Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json)
Hash identifier: NE5r/sEcBRJLyWJLN4V9lNvKGDk3ZY9eYsUn+y84KHs=
Subject key identifier: 3B:A1:31:72:5A:BA:62:41:2A:86:20:04:DD:26:47:A1:7E:76:1A:DD
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 019D333ED9B8178152AE1D65C6A8F9E30560
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
Manifest number: 1847
Signing time: Sat 28 Mar 2026 07:00:50 +0000
Manifest this update: Sat 28 Mar 2026 07:00:50 +0000
Manifest next update: Sun 29 Mar 2026 07:00:50 +0000
Files and hashes: 1: FwqF1yEFG7mKuQRa7RkSyKPz0W0.roa (hash: arAr0Lk0kEre21H8drvKyvd7aUFHvFqu0QRUk2zIk0Y=)
2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: jX6/zps1f4hcM6UpYWebl9K26UfKccpmWg9WyWkHEBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3e:d9:b8:17:81:52:ae:1d:65:c6:a8:f9:e3:05:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: Mar 28 07:00:50 2026 GMT
Not After : Mar 29 07:00:50 2026 GMT
Subject: CN=3ba131725aba62412a862004dd2647a17e761add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e4:b4:de:1b:07:50:32:d8:f1:a1:27:37:43:
4e:f2:15:9e:4c:3a:73:2e:85:d5:06:0d:d8:00:42:
b7:76:ec:d9:f2:b4:fb:66:5a:6c:30:2d:e4:2e:cb:
7f:18:e7:83:fd:c6:b6:7d:e0:4b:6d:9f:b7:7a:39:
3b:dc:66:a6:e0:82:73:a0:b1:f7:50:f1:7b:1a:d7:
27:6b:1f:59:66:58:40:48:a7:92:6d:15:6f:43:6d:
7e:e0:52:e5:ef:7b:4a:7f:a6:e4:26:48:21:b9:41:
30:96:5f:dc:b2:3a:b3:96:75:15:7f:9c:38:a4:95:
07:08:dd:19:66:e1:aa:80:08:44:73:32:f2:07:d8:
a7:19:da:cf:ef:0b:ee:0d:b4:ed:46:4b:3b:13:99:
76:4a:2b:d7:31:36:d1:ea:75:8b:af:d4:b5:4e:f8:
50:74:97:8a:a5:e1:66:85:ea:30:cc:cf:86:6a:aa:
90:dd:dd:94:94:24:44:c5:1a:cc:6d:ba:9a:cb:61:
67:0d:96:c8:e7:71:76:a3:d5:a0:b7:a0:69:3c:54:
ed:b3:b3:54:4d:ef:9c:11:01:2c:bb:4c:e7:32:b6:
36:4d:cf:b8:fa:2b:2c:80:66:7f:fc:b2:a2:68:01:
f1:32:a3:35:a7:00:f8:f9:9a:e2:97:3d:31:c3:6e:
1f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A1:31:72:5A:BA:62:41:2A:86:20:04:DD:26:47:A1:7E:76:1A:DD
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:56:30:3e:5a:1f:ef:4d:41:15:7c:05:c9:77:a3:65:59:d8:
f8:2f:40:b1:2a:1c:e1:ac:97:f3:ff:8e:5b:7a:01:98:17:6a:
33:a6:d3:4d:e9:6b:8f:2c:07:45:4d:79:52:0e:86:1b:68:61:
61:36:7e:ce:71:2b:0f:4e:84:50:03:76:45:29:c2:8c:12:1a:
e8:fc:42:9e:cc:d9:4f:39:fb:24:06:f4:78:81:92:62:71:ae:
67:1b:f1:14:63:67:38:96:21:97:11:83:7b:ef:99:d8:0f:c1:
a7:b6:13:c3:da:e5:8d:94:32:6d:c2:a5:7f:82:7f:fe:5a:31:
39:57:69:29:6f:36:37:b2:5f:e3:4a:e7:a9:ce:b7:a8:5b:bd:
58:e7:ca:31:26:2c:50:d4:ec:5e:30:e9:7a:1c:0d:25:c4:3b:
ba:a3:14:10:2b:ca:4a:10:11:ea:43:32:72:80:27:c7:01:90:
7f:8e:65:1d:71:d8:0f:6a:92:98:62:cb:88:5e:84:eb:4e:8c:
f0:0e:19:31:0d:40:7d:76:df:4e:2c:17:0e:9e:d9:9c:f8:ed:
58:52:17:d1:a9:0c:60:64:f7:b8:8c:47:1c:15:30:9a:38:49:
1f:85:92:47:b9:6d:1b:d3:82:9e:c5:08:9f:d1:d3:b8:ed:98:
3a:02:4d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:53:13 2026 by rpki-client