Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
File: IKf8vlkxTDcraPIyIjgoseM6A-w.mft (raw, json)
Hash identifier: dwvIqCN5GJ3IwsYIKLTTCFkrGxbEUqE3SIwmvKM/zi8=
Subject key identifier: 47:57:10:08:1F:78:2A:07:34:1C:9C:E1:76:2C:03:3E:C1:33:8A:1F
Authority key identifier: 20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
Certificate issuer: /CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Certificate serial: 019DD12C9763E34F9C24D216C00084A6F2EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
Manifest number: 153E
Signing time: Mon 27 Apr 2026 23:00:53 +0000
Manifest this update: Mon 27 Apr 2026 23:00:53 +0000
Manifest next update: Tue 28 Apr 2026 23:00:53 +0000
Files and hashes: 1: 4ad3Sx3tHCKPvoySsJwPEN1dqk0.roa (hash: 9KW5traDiZ8b8YIka+3LA3dxjZd+hGHcIvyVnNUiXKg=)
2: IKf8vlkxTDcraPIyIjgoseM6A-w.crl (hash: 1k9Ew66+YSn24JuNKfJxUN6F6zMK+EzhShTKMQxDyco=)
3: k82VZQjPTfp29HOrsd4ebLlbLLQ.roa (hash: mCVrb2F3QQSAvERyzJs5ziCWnKSLVC3ur8XxDFUzHh0=)
4: w6ZIXPDpAeu5P7_mH6HZiqnkV9o.roa (hash: Yf1g7ljDU7te6N4XEGH4NkhfBi9rKgbfTnWehMLxzL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:2c:97:63:e3:4f:9c:24:d2:16:c0:00:84:a6:f2:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a7fcbe59314c372b68f232223828b1e33a03ec
Validity
Not Before: Apr 27 23:00:53 2026 GMT
Not After : Apr 28 23:00:53 2026 GMT
Subject: CN=475710081f782a07341c9ce1762c033ec1338a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:29:0e:5c:19:50:5b:bc:cb:31:17:39:97:09:
3a:89:e1:d0:97:88:73:43:38:28:c8:a7:e9:17:12:
78:59:48:2d:55:95:ba:21:64:25:2f:91:f3:22:ef:
b3:3d:b1:28:84:08:29:8f:6a:8e:ac:03:70:1c:89:
c9:f0:cd:25:cb:b9:68:f9:54:76:0f:88:85:70:13:
69:5c:9a:a9:e9:f8:ae:59:2a:d5:8d:bd:00:3a:a3:
92:77:72:a7:6d:f2:de:28:e2:3a:6b:1e:6f:5e:dd:
ba:8b:55:a3:a2:9f:29:8c:db:56:c1:80:73:43:e1:
49:b4:6e:6a:79:44:6c:ce:a1:6a:2a:6e:54:2d:9a:
21:70:a8:4c:89:7d:ad:79:86:b8:2e:bd:bd:32:56:
dc:f0:3d:34:6b:f6:cb:0a:7e:95:93:43:a0:e9:d5:
16:66:e6:74:f3:86:e7:85:1b:26:e9:4b:6e:24:da:
bd:fc:2e:0d:a6:ba:84:7a:84:10:33:f9:1d:5e:ac:
a9:81:f5:03:a4:cc:3a:f5:84:19:26:0e:e3:95:91:
0a:76:e2:4b:e2:71:03:ea:c1:2c:fc:47:80:bc:28:
3f:33:4b:7f:1b:b5:61:5d:b2:b8:7a:f5:d4:68:f5:
bb:69:27:e5:7e:44:54:3c:32:17:6e:3b:13:44:f1:
10:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:57:10:08:1F:78:2A:07:34:1C:9C:E1:76:2C:03:3E:C1:33:8A:1F
X509v3 Authority Key Identifier:
keyid:20:A7:FC:BE:59:31:4C:37:2B:68:F2:32:22:38:28:B1:E3:3A:03:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKf8vlkxTDcraPIyIjgoseM6A-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c3988e-8654-4311-8292-426039788919/1/IKf8vlkxTDcraPIyIjgoseM6A-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7a:65:a2:73:92:c3:bf:ca:a3:e6:71:37:e8:be:d0:71:d9:
9a:f9:3d:5d:d7:86:01:99:69:7c:cc:a4:9a:25:57:73:16:c9:
55:d3:d6:88:d1:b3:2f:60:32:7b:ce:4d:7f:95:ac:bd:d0:36:
29:ed:bd:54:a6:38:10:1c:1e:cc:d5:8b:14:d0:c7:37:d8:fd:
1c:d1:a9:7f:a9:96:78:d2:97:30:40:7b:ec:8f:b5:fc:6b:87:
41:92:88:b3:ee:08:da:af:63:ea:a6:6a:f2:99:90:d5:da:9a:
de:c9:a8:26:da:24:5d:f2:df:55:c1:1f:35:08:2b:ae:25:c1:
07:0d:46:fe:5e:be:64:9c:7f:61:20:5f:5f:c6:79:89:af:36:
38:6e:73:70:ac:46:fa:99:27:5e:07:bc:18:ea:41:9b:40:03:
51:60:53:68:d0:9b:48:43:aa:5b:43:a5:cf:71:ed:df:c6:0a:
b2:ec:9c:65:ad:89:52:86:54:81:59:61:88:ae:e7:19:8d:2f:
02:87:01:32:05:78:d9:39:e4:fa:21:09:5c:b3:75:04:9b:33:
dd:c9:a5:6e:c2:f2:2e:cf:ab:fd:6c:c6:76:79:95:78:42:23:
f6:13:de:2b:8a:ac:b7:3a:34:62:03:77:61:39:f7:f8:75:e2:
9d:b1:c7:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 00:32:40 2026 by rpki-client