Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: ejBVyJp12xDdxRFap4F55OhM4/UGxKP2WtTI3zPPHMM=
Subject key identifier: BC:AC:E8:17:25:30:91:99:A1:83:35:AC:78:C7:14:B5:25:05:C7:19
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 019CE71252649B81A6BBACD5577E744BA749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 0B96
Signing time: Fri 13 Mar 2026 12:01:03 +0000
Manifest this update: Fri 13 Mar 2026 12:01:03 +0000
Manifest next update: Sat 14 Mar 2026 12:01:03 +0000
Files and hashes: 1: 1-Y24DkHX_YS8BQf944IXH_5kays.roa (hash: +VJRpnj8CgCWOeIl5a7z0P70ihS3i/FmFwSi/9utCPo=)
2: IY-cX-MNALu4IC_OTud7vyl-LrA.roa (hash: EREk8HtkB+3C+caNH7Ch6KSJNkDCyci86tLaep5Ej3s=)
3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: B2zkEJGb4zfcwiiQ+j5JCVh2K9orDd/4ONuPw5fWQB4=)
4: KSxgyXQgmuvgD3hsIbjoWlYRqkk.roa (hash: MfPYx4d8dGraW1R0Aep23IPqwadZP9+eAkLv5cmiWoM=)
5: M6wnPrDmWw7o372pn664G-6XMUM.roa (hash: vz3Xt9QAg5obB1AHMtVF5JrXwk6u3qtnMl8SakINxdQ=)
6: QU7_3XfMPgpIQHQ50_jrWQFQx7o.roa (hash: LAB6ax0DqVCa39oB2jLFatVSxmBNDm8xZgfRNR237Ws=)
7: _25UfYuLERvQd7ERXXNW_sly9Oo.roa (hash: mce8PC+zpkQB3aka/bSBor9uJVmt1ZEupgGD8nmRstI=)
8: gr17UYbRi7cQ6eQ9EyDF-CuJIp4.roa (hash: NAQ/vI5+2VgZpVpsxQmGoZaiAZnJI/pT7XEYYA4d1IM=)
9: mwE7644yuRyikfXfTRLC6TQjC0w.roa (hash: KcHRogBcTVnQMGjCpBXC4Xr5iRWrDOZmEHuY1S/TOXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:12:52:64:9b:81:a6:bb:ac:d5:57:7e:74:4b:a7:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Mar 13 12:01:03 2026 GMT
Not After : Mar 14 12:01:03 2026 GMT
Subject: CN=bcace81725309199a18335ac78c714b52505c719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:c7:e1:09:35:be:ca:73:64:58:77:f0:aa:
eb:68:43:7c:09:cc:94:5f:32:bd:da:b4:65:4b:3d:
24:ed:64:36:16:17:8b:cf:0d:e3:39:2d:92:8f:8f:
3a:88:1f:f0:e2:19:74:d7:c1:8e:3b:91:0d:92:4d:
85:57:fe:ab:40:2b:37:8a:99:54:f1:27:6a:1b:ad:
8d:3f:ab:1d:9d:48:d8:60:05:ba:82:a0:9a:e8:f7:
a3:f9:d9:7c:d4:26:0f:0d:41:90:cf:61:9f:12:23:
3c:67:b0:f9:8f:c9:a1:4f:f7:6e:14:52:64:84:9f:
37:5a:6b:9c:36:00:fd:e0:68:c1:08:f3:98:75:27:
bd:d0:0b:07:ec:b2:c1:47:9b:28:e3:1d:84:fc:d1:
ff:ef:dc:a8:4a:a9:e2:23:60:ba:8f:20:a3:1d:e1:
5f:f8:9c:11:70:61:45:2a:91:91:74:53:de:90:ab:
b0:2c:23:a3:35:98:ca:7e:2a:1c:94:0a:6a:6e:23:
51:cf:ae:40:b0:69:e7:24:39:c7:86:6d:58:e9:ba:
9f:13:fa:39:fc:fb:7b:1d:ba:c4:cd:12:24:b0:cb:
4c:39:ec:45:21:af:a9:cb:8a:7a:39:0f:fb:10:55:
c2:8d:19:23:1d:84:07:46:1f:65:57:34:4a:db:80:
99:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AC:E8:17:25:30:91:99:A1:83:35:AC:78:C7:14:B5:25:05:C7:19
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ba:dc:9b:49:ce:a8:c6:0c:aa:7c:f5:f4:c0:02:c0:21:17:
26:78:63:58:2d:d5:a5:34:d5:67:aa:a0:88:ec:37:12:b8:f0:
4a:21:b5:1d:c4:ad:21:6c:92:b1:a1:e9:10:0f:55:a4:6c:f6:
11:1c:0d:9e:47:c2:a6:f6:7c:a9:02:3a:b5:1c:0f:0d:78:1d:
8e:e8:c3:4a:26:2a:8b:e5:05:74:5a:aa:9b:ff:3e:b4:05:e6:
fb:ae:4b:28:c4:f2:e0:62:3c:98:db:f5:f1:11:b5:39:0d:2e:
6f:c5:1d:f5:14:9d:1a:eb:a5:ad:ca:9e:a8:07:04:6f:a7:92:
9a:ec:bb:20:c8:4e:62:fb:d2:ae:c8:40:09:d5:4e:dc:5c:41:
78:5a:77:6b:a3:2c:97:95:d9:ea:c5:4d:a8:03:d2:8e:dd:33:
11:ee:7b:94:91:c6:f8:e5:69:f6:23:54:57:23:76:18:21:ea:
9f:9a:ba:0d:c7:4e:e9:63:eb:cb:01:51:e3:74:f0:cf:07:0f:
e9:66:02:ad:ee:7f:fb:94:8c:b4:60:9d:fb:32:7d:5d:65:15:
90:69:cb:3d:28:b9:a7:d1:fc:5e:13:61:f0:98:c9:67:de:1a:
f1:2d:87:4d:01:9a:8d:99:82:ec:b4:2e:0e:fd:f6:0a:f0:90:
76:47:d2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:13:05 2026 by rpki-client