Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json)
Hash identifier: /5kS9xOlqcCEHTYcSBdnXwXf7kFB0ijhofOd5G4ZLkE=
Subject key identifier: C8:37:58:16:0A:C2:1C:AE:23:75:D1:99:E4:93:03:AD:B9:C5:7E:8C
Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a
Certificate serial: 019D1AFF9FBB776BF519821FF75C69E247FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
Manifest number: 1882
Signing time: Mon 23 Mar 2026 14:00:53 +0000
Manifest this update: Mon 23 Mar 2026 14:00:53 +0000
Manifest next update: Tue 24 Mar 2026 14:00:53 +0000
Files and hashes: 1: cFtA2whI-5eSAd_xz6FflVfrfcA.roa (hash: rjwPdM8tVlnPByunwjAWM9HihlVqQjzJw824S3HbwPc=)
2: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: pAsMTkxvteDGegAdTVDj1VNHEiSz8l8bGCYzKIewpJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 24 Mar 2026 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1a:ff:9f:bb:77:6b:f5:19:82:1f:f7:5c:69:e2:47:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a
Validity
Not Before: Mar 23 14:00:53 2026 GMT
Not After : Mar 24 14:00:53 2026 GMT
Subject: CN=c83758160ac21cae2375d199e49303adb9c57e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:1a:d4:55:0f:f1:53:5a:f6:63:b6:4d:93:
2d:e8:7c:d7:80:da:cc:a7:0d:2a:ff:1e:17:47:46:
a2:9d:1c:92:48:88:2e:30:59:e6:69:c5:12:be:ff:
89:c8:e1:33:87:84:4a:b7:12:74:ec:43:e5:63:ee:
e8:50:df:98:98:61:23:b6:28:b0:be:36:ff:ec:95:
ae:51:2b:a3:67:6f:0b:e8:54:ff:55:a4:7d:3d:f9:
22:c1:c9:35:7a:2e:45:84:d5:0d:d2:9d:b3:6b:25:
fe:01:c1:0e:16:33:42:4f:89:c0:4e:56:59:e2:4d:
00:d1:9a:da:d9:c2:86:e1:78:c7:ef:86:74:a6:37:
4d:27:46:81:7c:11:08:c5:60:78:ad:4f:e5:a1:ae:
fc:78:d6:e7:5e:f9:e3:9d:93:9a:48:c9:7c:79:3a:
2e:51:2d:a4:16:bb:8d:3a:09:59:4e:fb:2b:df:d0:
a8:de:03:bc:44:d6:f5:ba:fa:69:ab:7b:07:24:0a:
fb:c5:1d:ca:de:0b:86:cf:7e:d2:13:2b:2d:d0:5c:
e6:8a:00:48:19:6d:e0:04:64:69:6d:66:94:83:7c:
e6:76:4e:97:0e:28:1f:68:f9:27:ff:76:a4:7a:28:
28:01:88:d6:f8:26:b6:91:20:7d:b1:02:96:27:83:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:37:58:16:0A:C2:1C:AE:23:75:D1:99:E4:93:03:AD:B9:C5:7E:8C
X509v3 Authority Key Identifier:
keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:bd:5b:e4:0c:f0:d6:d9:bd:57:06:fa:a3:2c:0b:cf:b1:91:
08:a9:35:47:fe:c1:56:01:20:2f:36:4e:22:a1:3c:94:33:6b:
fb:e6:1c:2e:59:e2:58:ad:29:28:5c:dd:15:c1:c7:3b:6c:18:
19:b1:d7:f4:75:64:6e:b4:37:d1:cf:fa:d3:94:79:01:02:c5:
59:d0:5d:ed:ff:e0:98:3e:66:1e:42:2d:73:e8:e0:19:9a:ff:
f1:26:c1:79:e6:18:aa:f5:a5:ad:fb:eb:3b:c5:59:ac:56:3e:
4e:80:4b:47:64:0e:ed:e6:ce:1d:c3:55:f2:d9:d8:5c:c2:f2:
15:05:a7:bd:3b:ed:12:9b:b7:15:22:28:f3:37:4d:84:d5:5a:
83:2f:ca:5d:49:e7:5b:b4:4e:43:38:67:65:97:c7:46:80:df:
ec:e3:cb:0f:4a:f8:01:1e:6b:ab:1b:42:9c:ab:4f:a0:32:29:
d0:3b:d4:3c:ce:f5:c8:90:fd:ea:2c:c6:56:a4:5a:cc:54:c7:
b6:00:1a:df:db:e0:58:21:ac:b5:66:d4:59:fd:5f:bc:dc:9c:
84:fb:f2:53:f7:51:5b:5c:9d:6d:62:a6:6a:6a:f8:90:ba:a6:
6c:1d:e3:7e:c6:d6:16:f9:cb:5d:41:98:91:6e:f2:6f:63:dc:
ef:ec:5f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 21:57:16 2026 by rpki-client