Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: Qj8Fi4XZZJRQDTJDFPBZksIWahc11YOG78DRplvyLPM=
Subject key identifier: 82:7C:3A:3C:3A:6A:1C:BE:6D:1A:DF:77:5C:72:9D:A7:FB:D5:5B:A0
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 019CE5FF4699CF85D110E2086C7B8B5CEFAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 1899
Signing time: Fri 13 Mar 2026 07:00:38 +0000
Manifest this update: Fri 13 Mar 2026 07:00:38 +0000
Manifest next update: Sat 14 Mar 2026 07:00:38 +0000
Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: mVnFsA2ccQh7JJVgV789/NAo14lKvavy3Vl2shJ93WI=)
2: QiXcXG4EDIRSf-VSNpu4RHBWAV4.roa (hash: 0qXAcwhMmlvzkuMEiWShTeGZUNL6+ryDi7ehHbJ1xl8=)
3: Tar1g33LvZCdpcq_JVPYhAJSdEk.roa (hash: QMkYB+0q1+Lk5nvo2OLotb9QUYic5rNjwNkq1hEO+78=)
4: ixwpJztfYUlUnPQNZhnkMR7K_yU.roa (hash: McdR8UEnDJLQe/Y5De9k6/QzPqtdNiKRIqwLfpPLq6I=)
5: rPnkzMR46g2upeGLwnbyd0fXnb4.roa (hash: flmLV+/lWpi4M1ZIkwy5iom73MDu5dXcw9z52gR1sjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:ff:46:99:cf:85:d1:10:e2:08:6c:7b:8b:5c:ef:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Mar 13 07:00:38 2026 GMT
Not After : Mar 14 07:00:38 2026 GMT
Subject: CN=827c3a3c3a6a1cbe6d1adf775c729da7fbd55ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:14:8d:7b:74:c6:8d:09:dc:c6:93:50:5a:
34:c0:23:21:d8:3b:b9:5a:e4:0a:d5:3b:f3:a1:f6:
ad:6e:a4:61:19:df:db:76:c6:83:da:e2:4e:e5:9a:
aa:d1:92:a3:e8:c9:0d:8b:36:b6:53:68:d7:12:32:
35:5d:72:bd:5f:dc:b2:df:28:ba:f5:28:c4:c3:04:
92:ab:e9:a3:53:1d:eb:45:59:85:f6:46:e2:07:bb:
9f:37:af:1f:5c:ba:64:49:25:8f:28:68:f5:df:3a:
58:4b:fd:93:85:97:9f:b3:a7:4a:41:59:7d:30:1a:
46:56:fb:63:23:c7:2f:5f:81:f3:12:a8:9b:46:84:
58:2b:df:61:78:83:c7:15:26:4c:92:6a:d4:c8:fb:
eb:cf:c3:ea:4e:99:d9:f9:3e:36:65:1a:27:3d:ff:
90:e1:fa:6f:27:23:0c:7c:76:0b:a1:51:3a:ba:8e:
ce:1e:0c:37:9b:a9:bf:83:0b:ec:f0:38:18:84:f7:
3f:bd:cf:53:fb:de:20:10:3a:50:87:3d:5b:75:4c:
73:e0:55:f6:d9:e0:0d:9a:48:d1:f4:1d:f9:59:e6:
96:88:73:4b:12:2b:d6:22:8f:c9:cb:ee:ea:6c:93:
20:1a:9c:ae:af:f7:8e:c9:fe:92:c3:52:6a:75:84:
a1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7C:3A:3C:3A:6A:1C:BE:6D:1A:DF:77:5C:72:9D:A7:FB:D5:5B:A0
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:ad:65:54:6e:c0:1e:6f:74:66:07:9a:3a:29:79:8d:1d:a6:
0c:4a:8e:a3:e4:dc:a0:2e:e6:0a:7b:44:67:ca:51:8a:83:ca:
49:11:41:6b:3c:fe:35:0f:c8:97:7f:c5:2c:de:5a:cc:89:85:
74:2a:df:d6:73:a0:33:97:d5:be:ec:50:1d:02:00:04:e7:bf:
a1:52:a8:e5:e8:06:80:a7:73:8a:5d:56:05:bb:9c:e1:20:7f:
90:26:b6:7e:1c:2f:db:a4:e9:5b:d5:80:28:ee:35:a0:42:5b:
dd:7c:4c:19:13:45:04:51:6d:d9:94:0d:42:f4:51:50:08:74:
b5:b9:60:3c:a3:be:45:61:18:84:ce:2e:9f:17:9b:99:49:6f:
47:3b:43:4c:27:c8:8e:73:01:4c:64:5f:4b:62:66:63:69:3b:
6a:70:c4:da:d4:5a:61:29:07:35:30:68:c3:86:b5:2e:8a:1b:
e3:83:02:64:7e:f5:ee:53:71:8f:ff:1f:49:6c:64:75:e5:17:
01:d7:9b:4f:56:c9:77:b2:1a:7a:08:c1:f8:a1:7c:49:1d:25:
07:44:11:b4:b3:4e:50:63:1a:eb:14:30:6f:5f:7d:c5:7f:e0:
51:f0:f4:5a:6a:a9:a2:f7:11:d3:a1:7a:41:35:15:b5:d6:c1:
13:9d:9a:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzl/0aZz4XREOIIbHuLXO+qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2
MGM4ZGUwHhcNMjYwMzEzMDcwMDM4WhcNMjYwMzE0MDcwMDM4WjAzMTEwLwYDVQQD
Eyg4MjdjM2EzYzNhNmExY2JlNmQxYWRmNzc1YzcyOWRhN2ZiZDU1YmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtugUjXt0xo0J3MaTUFo0wCMh2Du5
WuQK1TvzofatbqRhGd/bdsaD2uJO5Zqq0ZKj6MkNiza2U2jXEjI1XXK9X9yy3yi6
9SjEwwSSq+mjUx3rRVmF9kbiB7ufN68fXLpkSSWPKGj13zpYS/2ThZefs6dKQVl9
MBpGVvtjI8cvX4HzEqibRoRYK99heIPHFSZMkmrUyPvrz8PqTpnZ+T42ZRonPf+Q
4fpvJyMMfHYLoVE6uo7OHgw3m6m/gwvs8DgYhPc/vc9T+94gEDpQhz1bdUxz4FX2
2eANmkjR9B35WeaWiHNLEivWIo/Jy+7qbJMgGpyur/eOyf6Sw1JqdYShhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJ8Ojw6ahy+bRrfd1xynaf71VugMB8GA1UdIwQY
MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt
NzNmN2QxMTBiODJhLzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh
LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXq1lVG7A
Hm90ZgeaOil5jR2mDEqOo+TcoC7mCntEZ8pRioPKSRFBazz+NQ/Il3/FLN5azImF
dCrf1nOgM5fVvuxQHQIABOe/oVKo5egGgKdzil1WBbuc4SB/kCa2fhwv26TpW9WA
KO41oEJb3XxMGRNFBFFt2ZQNQvRRUAh0tblgPKO+RWEYhM4unxebmUlvRztDTCfI
jnMBTGRfS2JmY2k7anDE2tRaYSkHNTBow4a1Loob44MCZH717lNxj/8fSWxkdeUX
AdebT1bJd7IaegjB+KF8SR0lB0QRtLNOUGMa6xQwb199xX/gUfD0WmqpovcR06F6
QTUVtdbBE52avg==
-----END CERTIFICATE-----
Generated at Fri Mar 13 08:51:33 2026 by rpki-client