Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: 5o9k8I+eytwkmsN2npZTkFfcJ6cOYUuUpmj9/Q9xOqA=
Subject key identifier: FC:6B:C5:9B:BE:73:07:CF:17:B3:5A:B8:2B:D0:8B:B4:17:60:0B:FB
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019D389C5BDA607F9D58D6CB287B1517F2DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 08CC
Signing time: Sun 29 Mar 2026 08:01:04 +0000
Manifest this update: Sun 29 Mar 2026 08:01:04 +0000
Manifest next update: Mon 30 Mar 2026 08:01:04 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: 6MQAOVv+ilolp6jEW2pJn7jkFMrS+t+28CPz1w4J7P8=)
2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:5b:da:60:7f:9d:58:d6:cb:28:7b:15:17:f2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Mar 29 08:01:04 2026 GMT
Not After : Mar 30 08:01:04 2026 GMT
Subject: CN=fc6bc59bbe7307cf17b35ab82bd08bb417600bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3d:d0:68:3c:95:7e:6a:b1:8b:f5:f8:a7:cb:
26:1f:f8:03:e5:bb:f9:83:5c:eb:21:48:e0:75:fb:
13:79:d2:10:ce:79:fe:c7:0e:80:d0:9f:ef:d4:1f:
2d:29:50:d3:36:ba:95:20:2f:da:b5:75:3f:d1:ca:
d4:2a:99:3e:05:c6:a5:ee:73:f0:51:51:df:7b:2f:
02:3b:ed:55:56:5b:34:13:67:df:a0:ef:35:61:2e:
c7:99:2e:80:38:c5:1a:68:42:8d:36:3e:76:50:11:
f1:0c:ec:00:fd:59:fa:03:14:e4:a0:d6:38:ff:58:
69:5e:de:fd:36:b3:4a:a7:f8:fd:96:e0:19:11:82:
1f:92:5e:0d:69:de:5a:97:b5:9b:86:bd:21:e4:90:
43:54:52:af:8d:b3:e4:a7:f4:83:d5:5e:d6:c8:51:
d3:46:09:fd:2c:0a:1f:35:04:94:ad:19:6d:bf:47:
30:f2:7d:1c:75:68:f9:de:48:a7:e9:ca:64:91:fe:
11:d7:f6:8f:40:90:56:f3:f1:b7:70:09:0b:05:c2:
e0:7d:a0:94:84:9d:58:cb:1e:ea:0a:d4:58:d6:26:
bb:bb:0b:e8:bb:49:93:38:9d:a9:63:59:44:23:4d:
ef:a5:f0:16:5a:82:c2:ac:39:b1:68:e5:70:22:cb:
ab:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6B:C5:9B:BE:73:07:CF:17:B3:5A:B8:2B:D0:8B:B4:17:60:0B:FB
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:00:de:38:22:71:50:eb:03:c9:fb:d1:72:ca:68:fa:d6:59:
8d:d6:ec:e6:9a:3a:4d:c7:65:2f:9e:a7:97:ab:02:03:85:3a:
88:5a:b6:54:03:17:63:2c:cc:3b:ba:fc:02:ab:54:84:6b:48:
93:57:ef:f5:89:6c:19:cf:4b:ab:19:a0:cf:7a:86:a5:e9:30:
d2:cd:9d:67:cc:8a:67:c4:32:4e:42:ee:e8:a3:5a:5c:2e:25:
3a:24:c6:4c:9d:87:3a:52:6d:7e:eb:04:dd:6c:36:fa:91:c6:
b0:c0:6f:aa:87:14:78:2f:4b:35:c7:79:3a:19:a8:d7:f3:9f:
ca:2e:b0:6d:04:d4:e9:85:54:b3:a7:22:7c:9e:58:78:75:c4:
e4:0c:1f:4f:5a:28:eb:44:89:bb:d6:11:e6:8b:4e:ea:8c:d2:
71:d8:02:2d:82:ee:da:15:12:c1:17:28:e7:b0:18:af:b1:2f:
25:4e:44:50:9f:14:7f:34:df:9a:8a:a8:0f:b2:ba:64:b9:7d:
75:af:72:70:e7:9c:6e:4d:e6:d1:9e:ac:b6:aa:88:ec:45:b7:
8c:fe:82:61:18:f3:82:fe:93:cb:3c:c4:c0:2a:67:2a:ac:a1:
73:f4:84:3d:56:ac:5d:96:38:b6:8a:06:84:22:bc:d4:59:9d:
6d:84:65:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:59 2026 by rpki-client