Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: tj3aK8msHoaDpkwK0wV2QvRjLSmBGQ33GPPXuTo45Ts=
Subject key identifier: EF:5A:C2:5B:BF:D4:88:7B:B8:11:0E:02:83:89:B2:29:A2:E2:59:F3
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 019D3788FE01BC2538EEA2874CA19BCEC379
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 14C3
Signing time: Sun 29 Mar 2026 03:00:17 +0000
Manifest this update: Sun 29 Mar 2026 03:00:17 +0000
Manifest next update: Mon 30 Mar 2026 03:00:17 +0000
Files and hashes: 1: 0POn4eiSe4D7lLX8DICoyCNVffg.roa (hash: IuTOIfnYnKgQ1QMnujowbH+xUlcXahzENOK89qB7q6Y=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: 08KCXyJHqJ9t3C5ci9Xm3yu1KER9VDGZ/6O32PiCnRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:88:fe:01:bc:25:38:ee:a2:87:4c:a1:9b:ce:c3:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Mar 29 03:00:17 2026 GMT
Not After : Mar 30 03:00:17 2026 GMT
Subject: CN=ef5ac25bbfd4887bb8110e028389b229a2e259f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bf:61:8a:7c:e9:da:49:cb:0f:30:6c:bc:e2:
49:5b:0e:77:a9:9f:7f:72:b7:e6:02:0d:7e:d4:a6:
62:b9:61:24:fb:20:5c:da:a7:0b:74:dd:73:29:c2:
57:5b:42:96:33:1a:54:91:0f:53:7b:2f:3f:e2:de:
ee:07:65:e9:54:e0:6a:1f:3c:47:ee:6b:26:06:66:
57:1c:c9:87:79:84:d4:4d:00:77:47:52:29:10:3e:
ab:c5:1e:ef:52:0d:82:7c:9d:88:56:ae:dc:f9:e8:
95:0a:4c:c7:bd:75:9d:44:e0:22:4b:2f:64:32:84:
a1:04:76:a0:a7:4d:e1:30:f3:cd:19:dd:15:eb:53:
bf:6d:df:c8:2b:31:e2:13:c3:78:a6:05:aa:61:ac:
4f:cb:bf:eb:82:f5:1e:5c:2e:28:7a:6e:12:1e:fe:
b6:4f:e6:4f:06:62:e2:bb:91:6e:b7:75:a0:cf:dd:
28:6f:f2:81:a3:34:10:c8:74:7c:19:41:bd:6a:bb:
4a:5b:c1:8b:56:5a:2a:53:f0:13:c7:a6:67:6b:94:
62:07:06:e2:3a:2b:25:04:d9:07:36:ac:11:7f:01:
b8:33:ed:48:ff:5f:3a:b5:31:9d:dd:98:97:6d:bc:
be:f1:33:58:09:55:54:09:83:79:1f:58:eb:0b:dc:
08:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5A:C2:5B:BF:D4:88:7B:B8:11:0E:02:83:89:B2:29:A2:E2:59:F3
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:74:dc:8c:10:b1:4b:fe:51:5b:96:31:ad:40:4f:a0:57:80:
e3:de:bb:79:a0:53:7e:ea:4b:86:03:c6:26:5c:8f:b7:95:f3:
ca:e0:37:8f:eb:96:98:0f:11:e9:b8:f2:d1:db:da:49:78:4e:
a0:51:a4:bc:cf:66:a8:60:47:94:f1:2c:c7:a7:8d:5c:0b:ee:
1c:f3:e9:55:10:6b:4a:1d:54:90:0c:b7:8d:4b:cc:97:0c:39:
92:75:b0:72:ef:2f:27:78:6e:55:14:91:f4:b3:e9:95:37:d5:
ab:8c:47:a1:c3:ef:2c:3c:97:4a:b1:14:db:a5:1e:f8:5d:af:
8c:1d:88:b2:55:83:ba:d0:98:60:5f:6e:d3:45:20:eb:1d:ef:
86:00:65:d6:df:69:13:e6:db:4e:66:43:c0:47:75:27:9e:62:
79:82:90:de:76:b5:1e:50:4e:bc:2b:3f:e8:16:44:1c:78:d3:
00:48:ec:fa:f9:4b:e0:bc:9a:06:98:0c:4a:4e:82:84:9d:ee:
a2:7a:12:13:d8:6f:ca:04:83:7f:b0:b0:9e:4a:c8:fb:6a:22:
da:51:4b:06:ca:c8:57:cc:6e:66:3b:09:8f:f1:ab:eb:20:5e:
32:40:f7:17:83:7e:75:54:07:7f:70:01:7e:0d:72:1e:86:af:
88:7b:2a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:35 2026 by rpki-client