Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: y6xO/TiWqkzUO8Moinw1vr6uNtCJOUNAeqQX6r6nqzY=
Subject key identifier: 47:40:9C:B3:64:10:7E:B1:67:92:A8:62:D9:45:78:1D:03:F0:F2:5E
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019D39AF60340047AE4950B2615690DD2350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0C21
Signing time: Sun 29 Mar 2026 13:01:27 +0000
Manifest this update: Sun 29 Mar 2026 13:01:27 +0000
Manifest next update: Mon 30 Mar 2026 13:01:27 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: MCsyE7Vi93RzwURZSK1FKzhzjhD8QwwNx1yXqZAUqng=)
2: xMgS7QD9_G9EOx5x98EDuY-9yGs.roa (hash: hMlsCv6vl96geP53LLF12LxkGDU69mGZggpEWqFm3G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:60:34:00:47:ae:49:50:b2:61:56:90:dd:23:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Mar 29 13:01:27 2026 GMT
Not After : Mar 30 13:01:27 2026 GMT
Subject: CN=47409cb364107eb16792a862d945781d03f0f25e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0e:50:08:e6:c7:8f:5a:f4:ad:aa:e5:b7:97:
10:27:6e:a9:92:51:78:f5:5d:e4:f5:72:50:22:e6:
0b:f6:4e:97:70:21:68:e6:aa:21:49:0d:d2:15:c1:
9e:44:ad:2f:52:b8:3b:b7:46:53:66:7e:b7:ec:1f:
31:aa:7a:4d:84:f4:c6:05:05:d8:07:f2:9d:5d:23:
6b:c5:1f:f3:3c:d6:57:e8:b0:a3:cb:94:44:4d:fb:
38:0a:dd:c5:5f:08:70:83:1e:f0:e7:7d:86:bc:15:
8f:b6:f7:62:79:2f:87:ea:16:9e:d7:69:e5:b7:b2:
58:ad:e2:48:ca:2d:0a:34:89:34:00:02:d6:83:06:
0a:77:2c:09:b8:dc:a9:a8:d7:ce:3e:ee:4a:c6:1b:
fb:1a:92:22:7a:9c:b7:65:cf:1a:17:66:ed:69:20:
15:47:2c:90:79:5a:b8:ca:66:cd:e9:1c:8a:47:9a:
01:f9:56:cc:e3:7f:ac:e7:e5:3e:c5:81:3d:d1:6e:
76:cc:ec:1d:3d:79:61:72:13:9d:2a:32:97:5d:45:
fe:14:63:02:93:e0:49:2f:a5:34:59:cc:5e:ba:cc:
b3:71:62:31:16:b1:e2:05:83:f1:5a:08:76:4d:f2:
3c:6d:78:23:f5:00:68:de:07:04:1a:23:96:5f:83:
f4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:40:9C:B3:64:10:7E:B1:67:92:A8:62:D9:45:78:1D:03:F0:F2:5E
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:88:cd:cf:95:2d:79:8f:d4:25:f2:6a:d6:4f:98:64:f2:d9:
20:28:3f:0a:45:ca:77:b0:ed:d3:94:59:b6:09:52:5a:9a:1a:
1b:60:a6:9e:e8:73:6d:9e:49:46:82:0d:90:e3:ed:c8:bf:58:
79:f2:97:7e:ff:73:9e:e2:9f:22:21:76:2b:75:90:59:fa:3f:
ad:29:71:96:cc:1a:80:63:c1:a6:07:87:5b:1e:a6:b8:5d:84:
57:e6:9b:08:06:59:15:31:54:48:a1:9d:58:c6:e2:c1:ff:30:
52:75:5c:f0:02:a8:75:3e:c8:83:c0:2b:5d:27:15:5d:82:33:
9b:f1:77:34:e2:e9:52:7e:e9:e9:1b:8e:e5:ff:d3:d9:d9:e0:
4b:a3:a6:e2:b9:1f:8c:17:35:5c:3d:21:2d:a4:83:1a:57:d0:
e7:77:e4:66:48:3e:92:c0:fb:ff:90:b5:fc:e1:ad:6a:15:d2:
9b:41:30:df:e0:06:3e:91:a7:d4:65:2d:2a:70:91:d6:df:63:
ac:f9:8e:44:9b:56:35:42:45:fb:03:b7:e7:6d:e5:d2:c6:fd:
b5:93:24:23:89:a3:a1:b2:25:ac:07:fc:0b:48:b3:0e:74:1c:
b1:c4:99:17:4e:cc:16:f5:e0:ee:fa:6c:6f:98:97:3a:48:83:
7b:1e:b7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:16 2026 by rpki-client