:70:a6:68:92:dd:cc:8b:02:
64:e7:3f:ae:f3:a2:81:bd:92:9e:99:87:d1:a8:64:
d6:72:4b:ce:9b:f6:39:c6:4a:ad:6e:25:91:23:7c:
4e:c6:94:55:f1:e4:ed:97:db:33:fc:96:78:ca:90:
db:56:38:05:55:24:7e:d8:67:25:6a:41:f6:91:72:
0d:a1:27:a2:93:3c:df:e1:b0:56:ee:0b:a2:09:37:
51:fc:b4:91:75:be:73:36:36:6a:f1:8d:8a:69:69:
83:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:79:F2:09:4C:5F:33:0A:2D:9F:3E:E8:C4:64:4A:A3:01:CB:73:92
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4a:6d:12:a2:0d:29:9e:f4:ba:7b:0e:bc:8f:81:3a:08:00:
e6:b7:87:64:51:13:36:7f:4e:80:ea:fe:6d:bd:14:d6:08:c0:
b0:bc:55:78:c7:91:f7:54:72:f5:af:4f:ea:f5:95:05:19:cd:
b9:d2:52:ac:bb:a1:57:24:3c:1a:a2:47:5a:61:6a:6c:5e:64:
f1:e6:86:99:04:19:f8:46:bc:e9:d4:55:74:62:83:1f:72:f1:
1e:83:02:9b:48:72:d4:b4:79:2b:fc:22:b1:c0:cc:c8:0c:85:
2d:44:80:d9:bb:0a:c9:4f:da:0c:4f:a8:21:85:78:64:73:25:
45:64:35:71:b0:c5:70:ee:b8:68:e9:3d:7b:4e:71:cb:1c:40:
23:d0:0e:95:d1:23:df:e9:52:06:6c:e4:e3:34:1e:63:2f:f8:
04:ea:7b:e3:d5:10:54:44:45:5a:74:ed:10:f8:cd:96:f0:33:
b0:58:04:99:44:db:09:20:15:e4:c1:0c:ad:54:ca:96:eb:45:
94:0a:5b:37:ba:b9:23:7b:4e:e3:88:8f:cb:6b:d9:5a:e3:12:
3e:85:b7:08:85:4a:9e:ef:f0:7d:cd:82:5a:0c:e1:d9:00:33:
3d:e3:d8:c8:d2:3c:92:48:57:fb:08:76:cb:db:20:54:64:94:
c6:ad:a8:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:23 2026 by rpki-client