Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: Y0m7EJakqgQer8f9W17nL187X8nkdTG8OLyjK6YsE3o=
Subject key identifier: 8A:41:5E:F7:BD:5E:E9:27:CF:6E:07:14:B8:3C:FD:59:8C:62:EE:60
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019D38D3281DF4B59754C1E3B07FF02A4EF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 118F
Signing time: Sun 29 Mar 2026 09:00:55 +0000
Manifest this update: Sun 29 Mar 2026 09:00:55 +0000
Manifest next update: Mon 30 Mar 2026 09:00:55 +0000
Files and hashes: 1: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: h9eJmn8MNf30a3fvDrYOox2HFr4y6yQ5s0L1Tb3Rh0w=)
2: bnpZWoK19n1XzIl8GBiTgjFaI8E.roa (hash: +AVNEsf0hyxywK+MPw4MlTXuOoeM9Lhba5oG66zfeHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:28:1d:f4:b5:97:54:c1:e3:b0:7f:f0:2a:4e:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Mar 29 09:00:55 2026 GMT
Not After : Mar 30 09:00:55 2026 GMT
Subject: CN=8a415ef7bd5ee927cf6e0714b83cfd598c62ee60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:60:59:a7:95:eb:99:62:94:9c:c9:2c:a8:
e4:56:f4:f9:da:8e:fd:07:27:5d:d0:33:47:8e:99:
9b:09:57:fb:b4:22:3c:83:58:5f:07:be:1b:00:6b:
68:a6:e6:fb:a0:9c:ed:f0:c0:74:86:d9:c7:5b:09:
df:0a:03:50:1e:64:39:ac:a4:3a:2c:b4:3f:22:06:
b3:fb:dd:87:6a:16:7e:5e:9a:ff:92:b5:ec:1e:04:
b0:58:35:bf:db:04:c6:70:24:ac:42:d2:67:33:58:
ef:d4:09:de:80:0a:2b:de:ec:2c:62:7a:cb:59:e4:
c8:f6:cf:37:11:00:76:d2:06:fb:49:e3:ef:e7:65:
ef:34:b0:09:4e:94:29:00:b6:d2:27:82:90:da:00:
08:6d:88:02:56:92:08:b4:73:e5:9d:f7:c9:10:5a:
f4:ca:a3:b6:f5:fe:c7:63:9b:fb:55:51:17:f6:88:
3f:f8:19:80:81:7a:7a:43:c1:4c:dc:36:da:bf:1d:
2b:85:81:72:1c:f9:b3:a2:76:4d:d7:45:d6:a4:63:
8d:47:2d:e2:0b:d4:e2:bd:58:f4:77:d6:72:45:dd:
8f:06:60:c2:f4:91:0e:4b:de:4b:43:ee:b8:59:ef:
4c:9d:7d:04:c4:97:99:4f:d5:80:7d:51:da:0c:7f:
60:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:41:5E:F7:BD:5E:E9:27:CF:6E:07:14:B8:3C:FD:59:8C:62:EE:60
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6b:b7:6e:14:35:9a:bf:ed:b7:93:4a:10:22:14:3a:9b:43:
0f:7e:c3:a3:1c:f6:f3:73:34:c2:18:82:2b:8c:02:90:b6:f2:
ec:b3:7d:c4:0b:20:6f:56:f1:e7:0e:b5:e9:a6:f0:ad:49:92:
51:da:7c:65:51:97:2a:f3:76:0c:7e:35:5b:af:f4:54:bd:4e:
b3:94:fa:d5:88:54:0b:21:d2:56:ea:7a:ab:2b:98:1d:b0:7b:
5f:6e:4e:9d:67:6b:4f:fc:4d:44:34:4c:6d:49:5f:06:5a:2c:
63:cb:42:2f:3f:ce:00:60:86:81:85:58:0e:5e:69:57:63:86:
ad:f7:0c:67:6e:21:1c:6d:8e:4e:cc:a4:1a:68:32:d4:07:59:
89:0c:b5:7f:e9:c0:9b:0e:5b:63:50:de:2f:56:2d:be:3e:6f:
59:c9:a8:e4:89:bb:29:e3:7a:06:3a:21:f6:36:68:c2:d9:b7:
44:d4:36:39:26:f6:86:02:82:83:e4:62:73:f4:76:a8:b9:b6:
43:16:af:d4:9d:b0:a3:65:7d:69:cb:0e:75:b4:6c:89:08:24:
25:52:1f:77:75:e5:33:fa:d0:f5:b7:f4:f2:e6:f8:45:ff:ed:
51:d6:3d:c4:ce:24:cf:a9:95:86:57:9a:da:46:5f:b7:be:dd:
44:43:ab:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:40 2026 by rpki-client