Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json)
Hash identifier: 19Un8jYD2Fj1mTprO3zXHNTSlkNEvJRhM6YtXc3G/k0=
Subject key identifier: C3:3D:9D:39:94:2F:21:31:C0:26:07:A9:2D:F0:6B:E8:43:69:72:1B
Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Certificate serial: 019D15D9A45C8C34B544E428F0254F40B327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
Manifest number: 05C1
Signing time: Sun 22 Mar 2026 14:01:18 +0000
Manifest this update: Sun 22 Mar 2026 14:01:18 +0000
Manifest next update: Mon 23 Mar 2026 14:01:18 +0000
Files and hashes: 1: 4GRqDQUSb-zxr8Uio1ztz9ttwpQ.roa (hash: ATHhAZBwTjYGOPvU16akA/fsoKv3w9kmqPeuvaUthH0=)
2: EdRGRNAOunRYG7-_JByQf_-npzI.roa (hash: hCZ1ruXMfJaNp5NsNXemKDBnVae+viS5ZTIr51GpNRQ=)
3: On2nk-aByUGs4ZA6emj31XEJdso.roa (hash: DD3HadfYy5dPFXQsNsDN3ezTTc4+paMyIyZQDpChk8M=)
4: QmnB2CMIfe5umcxczxRujV0wYEk.roa (hash: lwZAzq1D6hmN+6U+dqklR1EjzUoOQPeBNTMLHAdXkGQ=)
5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: 5b81PBqfe4x22iU1R5PuPmWnaJbXYPiDgUfpH9YFAqM=)
6: tsHmi25vrKfns5kPGhl6myHWaVw.roa (hash: 8MIMAYAM0/jsI9v0uOOSYvki5uUrLoYRmY+NS2ZIDRg=)
7: vX_8fXaxigdlWpe1tG-xpUdtIoQ.roa (hash: XxkJj1YMXQmGGy2zQBCP59NASJ3xuWotiNT/aTYNmvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Mar 2026 14:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:15:d9:a4:5c:8c:34:b5:44:e4:28:f0:25:4f:40:b3:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a
Validity
Not Before: Mar 22 14:01:18 2026 GMT
Not After : Mar 23 14:01:18 2026 GMT
Subject: CN=c33d9d39942f2131c02607a92df06be84369721b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:79:7c:a2:a9:02:bb:61:3b:e8:d9:78:0d:76:
5a:df:b5:c0:cb:7e:6f:d9:8b:f3:7f:1b:47:2a:6b:
b7:09:b2:94:32:b3:9b:22:fb:19:e5:18:1b:8e:de:
94:6d:77:b7:ab:99:8b:d7:0a:58:9a:f7:b8:09:c5:
57:c4:97:3a:7e:76:1f:a1:2a:74:41:cb:77:c8:ef:
6e:f3:56:b5:53:b8:30:3e:1a:e5:c0:c3:ba:4e:f3:
a7:38:12:93:6f:a6:1f:df:cd:25:2a:e1:4a:f9:52:
a8:e5:0f:cd:99:5f:39:ee:03:63:89:22:ee:3d:29:
5c:2c:36:38:44:5c:6d:20:00:65:c0:a8:d9:94:b8:
95:8c:f1:e3:d3:76:da:eb:ad:12:de:47:f6:4f:d6:
db:a9:f0:0e:6d:5d:b9:ee:74:bc:b3:77:1a:29:a8:
46:60:39:4b:f1:25:e6:97:50:b4:9b:fd:ed:49:aa:
67:5f:6a:85:b6:d1:8c:e2:8c:09:69:30:af:ab:41:
50:66:2e:be:a5:10:02:2a:aa:a1:39:45:d7:9c:fc:
5c:fc:dd:54:cc:26:6f:b8:a1:fb:21:53:ff:f1:19:
b1:1e:ac:93:03:a3:c1:65:57:17:43:d0:7d:10:c0:
0f:2e:7b:36:81:34:79:3f:9d:f9:a2:63:26:e5:1c:
c9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3D:9D:39:94:2F:21:31:C0:26:07:A9:2D:F0:6B:E8:43:69:72:1B
X509v3 Authority Key Identifier:
keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:65:bb:91:c9:7c:50:fc:8c:0f:c6:75:da:60:77:b5:a8:a5:
29:2b:6d:e2:5c:77:57:7d:4f:20:9d:17:28:6f:12:48:2f:72:
d1:a1:e6:dc:c2:fb:bd:4f:ee:c6:0a:65:55:54:ea:c1:99:d8:
62:07:aa:d8:23:58:da:91:9b:dd:d9:d8:7a:e7:5c:5b:29:05:
d7:cc:95:03:b5:d6:3f:a7:d4:9f:b8:ce:a3:74:87:f1:fb:b1:
ee:96:84:83:64:bd:fe:45:78:c7:bf:10:e4:09:4f:b4:fe:50:
94:c2:ce:d2:84:11:75:cb:5b:91:b3:ac:ab:fd:52:2f:df:bd:
fb:2a:7b:11:a7:8e:26:4f:58:af:3f:5d:81:8f:71:71:0e:b1:
05:8a:ff:d2:38:6d:76:75:e3:5c:0b:8f:4a:19:5b:5b:9e:48:
6a:f7:84:b7:ee:12:5d:dc:8b:9d:55:d5:e9:34:fd:30:18:21:
6b:4a:74:b9:d2:ad:20:d1:30:92:b0:8c:34:91:53:9f:cf:7d:
86:1a:64:27:ac:14:6a:0c:f7:94:e2:ed:56:d7:13:ca:f4:0e:
3f:28:55:26:8f:91:23:87:01:9d:5e:ab:3e:a6:31:e8:9c:dd:
38:5e:5d:b8:08:13:fe:de:c6:ed:54:ff:66:04:b6:af:cb:b7:
e7:3a:8f:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0V2aRcjDS1ROQo8CVPQLMnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4
ZTQ1MGEwHhcNMjYwMzIyMTQwMTE4WhcNMjYwMzIzMTQwMTE4WjAzMTEwLwYDVQQD
EyhjMzNkOWQzOTk0MmYyMTMxYzAyNjA3YTkyZGYwNmJlODQzNjk3MjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynl8oqkCu2E76Nl4DXZa37XAy35v
2YvzfxtHKmu3CbKUMrObIvsZ5Rgbjt6UbXe3q5mL1wpYmve4CcVXxJc6fnYfoSp0
Qct3yO9u81a1U7gwPhrlwMO6TvOnOBKTb6Yf380lKuFK+VKo5Q/NmV857gNjiSLu
PSlcLDY4RFxtIABlwKjZlLiVjPHj03ba660S3kf2T9bbqfAObV257nS8s3caKahG
YDlL8SXml1C0m/3tSapnX2qFttGM4owJaTCvq0FQZi6+pRACKqqhOUXXnPxc/N1U
zCZvuKH7IVP/8RmxHqyTA6PBZVcXQ9B9EMAPLns2gTR5P535omMm5RzJPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMM9nTmULyExwCYHqS3wa+hDaXIbMB8GA1UdIwQY
MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt
NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3
LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcmW7kcl8
UPyMD8Z12mB3tailKStt4lx3V31PIJ0XKG8SSC9y0aHm3ML7vU/uxgplVVTqwZnY
Ygeq2CNY2pGb3dnYeudcWykF18yVA7XWP6fUn7jOo3SH8fux7paEg2S9/kV4x78Q
5AlPtP5QlMLO0oQRdctbkbOsq/1SL9+9+yp7EaeOJk9Yrz9dgY9xcQ6xBYr/0jht
dnXjXAuPShlbW55IaveEt+4SXdyLnVXV6TT9MBgha0p0udKtINEwkrCMNJFTn899
hhpkJ6wUagz3lOLtVtcTyvQOPyhVJo+RI4cBnV6rPqYx6JzdOF5duAgT/t7G7VT/
ZgS2r8u35zqPqw==
-----END CERTIFICATE-----
Generated at Sun Mar 22 22:02:58 2026 by rpki-client