Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: MeOfLPDgzWEpLWNhBgjijdxebUAQ8fJ+8VKkgNb5CcI=
Subject key identifier: 2F:6C:2B:CF:DC:4C:37:C9:F7:B6:0B:D5:13:6D:8E:C7:E6:5D:02:4F
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019CE3DA65B3602C51256DEDACB83819BA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 01F0
Signing time: Thu 12 Mar 2026 21:01:06 +0000
Manifest this update: Thu 12 Mar 2026 21:01:06 +0000
Manifest next update: Fri 13 Mar 2026 21:01:06 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: KTCDZU7QSyfQGr7ugZSN1jyiHvcKwvPiiqeDgaQ/l7A=)
2: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:da:65:b3:60:2c:51:25:6d:ed:ac:b8:38:19:ba:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Mar 12 21:01:06 2026 GMT
Not After : Mar 13 21:01:06 2026 GMT
Subject: CN=2f6c2bcfdc4c37c9f7b60bd5136d8ec7e65d024f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:93:40:39:45:3a:11:24:aa:02:ef:fc:dd:75:
72:f2:1a:90:7a:59:2e:63:3c:b9:db:43:c9:5c:47:
5a:75:d1:d3:53:9a:d3:d2:58:4e:ac:79:df:bd:dc:
29:73:6b:ed:b3:94:7e:1b:c3:af:48:05:92:7c:39:
b3:08:c0:b8:bb:6b:b7:ce:5d:46:b4:13:bd:f5:d6:
d7:46:22:4a:4c:e8:a3:9e:2f:64:40:c6:69:cf:da:
df:77:c6:e4:48:d4:a2:a5:96:51:98:c6:11:34:a5:
62:b6:59:74:11:84:19:0e:5c:e8:9f:58:1d:ac:2f:
9f:e0:a4:e1:d3:36:e1:48:f6:a2:83:55:38:99:c5:
e9:6f:23:67:1a:a4:ca:96:87:02:3f:a7:dc:d8:38:
17:f7:5f:3d:18:4c:cc:b4:aa:ad:d9:19:72:da:65:
e0:ba:76:13:22:88:56:18:e8:ab:fb:d5:2d:fc:b6:
78:27:a0:98:ec:c4:90:f8:01:c9:4f:01:7a:7a:0b:
a1:95:9f:8f:0d:c7:2e:bc:d6:8a:61:49:f1:46:0a:
f6:c5:8d:65:da:e0:60:84:63:a3:f3:dd:1d:e5:df:
d4:3d:5a:5d:6b:c3:37:7d:51:42:90:47:db:e2:5d:
88:55:e0:53:d3:55:b5:48:bc:f8:1a:4a:9f:7e:60:
15:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6C:2B:CF:DC:4C:37:C9:F7:B6:0B:D5:13:6D:8E:C7:E6:5D:02:4F
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:cb:4d:c4:ca:fa:c8:2a:a2:01:55:85:57:b7:5f:40:df:28:
5f:2a:51:e3:f3:a4:b2:6f:fb:1c:28:90:17:c1:c9:14:2c:94:
36:01:5e:54:c5:01:0e:30:6d:19:48:ba:79:be:99:43:bd:cf:
e5:39:29:53:85:3e:7b:40:5c:a2:43:95:9d:f0:cb:c4:d7:1d:
b4:5a:df:b6:b7:0b:ca:a8:74:12:62:e1:c6:26:8e:e1:4f:3b:
c0:cc:dd:07:44:8b:34:ab:cb:bf:f7:86:9e:d3:11:62:d5:e9:
0b:de:d0:b6:31:52:16:d8:46:7b:a3:62:17:7d:7d:77:0d:6d:
97:9c:26:e4:1b:3a:a2:12:0a:45:7a:0d:94:84:5e:bc:f9:eb:
30:dc:cc:66:6d:f3:37:3f:3c:17:88:90:5a:75:22:a3:9b:d8:
65:2d:4d:97:81:90:74:4e:a7:cd:a5:3a:49:6b:cf:d5:24:8b:
ff:5c:a8:3e:ef:e6:f6:e1:9d:5b:c1:0d:58:2e:61:06:a7:ba:
6d:95:a1:f4:4c:b6:e7:f6:11:bb:b0:33:e7:98:a6:f2:83:ba:
39:ed:80:45:ef:44:97:90:d7:e3:db:9e:06:2c:ba:b0:e6:b3:
0d:8d:17:7e:f3:9c:43:f1:72:0c:ed:76:1f:8e:b8:cd:ca:a1:
6b:64:43:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzj2mWzYCxRJW3trLg4GboFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODFjNWIzY2I3ZWViMWU0OTU4MjE1NWExOTE4ZWM2MTJm
OTVhYzYwHhcNMjYwMzEyMjEwMTA2WhcNMjYwMzEzMjEwMTA2WjAzMTEwLwYDVQQD
EygyZjZjMmJjZmRjNGMzN2M5ZjdiNjBiZDUxMzZkOGVjN2U2NWQwMjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15NAOUU6ESSqAu/83XVy8hqQelku
Yzy520PJXEdaddHTU5rT0lhOrHnfvdwpc2vts5R+G8OvSAWSfDmzCMC4u2u3zl1G
tBO99dbXRiJKTOijni9kQMZpz9rfd8bkSNSipZZRmMYRNKVitll0EYQZDlzon1gd
rC+f4KTh0zbhSPaig1U4mcXpbyNnGqTKlocCP6fc2DgX9189GEzMtKqt2Rly2mXg
unYTIohWGOir+9Ut/LZ4J6CY7MSQ+AHJTwF6eguhlZ+PDccuvNaKYUnxRgr2xY1l
2uBghGOj890d5d/UPVpda8M3fVFCkEfb4l2IVeBT01W1SLz4GkqffmAVTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9sK8/cTDfJ97YL1RNtjsfmXQJPMB8GA1UdIwQY
MBaAFCGBxbPLfuseSVghVaGRjsYS+VrGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAt
MDIyNmQ0NWE3NTMyLzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAtMDIyNmQ0NWE3NTMy
LzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADctNxMr6
yCqiAVWFV7dfQN8oXypR4/Oksm/7HCiQF8HJFCyUNgFeVMUBDjBtGUi6eb6ZQ73P
5TkpU4U+e0BcokOVnfDLxNcdtFrftrcLyqh0EmLhxiaO4U87wMzdB0SLNKvLv/eG
ntMRYtXpC97QtjFSFthGe6NiF319dw1tl5wm5Bs6ohIKRXoNlIRevPnrMNzMZm3z
Nz88F4iQWnUio5vYZS1Nl4GQdE6nzaU6SWvP1SSL/1yoPu/m9uGdW8ENWC5hBqe6
bZWh9Ey25/YRu7Az55im8oO6Oe2ARe9El5DX49ueBiy6sOazDY0XfvOcQ/FyDO12
H464zcqha2RDCQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 07:24:58 2026 by rpki-client