Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json)
Hash identifier: p3vGLgT8eNCEhvi5e3N+Rr/MUYsGuZTMgxTjYn8nY44=
Subject key identifier: 33:91:90:13:19:F3:A3:19:C8:72:11:14:3A:33:82:10:CD:C7:BF:18
Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Certificate serial: 019D390A3EACA8573F1BF1848BEA4026EBF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:01:05 +0000
Manifest this update: Sun 29 Mar 2026 10:01:05 +0000
Manifest next update: Mon 30 Mar 2026 10:01:05 +0000
Files and hashes: 1: AjtEoktOSuBDBX_1V0FjXtFV21E.roa (hash: FD8hrHR+KRU8ianiGjkPHddLvgxoDCtLslx9ho1BrsI=)
2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: 06tJTaUelPtZpkPLg8Yy35ZVYsQSWsViGXsXwiNEc/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:3e:ac:a8:57:3f:1b:f1:84:8b:ea:40:26:eb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Validity
Not Before: Mar 29 10:01:05 2026 GMT
Not After : Mar 30 10:01:05 2026 GMT
Subject: CN=3391901319f3a319c87211143a338210cdc7bf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b2:dd:60:43:af:31:e2:c2:47:df:cf:ae:0a:
11:a4:b1:77:99:08:8c:5e:81:07:67:32:b4:84:1b:
fa:a1:e7:76:85:d3:89:9e:c1:06:0b:7c:cd:b5:7d:
ec:6e:0b:21:00:0d:fe:1a:36:33:f4:f7:f8:53:d2:
19:7c:ee:65:ea:55:78:b5:3e:6b:dd:31:ed:9d:c9:
99:3c:77:42:ef:8a:2e:a7:d7:64:5a:05:f6:50:ba:
cb:40:8c:fa:d6:41:f4:86:74:13:2a:8e:e9:a9:b9:
98:32:03:e2:ed:47:3f:aa:99:e0:64:49:90:59:38:
ef:c2:42:12:e0:d8:4b:0c:93:dc:8b:84:ed:01:d4:
aa:72:b9:ad:7a:f2:ae:37:d1:0b:b4:28:15:27:19:
e7:52:15:b5:42:c0:2a:3a:a4:4d:5d:6c:23:f7:fb:
7a:a2:55:7c:3d:f6:4f:89:32:85:d5:4f:c0:c0:f6:
34:ac:de:8f:ff:c4:5e:91:32:5e:f7:5b:c4:f8:62:
17:36:c3:02:8a:88:ea:2d:ae:e5:ed:6d:15:9d:ba:
b1:3a:be:c8:67:7c:ce:3d:2b:bb:61:13:51:80:ee:
5d:44:3a:a6:60:76:dd:5a:63:ea:19:69:45:80:25:
15:6d:88:12:33:ea:db:3a:04:ea:92:42:38:74:76:
dc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:91:90:13:19:F3:A3:19:C8:72:11:14:3A:33:82:10:CD:C7:BF:18
X509v3 Authority Key Identifier:
keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ef:e8:6e:f3:56:14:4d:22:ef:4d:78:55:3b:24:82:5d:81:
50:76:42:ea:fb:24:e6:db:3e:2a:bd:88:55:8f:3e:9d:c2:59:
6f:2d:f4:2b:3e:07:d2:4c:a5:63:34:4f:9b:a2:d8:66:e5:e3:
41:7a:81:a0:75:05:cf:43:f8:04:dd:4f:04:fa:90:5f:81:60:
a6:0f:42:7d:28:21:e8:85:4f:58:c1:4f:d0:7a:50:cb:5a:47:
4e:c1:40:21:14:4e:d0:2f:31:20:b8:79:76:31:99:36:13:2f:
d4:0f:a9:11:a4:b0:dc:dc:6c:7b:84:95:33:df:2d:1b:95:9d:
56:0a:28:a8:e9:0d:1e:2b:28:c0:1c:df:0c:dd:65:b8:89:11:
28:df:9a:fe:e0:43:91:36:9a:9d:c8:df:56:d7:ab:a8:f2:9a:
7c:9a:5d:05:bb:00:60:4d:a2:c1:64:0c:1a:08:7c:8f:64:a9:
3e:c0:b8:05:b5:65:c9:dd:5b:26:ff:59:2b:ac:14:dd:97:c6:
6f:90:c3:6a:7b:e0:38:8b:0c:07:43:20:35:cd:6b:c3:57:84:
a3:a6:f5:d6:42:fc:78:b7:75:a5:ab:96:35:d1:4b:7c:55:c6:
16:30:d2:fc:91:7e:4a:56:f6:88:48:7e:d2:e4:9d:69:1b:6d:
72:ff:76:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cj6sqFc/G/GEi+pAJuvwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZWYxNjM4ZDA5MTFiYTk4ODY0ZTk3OWM4NDI2YmE0ZjQx
YTI3MmUwHhcNMjYwMzI5MTAwMTA1WhcNMjYwMzMwMTAwMTA1WjAzMTEwLwYDVQQD
EygzMzkxOTAxMzE5ZjNhMzE5Yzg3MjExMTQzYTMzODIxMGNkYzdiZjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLLdYEOvMeLCR9/PrgoRpLF3mQiM
XoEHZzK0hBv6oed2hdOJnsEGC3zNtX3sbgshAA3+GjYz9Pf4U9IZfO5l6lV4tT5r
3THtncmZPHdC74oup9dkWgX2ULrLQIz61kH0hnQTKo7pqbmYMgPi7Uc/qpngZEmQ
WTjvwkIS4NhLDJPci4TtAdSqcrmtevKuN9ELtCgVJxnnUhW1QsAqOqRNXWwj9/t6
olV8PfZPiTKF1U/AwPY0rN6P/8RekTJe91vE+GIXNsMCiojqLa7l7W0VnbqxOr7I
Z3zOPSu7YRNRgO5dRDqmYHbdWmPqGWlFgCUVbYgSM+rbOgTqkkI4dHbcTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDORkBMZ86MZyHIRFDozghDNx78YMB8GA1UdIwQY
MBaAFIrvFjjQkRupiGTpechCa6T0GicuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDIt
OTRmOTdiM2EyY2UyLzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDItOTRmOTdiM2EyY2Uy
LzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQO/obvNW
FE0i7014VTskgl2BUHZC6vsk5ts+Kr2IVY8+ncJZby30Kz4H0kylYzRPm6LYZuXj
QXqBoHUFz0P4BN1PBPqQX4Fgpg9CfSgh6IVPWMFP0HpQy1pHTsFAIRRO0C8xILh5
djGZNhMv1A+pEaSw3Nxse4SVM98tG5WdVgooqOkNHisowBzfDN1luIkRKN+a/uBD
kTaancjfVterqPKafJpdBbsAYE2iwWQMGgh8j2SpPsC4BbVlyd1bJv9ZK6wU3ZfG
b5DDanvgOIsMB0MgNc1rw1eEo6b11kL8eLd1pauWNdFLfFXGFjDS/JF+Slb2iEh+
0uSdaRttcv92fg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:37 2026 by rpki-client