Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
File: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft (raw, json)
Hash identifier: 7Nj53dY3Afd8g2rVT5TrJk7ufsiIlrR/2RzqehB+pTw=
Subject key identifier: 0C:F8:FE:CC:97:FE:8F:36:CE:13:1A:87:53:99:E9:29:6A:1B:FD:8F
Authority key identifier: 21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
Certificate issuer: /CN=218af26f9a36653f4d996719d4a410fe84af4861
Certificate serial: 019D3940F3A0667C2F1AC4BEB71D420A01C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
Manifest number: 0754
Signing time: Sun 29 Mar 2026 11:00:51 +0000
Manifest this update: Sun 29 Mar 2026 11:00:51 +0000
Manifest next update: Mon 30 Mar 2026 11:00:51 +0000
Files and hashes: 1: 0ID-AnVUhFUiMemh1sbAkCtku7k.roa (hash: AbzQcdesjBBWIHYWJC9zLMR7O1b0U/MWLPaNjpcLcdw=)
2: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl (hash: ZnMr2A1pNQWbKMvaaVUiykXoJhgXkDFT6Q7UUhCb3eI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:f3:a0:66:7c:2f:1a:c4:be:b7:1d:42:0a:01:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218af26f9a36653f4d996719d4a410fe84af4861
Validity
Not Before: Mar 29 11:00:51 2026 GMT
Not After : Mar 30 11:00:51 2026 GMT
Subject: CN=0cf8fecc97fe8f36ce131a875399e9296a1bfd8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b0:ce:77:72:91:39:ce:a8:f5:cf:67:8b:f6:
b2:bf:4c:ba:15:71:11:b7:ab:ee:92:1a:c9:95:b4:
b5:59:8f:69:17:81:1f:8a:e9:83:77:f1:07:55:61:
68:c8:15:d0:0c:74:7f:1b:76:34:18:e2:ee:17:d4:
a3:1a:d1:cd:c6:4c:ed:00:66:6c:17:01:3f:dd:be:
50:af:e3:51:f9:72:f4:ee:e1:ea:5c:b5:68:d8:f8:
55:96:9a:79:a2:6c:64:bc:af:d2:bc:6d:40:b7:68:
1a:2d:a5:58:a3:76:2e:4c:2e:d4:20:0a:f0:60:4b:
fc:b0:3f:f0:61:c3:60:aa:7b:d1:2f:c2:24:f1:43:
07:b3:02:9b:ea:f0:ca:45:4b:23:a2:69:4b:8c:26:
9e:7a:2a:22:ba:c9:68:b3:b9:1f:7c:c2:1f:1f:02:
fb:7b:03:fd:89:54:4c:75:ef:7b:1f:f8:b2:cc:bd:
ef:17:7f:28:96:ab:e7:fa:c2:e3:34:cf:23:36:d2:
df:d4:a2:52:71:87:2d:b0:25:f4:99:aa:c5:30:81:
b9:6a:b2:e6:6b:f8:45:bb:27:9a:91:4f:15:8b:01:
34:c9:63:15:49:da:2f:9a:6b:4a:c7:36:68:13:0c:
43:83:96:c3:4d:3f:c3:0a:a8:f8:44:93:0e:b6:2a:
e0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F8:FE:CC:97:FE:8F:36:CE:13:1A:87:53:99:E9:29:6A:1B:FD:8F
X509v3 Authority Key Identifier:
keyid:21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:14:c2:5b:56:4a:68:98:73:2d:19:e4:a1:fa:15:0f:e5:7f:
c4:b6:a0:3a:d4:dc:a8:33:cf:06:a2:14:9b:24:b8:83:f6:86:
d8:7e:8d:3b:28:aa:ee:42:dd:a1:f8:bc:0f:1b:3a:b1:94:d8:
db:7c:b7:3c:0a:b0:c6:35:1b:ad:21:8e:be:ce:bc:20:3e:a3:
e1:0a:8c:02:15:8d:de:34:12:3c:59:92:f6:e8:26:02:07:68:
e8:f5:17:78:8c:f8:d7:7d:7b:c4:4a:a5:13:09:be:7c:38:61:
5d:38:0e:d7:3b:df:7d:10:0e:00:5f:7e:7c:45:f3:c6:c3:a7:
5f:d0:25:eb:3d:54:03:6b:91:e8:3f:bc:db:fd:90:fd:45:f2:
60:4a:0f:d2:6f:7d:95:79:a3:9c:37:11:27:c0:9c:ae:98:0d:
d5:9b:de:6c:35:a5:ff:81:f5:28:07:f6:d1:e4:6b:8d:50:de:
65:e9:94:65:c4:8a:44:17:88:a7:86:20:ab:b5:52:d5:71:2a:
70:c6:c9:94:48:1a:63:19:2f:38:02:b7:70:70:a8:f5:0f:ed:
2e:da:6a:b2:53:eb:03:8a:a3:7d:72:17:4f:f6:bc:68:3e:d9:
51:9e:1b:a7:17:81:ed:5e:38:e5:7a:f9:25:e9:76:af:6e:31:
a5:d6:a6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:48:44 2026 by rpki-client