Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: pxKqUp1i72RJNjAQtZ/JZbmJWZ1969K/tB2/5ozEFpE=
Subject key identifier: 44:62:DB:76:0E:69:CD:A0:34:C0:AF:00:AE:2E:A6:7F:D2:84:D5:3E
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 019D3865F6408DCC6C74922A2885B4028F6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0F4A
Signing time: Sun 29 Mar 2026 07:01:39 +0000
Manifest this update: Sun 29 Mar 2026 07:01:39 +0000
Manifest next update: Mon 30 Mar 2026 07:01:39 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: VAcdaO2YSFqY4H+Nhf0K2cqI4uZUFEvPjEEOxJrYFoE=)
2: dCLnn7sgK5v7oJDUJbrjvWO6u5U.roa (hash: BC/yFL0CMfvt5OiaE+u7P/nSsti8Z5g8EroFC8bwyK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:f6:40:8d:cc:6c:74:92:2a:28:85:b4:02:8f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Mar 29 07:01:39 2026 GMT
Not After : Mar 30 07:01:39 2026 GMT
Subject: CN=4462db760e69cda034c0af00ae2ea67fd284d53e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e9:af:6e:a7:33:71:b5:21:59:d5:eb:c9:79:
e8:c3:3e:91:77:8a:2e:72:8d:13:53:69:8b:f7:b5:
01:f5:5d:d9:e7:53:93:6d:ed:d5:74:f2:bd:60:4a:
f8:80:c6:13:bb:83:4f:67:53:67:95:96:dd:e5:86:
12:ca:89:32:96:e1:49:4e:33:f7:6c:99:5f:c1:46:
22:61:d5:e7:e9:b7:91:04:c4:dc:cc:d7:8a:b1:99:
5d:b5:5d:ff:08:2d:2c:49:fe:37:cf:b8:36:2f:f1:
1b:88:67:69:cb:01:b6:94:6e:3d:51:03:7b:06:87:
88:38:dd:d4:cf:b0:bc:3c:e4:8e:d4:1e:ea:5a:8c:
c6:01:e5:92:54:79:18:33:5e:c7:aa:e9:c3:ee:42:
aa:65:6c:ba:02:53:43:d0:f2:84:04:2a:6f:40:e5:
ed:4c:e4:18:53:09:4a:47:eb:2b:f1:2b:4d:04:08:
0e:3b:63:bd:14:84:49:3e:dd:ea:cb:3c:cb:ea:88:
b3:b9:9d:e8:44:ff:bd:bf:d0:7e:b3:ba:23:f9:f6:
32:72:ef:4d:e0:97:ed:09:21:d4:e0:ed:18:22:44:
d6:a6:6b:24:b9:f3:66:4f:2f:ef:13:3c:6c:17:f2:
51:fa:cc:fb:4a:2d:11:9d:56:79:06:a1:8f:30:64:
87:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:62:DB:76:0E:69:CD:A0:34:C0:AF:00:AE:2E:A6:7F:D2:84:D5:3E
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:17:57:bf:ee:96:e9:73:6b:b5:34:ea:d7:02:74:0b:b0:c2:
09:d8:c8:d1:e1:33:61:b9:d1:27:72:bb:cc:00:ca:28:a2:2f:
4f:73:f2:06:3c:d6:ae:f5:10:ab:35:ef:57:e4:e4:c8:5e:ce:
ce:96:45:ec:b8:5b:4d:03:01:30:ae:ca:f5:47:8f:a9:5d:79:
1c:91:bb:1b:e9:da:2a:34:a9:8d:1c:d4:ea:11:97:0c:80:e6:
fc:bb:32:25:cb:76:58:9c:2d:ec:05:bb:65:9a:62:75:cb:0b:
d0:13:96:c2:7c:6d:64:59:be:bf:fa:6e:7b:56:a1:f7:db:a8:
31:9e:5d:6f:16:84:a1:79:99:89:fc:97:ee:8b:eb:a4:9b:76:
f0:94:e8:6a:3e:df:e2:98:70:87:f1:23:4a:92:ff:dc:26:c0:
70:c8:28:24:b4:13:ec:9d:b5:80:76:44:e2:00:c4:94:18:c9:
9b:fe:e3:20:86:87:6a:ba:03:72:65:93:d2:37:d5:ab:1f:74:
3d:53:13:94:84:fe:a3:6f:54:89:1a:e6:f2:41:0e:89:34:41:
c8:f0:25:19:d7:9a:3b:05:78:db:fd:ba:ea:fa:44:14:c7:37:
1c:dd:cb:a2:d6:0c:f8:75:84:32:b4:c0:96:02:93:f1:cf:54:
d6:90:10:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:43 2026 by rpki-client