Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: YXWFlqrPbNaDTkn4VjH5EfeflooEQLO502mbjL7YREc=
Subject key identifier: 0E:39:28:52:08:AF:B1:F6:20:02:80:FB:CE:CA:62:C7:FB:5E:6C:FE
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 019CE635DC3F18D8F39BC66BFFB84F2906C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0E56
Signing time: Fri 13 Mar 2026 08:00:15 +0000
Manifest this update: Fri 13 Mar 2026 08:00:15 +0000
Manifest next update: Sat 14 Mar 2026 08:00:15 +0000
Files and hashes: 1: MPdIoBhSamsoceGH97ZrbeY-7Y4.roa (hash: xk+VO+lT2ZL0Nzt8GYWzkONFJ8wXFr2d45kNV/RsFNQ=)
2: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: DKl1+NZelNP54ueSiIt85DhRCbm9Pa04Fm9EZ55FW90=)
3: lYJDRXWPAACOBIGtN5SoMpmELk8.roa (hash: +/i7PrD75ms6DLzi7NKAcmr/vu2swer4LejKpfAFxnA=)
4: uUrDuBilHzuoCgA80rJqPJxqSNQ.roa (hash: 77BWKMeC9pAnIWkDSdffjc6huYPIszzufpj7ouuEVAY=)
5: vl57Hdk_U8b9_Y2PxCQcURRvrQw.roa (hash: LDklYITUv8QycRGMLTw4zqVIBgqTAfoD6STDQphVOWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:35:dc:3f:18:d8:f3:9b:c6:6b:ff:b8:4f:29:06:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Mar 13 08:00:15 2026 GMT
Not After : Mar 14 08:00:15 2026 GMT
Subject: CN=0e39285208afb1f6200280fbceca62c7fb5e6cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:19:20:df:81:9a:24:94:40:72:e9:08:8b:17:
b5:a0:9c:77:74:18:44:7f:fc:91:73:2c:fb:37:0f:
91:b2:8d:5c:75:c8:d4:94:4b:97:44:29:98:91:34:
35:bd:aa:66:c2:72:e4:a8:7c:f0:ef:62:21:01:03:
01:b0:9e:0f:9c:6c:de:83:55:93:7e:53:f2:0b:f5:
f7:b3:61:b1:48:c8:7f:8e:51:61:d5:42:b6:d3:f4:
6d:29:21:f3:7c:e5:b8:25:4f:89:24:7c:e1:9d:c4:
94:3d:34:75:68:ad:38:ab:81:d7:a4:59:dd:0b:28:
c9:dc:93:75:b3:5b:16:4e:52:19:2f:63:fe:bd:07:
8e:17:59:7c:1d:69:06:3c:2f:aa:37:ed:a9:80:ba:
24:2a:80:5f:ad:8a:e3:e2:60:cd:7f:c2:f8:ba:58:
68:0c:a3:78:75:32:14:75:cc:4e:97:db:24:63:59:
86:e6:03:34:f8:33:ba:6c:01:bb:6b:d1:24:13:2f:
39:dc:ba:e4:1a:5c:62:97:50:f0:37:af:86:77:97:
b1:1c:df:0e:b6:87:d9:36:2f:82:91:6c:52:1f:a1:
15:20:84:2b:9b:4e:5d:d1:da:e7:72:85:ab:29:76:
23:f8:2d:45:60:47:16:34:59:88:fe:ca:81:44:8f:
1c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:39:28:52:08:AF:B1:F6:20:02:80:FB:CE:CA:62:C7:FB:5E:6C:FE
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:31:27:65:89:fb:0a:de:58:32:b3:39:3d:a7:b9:b9:39:51:
48:20:1d:cc:0e:3b:b7:53:54:41:a2:54:91:c1:16:1b:21:ee:
10:da:87:a3:65:06:45:55:26:39:33:e5:89:9a:c5:1a:42:ed:
cb:53:fb:45:07:96:f1:8c:ac:bf:3e:f1:ae:2b:c5:6c:a4:90:
89:28:86:a8:c2:af:c0:4d:b4:cb:f1:34:f5:38:cd:24:2d:96:
92:a9:10:0f:a9:9e:93:c1:ff:3d:a1:81:9d:e1:44:b4:49:12:
85:48:5a:ec:00:32:79:cb:0f:1c:3d:94:be:21:b9:cc:ae:73:
83:6d:77:70:d5:cf:f4:4e:4a:62:47:53:b8:b7:b3:02:ff:a0:
89:db:ed:4e:a8:c8:40:e2:66:d5:08:c7:8a:66:aa:27:01:ff:
ca:a0:10:20:f8:64:dc:3c:5f:bc:b4:ba:c0:0c:7d:da:29:47:
83:3b:54:60:99:3f:f4:18:06:d8:77:c8:c6:54:7e:cf:8c:8e:
22:5e:cc:6a:91:64:47:db:c6:dc:9a:9d:1e:cd:7b:72:4d:03:
ca:bb:67:47:22:e3:7e:a0:ee:85:0c:dc:8c:cd:61:2b:f2:e7:
67:4b:3a:ec:e9:52:7b:76:de:f8:4d:1d:dc:af:b0:ff:a9:66:
f4:a5:56:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 13:52:37 2026 by rpki-client