Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json)
Hash identifier: sAF/qxhPMVWGCmpcYMYAWu558fZEquJOIECC018Qer8=
Subject key identifier: 13:FB:25:BD:00:B6:64:83:40:F0:E8:6F:3A:F4:9D:CE:6B:7A:A6:CA
Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490
Certificate serial: 019CBF96859375736D957BFA38861B49E0D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
Manifest number: 06E1
Signing time: Thu 05 Mar 2026 20:00:38 +0000
Manifest this update: Thu 05 Mar 2026 20:00:38 +0000
Manifest next update: Fri 06 Mar 2026 20:00:38 +0000
Files and hashes: 1: Bb0AlX7LVs8xu9FbBxHR7jZ41sc.roa (hash: 1RAeUNL+1NswFK++fmlLXs7tYc2gvuypR/zGLkI4pFk=)
2: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: 8LTRQMMYczMSoGdwp0hdwPBihjPLagZHW/71j5p9t/g=)
3: wuwvCCyqsgM8AhmBamIU1CDvuC4.roa (hash: 7kzHmkdddwIql7JhhvogOzHNgfL2sl/BzbMljE2+YF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 20:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bf:96:85:93:75:73:6d:95:7b:fa:38:86:1b:49:e0:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490
Validity
Not Before: Mar 5 20:00:38 2026 GMT
Not After : Mar 6 20:00:38 2026 GMT
Subject: CN=13fb25bd00b6648340f0e86f3af49dce6b7aa6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f7:dd:02:69:98:16:5f:c4:52:35:97:83:b3:
4c:29:31:db:a8:21:b4:4c:cd:f1:10:5a:aa:d8:53:
be:64:27:a3:cf:c9:ba:b2:7a:e8:d8:98:63:90:e4:
de:6c:8c:5a:08:ae:8a:1e:bb:2c:e7:96:dc:0f:f4:
ce:5e:4e:27:c1:a3:3d:c0:84:14:4c:1f:8a:0d:91:
7e:8f:19:1c:0d:f9:21:b7:87:c9:e7:4c:19:bd:a0:
7b:99:a0:8c:b9:93:f6:f7:aa:14:bb:ec:55:4c:0b:
86:20:ad:03:57:88:3c:d0:4c:f7:b4:70:f9:18:32:
82:2b:cc:b3:c9:b3:34:7b:cd:72:df:95:b3:c4:ce:
e5:2d:6a:21:cd:74:3c:1b:e0:77:0b:bb:b2:d4:3e:
49:8b:8c:3c:84:06:0c:3c:a1:64:dc:87:1a:21:7b:
15:8f:99:0f:ca:fe:41:2d:6a:54:6d:9d:f1:0d:ce:
5b:50:81:88:8c:58:b6:8e:db:03:c0:0e:20:ec:c9:
be:46:59:ff:07:44:d1:bb:82:3d:62:40:01:ff:4e:
7e:11:c6:5b:38:ef:20:e9:ef:3f:da:6b:2e:cc:0f:
3a:30:b8:e0:37:eb:35:34:00:6e:ae:4f:bf:4b:67:
70:52:f5:e1:25:ca:63:57:ab:9e:5e:7b:c0:a1:bd:
79:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:FB:25:BD:00:B6:64:83:40:F0:E8:6F:3A:F4:9D:CE:6B:7A:A6:CA
X509v3 Authority Key Identifier:
keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:61:38:8a:b7:b6:de:9c:b5:18:96:0d:55:d7:51:9d:ad:0c:
97:40:fb:54:11:55:ea:30:06:0e:55:34:86:f5:f2:b7:35:74:
d5:ad:0a:18:5f:05:35:ca:9f:78:b9:a8:d2:e5:6f:4f:83:78:
94:a5:c4:74:3b:d6:50:85:91:73:42:eb:51:e5:f7:ed:d2:80:
4d:24:47:e5:77:d4:07:f2:99:7b:f7:d8:2d:8d:d7:67:0b:e2:
6b:b1:a3:4e:12:a5:8a:cf:2d:78:fe:f5:f1:46:78:6e:28:0e:
f4:31:a0:ad:4e:8d:e9:d3:f5:78:fb:da:4e:e6:04:d2:40:3c:
8d:c9:14:7e:86:73:97:0c:8d:1d:c1:55:5f:ef:48:5a:d1:bf:
57:d4:8d:68:6a:07:5f:cf:82:63:2b:fe:b4:90:8f:fc:ee:59:
eb:35:5a:eb:56:82:8d:b2:1e:bd:fa:bd:ad:23:f5:68:7b:fb:
5d:1d:75:19:d1:20:99:1e:2b:38:ce:7b:be:c8:f3:94:5d:d4:
4a:2a:55:04:a2:dc:3b:b1:1b:7b:b2:14:0c:58:c7:06:79:fc:
55:54:36:f8:38:19:8a:8f:c8:ef:ad:a2:e0:c9:70:0b:9a:00:
10:2a:1e:d2:f1:c1:62:a3:f4:ae:1c:fe:80:99:96:bd:97:00:
6e:8f:60:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 04:48:15 2026 by rpki-client