Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
File: iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft (raw, json)
Hash identifier: C0aB8c7p9wpALXqBfehO1TVGh7wvoT6H0JASUAsv+lk=
Subject key identifier: 7F:6A:11:46:1F:E4:06:3A:2F:3A:F7:12:6A:98:EA:68:8C:7D:71:C5
Authority key identifier: 88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
Certificate issuer: /CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Certificate serial: 019D3978015C8E054B782A2E6CBD2BF1D243
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
Manifest number: 0637
Signing time: Sun 29 Mar 2026 12:00:59 +0000
Manifest this update: Sun 29 Mar 2026 12:00:59 +0000
Manifest next update: Mon 30 Mar 2026 12:00:59 +0000
Files and hashes: 1: cQCDgJdM56OvB-BfvF6zionxI8Y.roa (hash: +/gYe8nRfG+QFdVNaYVDkUqqDuLW/SmfqR2wjvDlTHY=)
2: iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl (hash: JZX44d1LD0jAjzM1VIOSvi2o1Jw846p5phqXsEJJvis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:01:5c:8e:05:4b:78:2a:2e:6c:bd:2b:f1:d2:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Validity
Not Before: Mar 29 12:00:59 2026 GMT
Not After : Mar 30 12:00:59 2026 GMT
Subject: CN=7f6a11461fe4063a2f3af7126a98ea688c7d71c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e8:88:2c:b0:d8:ad:74:ed:e0:ae:7d:cb:5a:
6e:64:db:be:22:ca:ed:91:67:d0:17:13:a0:da:fc:
79:28:f1:64:5f:5c:85:2a:d3:dc:bd:12:9a:4f:7a:
19:cf:ee:2f:66:36:2a:84:8e:94:24:bd:ef:02:d2:
ea:05:2b:d0:49:3c:62:0c:95:c2:a9:3c:46:f5:78:
0b:00:6c:2f:83:31:ab:18:4a:dd:ce:92:c8:c4:b8:
5c:d4:52:6e:e2:e2:55:93:e8:e4:e7:0c:6c:11:cb:
99:1a:f0:3c:b2:ba:79:4a:75:6e:76:42:a4:23:3a:
45:d7:7c:c8:3d:b5:ca:94:82:98:20:e8:13:f0:21:
83:c6:be:d4:59:c8:4f:76:2a:12:ce:0e:84:2b:29:
b6:9e:03:5e:61:78:1a:e0:10:72:5f:33:14:b4:54:
1c:ea:ef:d2:e9:c8:dc:f0:31:71:8d:db:85:f3:4b:
47:e5:60:e5:72:f9:3e:83:2f:17:df:cc:ff:bf:f2:
93:d1:1a:86:d7:78:98:63:2e:f1:c7:bc:8b:90:65:
b1:fc:87:7e:30:c8:74:cb:35:7f:b5:8c:ba:26:ba:
4f:4e:07:2a:ff:ed:13:83:25:c8:60:43:6a:7b:4a:
19:4b:6a:4e:0a:75:a7:a5:f4:1a:04:bc:52:e8:6b:
5b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6A:11:46:1F:E4:06:3A:2F:3A:F7:12:6A:98:EA:68:8C:7D:71:C5
X509v3 Authority Key Identifier:
keyid:88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:df:9b:f6:d2:d3:4b:3d:8c:11:c5:3c:4c:a6:b5:e8:9c:4b:
9b:d8:10:11:00:8c:52:98:f8:c4:2b:9a:de:e9:16:fe:a6:d6:
90:c3:8a:65:d8:0e:4f:fb:09:59:64:e2:b9:e5:33:8e:0e:56:
fa:90:e7:ca:dd:f6:8e:59:20:f0:58:c3:5e:a9:61:04:8e:c6:
c1:35:7e:d5:50:d8:ee:f4:5b:45:63:dd:0c:b2:dc:cd:0b:88:
20:d6:dc:ca:c3:87:e5:ae:3b:24:4c:17:b9:27:b8:a7:14:04:
4f:8f:2e:bf:1a:5e:81:64:62:a7:18:43:2a:c7:27:69:ea:25:
f3:85:02:68:e4:35:87:da:3a:b3:1c:9e:86:07:67:e5:aa:2a:
d8:58:32:31:76:3a:f5:ba:f9:d3:92:5d:0c:c4:1d:05:7b:ce:
7a:9e:e1:4b:3e:97:65:5d:b3:25:66:12:3c:71:02:b3:dd:ed:
4d:1b:1e:46:52:8d:ac:e0:25:4f:63:8b:13:ff:37:a3:6e:96:
22:b2:d4:dc:5b:2d:ad:5f:e0:03:cd:c8:7d:cf:d2:39:f1:09:
23:89:35:6e:fa:65:8c:74:93:bf:8e:f4:54:9c:4c:53:7f:64:
05:fd:34:1d:da:83:9b:07:ad:f2:30:2c:71:6d:60:96:8c:6f:
a9:c0:22:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05eAFcjgVLeCoubL0r8dJDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZTlmYTIzZGE0ZmU5N2FhOWUwZjM5MTE1NjIwNTU5YTI5
ZjZiNzAwHhcNMjYwMzI5MTIwMDU5WhcNMjYwMzMwMTIwMDU5WjAzMTEwLwYDVQQD
Eyg3ZjZhMTE0NjFmZTQwNjNhMmYzYWY3MTI2YTk4ZWE2ODhjN2Q3MWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+iILLDYrXTt4K59y1puZNu+Isrt
kWfQFxOg2vx5KPFkX1yFKtPcvRKaT3oZz+4vZjYqhI6UJL3vAtLqBSvQSTxiDJXC
qTxG9XgLAGwvgzGrGErdzpLIxLhc1FJu4uJVk+jk5wxsEcuZGvA8srp5SnVudkKk
IzpF13zIPbXKlIKYIOgT8CGDxr7UWchPdioSzg6EKym2ngNeYXga4BByXzMUtFQc
6u/S6cjc8DFxjduF80tH5WDlcvk+gy8X38z/v/KT0RqG13iYYy7xx7yLkGWx/Id+
MMh0yzV/tYy6JrpPTgcq/+0TgyXIYENqe0oZS2pOCnWnpfQaBLxS6GtbAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH9qEUYf5AY6Lzr3EmqY6miMfXHFMB8GA1UdIwQY
MBaAFIjp+iPaT+l6qeDzkRViBVmin2twMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU9uNkk5cFA2WHFwNFBPUkZXSUZXYUtmYTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS82ZDE1YzAtODBjYy00ZWRmLThmMTQt
M2UyNDc4OTQ3ZTZlLzEvaU9uNkk5cFA2WHFwNFBPUkZXSUZXYUtmYTNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS82ZDE1YzAtODBjYy00ZWRmLThmMTQtM2UyNDc4OTQ3ZTZl
LzEvaU9uNkk5cFA2WHFwNFBPUkZXSUZXYUtmYTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARd+b9tLT
Sz2MEcU8TKa16JxLm9gQEQCMUpj4xCua3ukW/qbWkMOKZdgOT/sJWWTiueUzjg5W
+pDnyt32jlkg8FjDXqlhBI7GwTV+1VDY7vRbRWPdDLLczQuIINbcysOH5a47JEwX
uSe4pxQET48uvxpegWRipxhDKscnaeol84UCaOQ1h9o6sxyehgdn5aoq2FgyMXY6
9br505JdDMQdBXvOep7hSz6XZV2zJWYSPHECs93tTRseRlKNrOAlT2OLE/83o26W
IrLU3FstrV/gA83Ifc/SOfEJI4k1bvpljHSTv470VJxMU39kBf00HdqDmwet8jAs
cW1gloxvqcAieQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:49:37 2026 by rpki-client