Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: iDQq4hBiWeSwciIk3wmv58CiH0FalbyUwhfPNSm3isw=
Subject key identifier: D8:18:14:CC:BD:CD:A3:69:CD:EF:49:46:31:36:18:CB:3D:DE:8A:EE
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019D37527547EF3B51FB39D969D4517892F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1823
Signing time: Sun 29 Mar 2026 02:00:43 +0000
Manifest this update: Sun 29 Mar 2026 02:00:43 +0000
Manifest next update: Mon 30 Mar 2026 02:00:43 +0000
Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: a+keucR6fbIoM6089qYSJxxhClBm+PZAQootbfU4A/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:75:47:ef:3b:51:fb:39:d9:69:d4:51:78:92:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Mar 29 02:00:43 2026 GMT
Not After : Mar 30 02:00:43 2026 GMT
Subject: CN=d81814ccbdcda369cdef4946313618cb3dde8aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7c:93:06:99:04:49:0c:72:c0:70:1c:9f:07:
b2:6d:ed:00:95:4e:fc:04:54:1c:ed:ae:34:62:63:
df:08:8c:84:aa:63:95:28:2d:d6:85:17:f7:3d:a2:
22:21:f3:56:ad:51:d3:06:bd:d8:40:ce:65:d9:da:
53:0c:de:e8:15:a8:0f:dd:4a:6d:d8:1e:b4:dc:6f:
eb:7a:58:26:39:5f:95:f5:98:15:78:5e:3c:f7:78:
e3:d5:79:68:7f:ca:43:a7:58:16:20:79:61:aa:58:
0c:07:8e:24:1c:78:6b:12:dc:b7:cf:19:32:f2:17:
0c:f6:4c:fb:43:0c:31:50:25:2e:fc:53:c7:bc:af:
20:c0:d8:56:2c:c8:4a:6a:6d:23:b1:6b:1c:1f:21:
88:d8:f6:34:c2:c3:52:98:9d:f4:2c:ad:34:10:18:
1b:f4:3e:c0:02:a4:cd:26:02:ee:8a:88:a7:96:de:
3b:9d:ca:0d:54:95:d6:37:99:4c:b6:50:7f:82:30:
71:a6:b3:82:a8:a5:2a:18:a7:da:68:d8:91:d5:cf:
cc:a4:ca:f2:1a:86:95:bc:d7:be:3d:49:cc:f9:c6:
e8:cb:ed:1e:ac:b9:3f:d2:e1:a9:63:aa:14:81:72:
da:db:1c:96:8d:c0:4d:49:c0:ec:75:97:3f:90:d4:
fb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:18:14:CC:BD:CD:A3:69:CD:EF:49:46:31:36:18:CB:3D:DE:8A:EE
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:64:3f:af:6d:40:95:e6:a0:ff:b8:d7:7a:b7:72:70:83:27:
25:25:9f:cb:a7:78:44:f9:7e:ab:db:1e:aa:d5:38:4a:e5:45:
49:68:d9:5c:33:48:ec:9c:5e:99:05:17:31:30:3b:23:60:a8:
06:cb:58:29:39:de:cf:15:6b:4d:2c:5f:09:02:b8:f4:7b:03:
29:f3:c1:e7:98:e8:c3:39:24:60:5d:d3:05:b1:b4:73:35:03:
6a:f5:bc:db:4a:2f:5b:2b:9b:fb:e6:4e:dd:11:46:00:da:f6:
0c:94:1c:5c:cd:8e:8d:7c:b4:83:49:3d:c6:5c:de:5d:8b:f0:
db:30:b7:75:c4:28:3c:37:8f:72:34:f5:0e:b2:d6:d4:af:49:
7d:f0:a5:99:c4:16:42:41:0a:fe:73:20:75:75:21:6f:32:37:
08:b9:10:94:6b:4a:1a:40:3b:f5:11:f4:1c:7b:90:d0:b6:5e:
b6:96:7f:b0:87:ae:b8:2b:b0:a1:f4:be:57:69:2e:9d:89:c7:
bc:d2:fb:a0:ff:0d:4e:43:62:6f:a7:7d:d9:f1:1e:69:a4:16:
50:ab:70:5a:af:a5:d1:39:38:37:7d:3c:9d:7c:a4:5e:71:3f:
43:b8:80:16:13:b0:2b:ab:65:1b:11:a3:fc:7a:b2:36:8b:45:
b5:42:90:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:38:58 2026 by rpki-client