Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: k1MNYn/sihuikreRuY57d7wyZd7nmeR8mmgeBHfgB9g=
Subject key identifier: 75:47:6C:ED:14:16:AA:13:43:9B:6E:43:1F:56:C2:3C:68:53:08:72
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019DCDF4F43C6250126B55C2F9570A87854C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 026A
Signing time: Mon 27 Apr 2026 08:01:15 +0000
Manifest this update: Mon 27 Apr 2026 08:01:15 +0000
Manifest next update: Tue 28 Apr 2026 08:01:15 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: lc6cF01R8/gJukPtF+zoe6y4EaXNJ4KmGoy24Gaz0QQ=)
2: TJBNoqDJuDXadUHCaSsBuATOWto.roa (hash: gJS3wY/oZsaAW7+2UEGNOUq9JEb/eTtIedw6FlGOizU=)
3: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:f4:3c:62:50:12:6b:55:c2:f9:57:0a:87:85:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Apr 27 08:01:15 2026 GMT
Not After : Apr 28 08:01:15 2026 GMT
Subject: CN=75476ced1416aa13439b6e431f56c23c68530872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:a1:28:04:c2:4d:a2:a6:23:8a:a8:03:de:
d6:68:58:ee:f4:cf:b6:5f:eb:77:03:51:fd:4d:2e:
85:cd:42:70:7b:eb:0e:0a:7f:02:e7:1c:8e:1b:05:
b0:32:68:b8:c5:82:1b:4b:25:3f:80:a0:f0:8d:bb:
c1:8a:7a:80:11:6c:5d:bf:01:d9:e0:64:0b:39:28:
12:19:ab:4c:be:73:36:45:bd:42:17:6a:f1:15:5b:
36:58:d4:6c:6e:96:66:5b:f0:0c:ae:7a:e4:a5:f1:
6f:f7:76:28:07:e2:31:cd:3d:f0:3a:0d:3d:e0:b1:
ac:d5:2d:f4:fb:72:3c:2d:f7:e7:a8:c0:33:c4:18:
8f:81:98:d3:86:61:7b:2f:cd:9d:37:2c:27:7c:62:
36:d7:14:0b:61:65:36:97:28:64:89:f3:60:7b:58:
70:fd:72:18:66:13:fb:de:f2:54:92:30:ca:33:32:
6a:97:b8:cf:8a:f2:10:b8:2b:33:77:8f:47:35:77:
0c:b5:41:8b:52:4a:ab:57:b4:71:f7:32:e6:2e:c5:
96:b8:c0:9b:b0:28:3d:75:80:ee:08:e9:21:30:3f:
02:12:ea:7b:4a:66:06:3b:49:f8:7c:4f:e7:4a:d8:
f0:42:45:4b:5a:dc:46:08:70:fc:70:aa:33:28:2c:
d2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:47:6C:ED:14:16:AA:13:43:9B:6E:43:1F:56:C2:3C:68:53:08:72
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:15:cd:55:fe:7a:bf:04:48:3d:18:67:5c:5a:84:16:61:1e:
6a:e1:d9:b0:ed:f1:9f:cb:26:68:6f:be:5b:71:68:82:f9:fb:
28:b6:52:a1:89:a5:56:1c:0b:69:c1:8a:aa:3b:da:e8:96:dc:
e6:b7:22:0c:29:fd:fd:fa:36:93:94:8c:f2:c3:25:90:0a:f7:
b5:88:a3:b0:ab:30:5a:4a:df:35:a4:c2:00:b0:8b:ab:f9:52:
60:97:eb:b8:e0:8f:23:e0:d7:c1:02:fe:ad:fe:81:84:8f:87:
79:9d:58:ad:77:a7:89:67:92:2c:63:59:05:d6:b5:0e:e0:8f:
25:a5:9d:e7:57:aa:d4:5c:51:e6:df:54:88:13:e0:75:14:aa:
66:58:d2:88:b6:a8:01:09:4f:89:f1:a8:10:7d:70:9a:4e:9f:
54:72:a5:24:d0:d6:7a:4f:7a:10:21:0f:02:8d:90:7a:03:0a:
7d:e6:6a:5f:62:95:b5:a8:d3:ab:b5:a3:d6:fe:82:57:ac:e7:
59:ae:8f:68:d6:aa:c2:32:40:25:f4:0b:ec:d5:5f:79:3e:80:
1c:c9:92:b6:e0:b1:f4:0a:d7:89:29:dd:f4:b6:00:2e:f6:6a:
f1:ab:90:8d:1e:54:3c:30:4f:12:b7:45:6a:07:76:db:80:f6:
28:07:ee:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:12:04 2026 by rpki-client