Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: jv5B68gbZyWw82CR5g3WUwtlg+4AtlzTiMXe6yZgphM=
Subject key identifier: 29:E2:73:F4:15:A6:D1:BD:91:97:C5:F0:78:28:C5:74:FC:14:AB:F6
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 019DCDF4E339B945408A741E9CA25B522F59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0ECE
Signing time: Mon 27 Apr 2026 08:01:11 +0000
Manifest this update: Mon 27 Apr 2026 08:01:11 +0000
Manifest next update: Tue 28 Apr 2026 08:01:11 +0000
Files and hashes: 1: MPdIoBhSamsoceGH97ZrbeY-7Y4.roa (hash: xk+VO+lT2ZL0Nzt8GYWzkONFJ8wXFr2d45kNV/RsFNQ=)
2: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: c1W0jkq9FZ95qN4pmV6P+tDpjBNhD2n+4j7tGyu9F/w=)
3: lYJDRXWPAACOBIGtN5SoMpmELk8.roa (hash: +/i7PrD75ms6DLzi7NKAcmr/vu2swer4LejKpfAFxnA=)
4: uUrDuBilHzuoCgA80rJqPJxqSNQ.roa (hash: 77BWKMeC9pAnIWkDSdffjc6huYPIszzufpj7ouuEVAY=)
5: vl57Hdk_U8b9_Y2PxCQcURRvrQw.roa (hash: LDklYITUv8QycRGMLTw4zqVIBgqTAfoD6STDQphVOWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:e3:39:b9:45:40:8a:74:1e:9c:a2:5b:52:2f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Apr 27 08:01:11 2026 GMT
Not After : Apr 28 08:01:11 2026 GMT
Subject: CN=29e273f415a6d1bd9197c5f07828c574fc14abf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1a:ef:c8:98:33:e9:fd:d6:76:4f:e5:55:91:
2e:60:82:f1:d8:b3:b7:d5:6e:f7:5e:2b:9b:e5:06:
b6:0b:5d:07:36:da:ab:9d:f5:f4:65:a6:b1:dc:37:
64:2f:c8:a9:07:9b:d5:f6:b6:d0:d2:cf:78:fd:2c:
db:8b:fb:17:70:b1:c9:27:55:9c:81:84:e2:84:81:
35:1d:5d:c6:5a:10:20:7e:3b:bb:c0:d2:bd:a3:41:
52:92:07:82:d4:22:19:09:ef:48:96:03:01:4f:86:
91:6a:d3:2d:32:75:a3:89:e7:ee:63:38:38:a0:02:
1b:68:40:20:44:ed:cc:70:cf:a8:b5:97:af:a4:cc:
27:28:d4:66:89:02:8c:bc:18:cc:b5:ce:79:2c:4a:
ef:61:81:3f:c1:79:a9:89:4d:de:a6:d8:0a:99:2a:
53:ff:22:15:dc:f0:2d:00:95:f7:73:30:4a:7f:8e:
33:a2:b1:95:b2:a3:a2:40:91:58:28:45:bc:3d:26:
56:2f:ed:44:70:4c:5e:91:93:87:3b:5c:7f:4d:7a:
b8:8b:63:ce:66:f9:c9:55:25:57:cc:ae:48:df:dd:
c9:74:03:0a:07:8a:f1:49:bb:a0:f5:ed:ef:c2:f7:
8e:4b:31:67:b7:b5:d4:66:4d:25:69:74:05:ab:8e:
e1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E2:73:F4:15:A6:D1:BD:91:97:C5:F0:78:28:C5:74:FC:14:AB:F6
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d8:23:b0:16:de:c7:97:a1:2f:b8:72:b6:a7:2a:d5:2c:ec:
11:0e:29:4c:78:2a:3c:c5:86:2b:62:16:3f:82:18:70:8d:6b:
12:75:26:35:17:53:aa:3d:e2:2e:df:9c:72:40:62:d4:ff:47:
ab:89:c4:7c:ff:04:aa:0b:50:fd:08:9a:3c:ee:40:88:ff:d5:
3d:63:e6:f6:0c:70:f1:51:b3:08:7f:fb:ab:ca:af:6e:77:d9:
84:73:3b:62:eb:53:65:d7:5c:47:f4:e5:ae:a1:60:7a:f2:73:
2c:a2:df:c8:22:c0:1a:99:f5:8f:d8:07:31:7c:1b:46:e2:db:
ee:52:2a:40:9e:19:0b:e6:b0:3d:9a:15:b1:18:5e:95:52:97:
38:46:26:f9:4f:b9:64:df:d2:56:26:1e:d0:03:5f:3d:0f:2c:
76:48:8c:58:79:a7:bd:e0:bb:7f:53:fb:d9:d2:d7:5c:e7:d9:
71:6c:53:f0:3a:72:d7:bb:ac:fc:97:f3:c8:00:94:cf:c4:58:
4c:48:01:85:ff:9f:68:fd:5c:35:1c:b0:b0:93:98:4d:12:ec:
7a:26:79:94:89:88:9d:4a:40:ea:44:e7:00:d0:91:e7:98:73:
94:a0:7c:71:50:86:2b:7e:35:79:f5:6f:8d:6a:98:85:3c:26:
76:bf:c8:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3N9OM5uUVAinQenKJbUi9ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDU0NDg1ZWU2MmM2ZjE5Mzk2MTNjYmEyMDY2OWVlZjQ1
MDRmNzkwHhcNMjYwNDI3MDgwMTExWhcNMjYwNDI4MDgwMTExWjAzMTEwLwYDVQQD
EygyOWUyNzNmNDE1YTZkMWJkOTE5N2M1ZjA3ODI4YzU3NGZjMTRhYmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBrvyJgz6f3Wdk/lVZEuYILx2LO3
1W73Xiub5Qa2C10HNtqrnfX0Zaax3DdkL8ipB5vV9rbQ0s94/Szbi/sXcLHJJ1Wc
gYTihIE1HV3GWhAgfju7wNK9o0FSkgeC1CIZCe9IlgMBT4aRatMtMnWjiefuYzg4
oAIbaEAgRO3McM+otZevpMwnKNRmiQKMvBjMtc55LErvYYE/wXmpiU3eptgKmSpT
/yIV3PAtAJX3czBKf44zorGVsqOiQJFYKEW8PSZWL+1EcExekZOHO1x/TXq4i2PO
ZvnJVSVXzK5I393JdAMKB4rxSbug9e3vwveOSzFnt7XUZk0laXQFq47h3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCnic/QVptG9kZfF8HgoxXT8FKv2MB8GA1UdIwQY
MBaAFIsFRIXuYsbxk5YTy6IGae70UE95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3Nzgt
NmJjMzkwOTk1Y2FiLzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3NzgtNmJjMzkwOTk1Y2Fi
LzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhNgjsBbe
x5ehL7hytqcq1SzsEQ4pTHgqPMWGK2IWP4IYcI1rEnUmNRdTqj3iLt+cckBi1P9H
q4nEfP8EqgtQ/QiaPO5AiP/VPWPm9gxw8VGzCH/7q8qvbnfZhHM7YutTZddcR/Tl
rqFgevJzLKLfyCLAGpn1j9gHMXwbRuLb7lIqQJ4ZC+awPZoVsRhelVKXOEYm+U+5
ZN/SViYe0ANfPQ8sdkiMWHmnveC7f1P72dLXXOfZcWxT8Dpy17us/JfzyACUz8RY
TEgBhf+faP1cNRywsJOYTRLseiZ5lImInUpA6kTnANCR55hzlKB8cVCGK341efVv
jWqYhTwmdr/Ifg==
-----END CERTIFICATE-----
Generated at Mon Apr 27 16:54:40 2026 by rpki-client