Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
File: IKf8vlkxTDcraPIyIjgoseM6A-w.mft (raw, json)
Hash identifier: NW0kZdEi1r2LpZWhJX8duuUshhZuRjWRwv4UsSNsGBI=
Subject key identifier: 31:8B:0A:1D:AF:B2:61:1F:4D:97:51:CE:64:B6:D3:ED:C0:95:E6:92
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 019CE59167639F888F24ACBB45045B33EDD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
Manifest number: 14C4
Signing time: Fri 13 Mar 2026 05:00:37 +0000
Manifest this update: Fri 13 Mar 2026 05:00:37 +0000
Manifest next update: Sat 14 Mar 2026 05:00:37 +0000
Files and hashes: 1: 4ad3Sx3tHCKPvoySsJwPEN1dqk0.roa (hash: 9KW5traDiZ8b8YIka+3LA3dxjZd+hGHcIvyVnNUiXKg=)
2: IKf8vlkxTDcraPIyIjgoseM6A-w.crl (hash: M8ApuzD0zjFeXwOIfyX2yWZ1RXn8JZGNEgo91CD2D0M=)
3: k82VZQjPTfp29HOrsd4ebLlbLLQ.roa (hash: mCVrb2F3QQSAvERyzJs5ziCWnKSLVC3ur8XxDFUzHh0=)
4: w6ZIXPDpAeu5P7_mH6HZiqnkV9o.roa (hash: Yf1g7ljDU7te6N4XEGH4NkhfBi9rKgbfTnWehMLxzL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:67:63:9f:88:8f:24:ac:bb:45:04:5b:33:ed:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: Mar 13 05:00:37 2026 GMT
Not After : Mar 14 05:00:37 2026 GMT
Subject: CN=318b0a1dafb2611f4d9751ce64b6d3edc095e692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:00:38:bf:d3:ec:7a:d6:c1:e4:ee:68:94:
41:84:c2:ee:a1:ac:0e:d1:ef:3c:37:b4:34:e4:1e:
b1:d3:c5:12:97:c3:a2:95:b8:05:48:72:d5:d1:ea:
0e:7a:4d:c0:ab:84:eb:83:aa:3f:90:4c:03:fa:2d:
58:1b:2c:16:e9:6f:d4:3d:ed:27:55:6e:09:77:24:
06:30:1f:21:a4:2a:b5:b5:79:b2:17:cf:39:f3:17:
5d:78:bd:b1:a3:b3:ec:fd:9a:d1:aa:49:51:f4:18:
f4:5b:57:76:7a:17:3c:03:89:00:d6:1e:27:9b:19:
18:09:ff:3d:4b:ca:f1:66:d4:a8:0a:22:24:c5:39:
2e:42:c1:6a:be:4d:bd:b6:b7:c9:9e:73:2b:d1:87:
b5:25:40:e1:65:39:7d:8b:11:98:1f:0a:b7:fe:81:
58:2d:b7:30:1a:84:d8:58:a6:56:f7:d2:68:42:2a:
07:87:2c:ff:3f:52:55:51:0c:e6:e9:90:d9:99:46:
18:84:7d:35:ae:0d:4a:8e:aa:44:bb:4b:1e:72:ff:
10:53:08:9e:dc:c8:e5:2b:6b:28:08:5a:77:1c:7d:
1a:30:79:ff:3a:16:1c:49:b4:b6:1f:8c:8a:95:ae:
81:50:7d:f4:6d:b7:94:7e:cb:dc:74:71:28:1b:50:
f7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8B:0A:1D:AF:B2:61:1F:4D:97:51:CE:64:B6:D3:ED:C0:95:E6:92
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:da:2c:f3:8e:d4:10:42:4e:47:eb:14:a5:c1:63:3f:00:be:
81:a1:83:4a:5f:f1:52:fa:af:0e:dd:e8:e1:7b:53:81:43:9e:
fa:ed:c6:59:02:44:6f:ef:4a:5f:49:40:6f:d4:3f:45:b0:9b:
0a:96:8d:b7:48:1a:f5:26:40:1a:35:6f:02:6b:a3:a0:e1:dc:
6d:0c:6d:0b:4f:26:d0:65:b3:ec:cd:95:2a:85:b1:25:d3:3d:
48:f8:c3:df:e0:66:a5:7b:ae:b5:a8:84:88:c1:1d:ac:fc:b8:
0e:88:f7:bc:2a:d8:87:26:c3:ab:7a:18:68:b9:52:ed:40:51:
ef:0a:49:67:1b:ae:3f:2a:fd:94:08:2c:02:73:79:bb:97:82:
44:c0:ce:83:da:01:5a:1b:4d:c1:e0:aa:3c:5d:1e:5f:ce:ef:
b1:8a:0f:6a:6d:14:bc:31:cd:c3:67:06:f2:ca:16:c5:2c:c7:
12:a3:28:5e:54:ec:80:12:38:c7:2e:15:89:ca:4d:26:ad:8f:
be:45:40:7a:fa:76:e6:03:10:91:92:ab:7a:a5:f1:ee:38:95:
1d:54:af:43:5e:c5:17:fb:49:2d:1e:6f:07:d2:44:5b:26:3b:
d6:d2:cd:86:fb:25:61:5e:37:41:a3:81:05:f0:f0:8b:5a:ba:
d1:6e:61:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:58:36 2026 by rpki-client