Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
File: iq94tpd0pVUH3qv4xMlpQunvDSA.mft (raw, json)
Hash identifier: HKSRgDht9KqhYFOjshkRHIjk1f8+dGgbvUYB568WIYI=
Subject key identifier: 79:61:BD:BE:ED:39:C5:8E:73:0A:9A:8D:22:99:9C:D2:BB:A9:C4:87
Authority key identifier: 8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
Certificate issuer: /CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Certificate serial: 019D382E068E80FD74D0994882D694516492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
Manifest number: 0F8B
Signing time: Sun 29 Mar 2026 06:00:33 +0000
Manifest this update: Sun 29 Mar 2026 06:00:33 +0000
Manifest next update: Mon 30 Mar 2026 06:00:33 +0000
Files and hashes: 1: AOuKaEFuAus3hz3w0WC3j7I2mqc.roa (hash: YMOsepey7pZcM4gw70d5HgYaXkzZjfvaKQx2Aill38c=)
2: iq94tpd0pVUH3qv4xMlpQunvDSA.crl (hash: XGth2G9X+vWdS+Z6pWuxsYLPjIPs3cQ1UpH0Fw6dfpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:06:8e:80:fd:74:d0:99:48:82:d6:94:51:64:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20
Validity
Not Before: Mar 29 06:00:33 2026 GMT
Not After : Mar 30 06:00:33 2026 GMT
Subject: CN=7961bdbeed39c58e730a9a8d22999cd2bba9c487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bb:92:7d:93:d0:77:c0:5c:63:fd:77:61:96:
01:e2:90:29:c8:ba:f5:29:60:06:41:1f:42:a2:3c:
87:53:e9:e4:10:88:68:b4:08:af:a1:b9:59:78:e8:
ab:dc:7f:28:b3:49:20:9e:c4:a1:87:38:66:7c:d2:
5d:4b:b7:1f:d7:86:09:89:e0:e5:8b:93:d0:fc:9b:
61:3f:e2:c2:6a:78:51:d7:e6:b0:f0:9d:11:0d:41:
fe:d4:6d:4f:f1:aa:43:3d:39:b1:3e:fe:08:a5:bb:
7c:91:a7:b2:cd:60:f5:bd:36:7f:f0:02:5f:72:5e:
d4:5c:75:22:7d:c5:86:97:06:96:f5:93:6f:be:b7:
b7:00:63:5e:97:c5:a1:3e:41:61:ec:83:fc:38:8c:
5d:f0:ba:08:40:3f:da:64:9d:d8:13:b9:66:73:9b:
05:bd:9b:1c:de:18:0d:04:b0:b9:40:44:2d:be:2b:
8b:52:45:5d:04:3c:b4:de:20:32:b4:ad:be:1c:76:
6a:1f:2f:cf:38:19:13:cb:e1:84:a8:06:f1:84:3e:
af:31:f3:61:7b:a7:f4:91:10:99:bd:81:c0:91:54:
f9:e4:2e:bc:92:af:5a:9f:55:aa:7b:50:c9:f6:db:
36:b4:4b:64:b2:d7:cd:4c:f5:f2:4b:fc:0d:0c:02:
58:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:61:BD:BE:ED:39:C5:8E:73:0A:9A:8D:22:99:9C:D2:BB:A9:C4:87
X509v3 Authority Key Identifier:
keyid:8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a0:47:8b:26:87:45:be:9c:a2:62:b2:8a:ee:fe:49:ed:90:
e5:03:65:23:43:39:d0:99:db:0e:79:14:18:96:1b:50:b4:cc:
94:25:2c:41:63:87:f7:b1:2e:dc:c7:1f:dc:85:3a:dd:a6:00:
cd:bd:b6:aa:88:47:a4:73:44:72:15:2c:bb:95:c3:f3:55:76:
ec:84:44:6c:c1:fe:0f:50:1c:ef:1a:9f:8c:51:3a:7f:e6:a4:
a8:0c:bc:6c:aa:c6:e8:23:29:5d:5f:0c:9e:55:e4:e4:70:05:
6c:53:84:c4:0b:99:08:a9:8e:84:c8:1f:0f:37:45:6b:82:45:
f4:ee:1b:f6:ea:9f:7a:c1:81:c9:0e:e3:72:2b:a2:25:c6:59:
99:f1:8b:a4:f2:3d:35:bf:3a:b3:6f:a5:d9:6f:74:57:99:e3:
e7:e9:4d:92:92:10:04:94:f1:04:a4:0d:a5:e7:d7:7d:d8:21:
47:b1:77:bd:94:13:42:2d:49:d0:90:c9:78:4c:1d:44:80:01:
32:f3:a7:37:3f:3d:32:b6:51:10:91:66:2d:3d:14:6b:86:17:
8b:42:67:92:59:10:f4:b5:6f:2b:8b:e3:59:6f:29:00:39:50:
95:57:98:9a:05:0d:48:80:20:f1:00:2f:58:10:23:c2:0f:a2:
4a:40:78:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:12 2026 by rpki-client