Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: hxeUOMNZi2PNTwTiHY25MUkNobH3L/vczNUTJQeX/mc=
Subject key identifier: D6:AB:EC:A9:BD:43:08:36:B4:A6:61:1B:C8:0C:B9:A5:09:2E:C6:8F
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019D3AC14F0A2957DA751723EC16A3072A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 0344
Signing time: Sun 29 Mar 2026 18:00:40 +0000
Manifest this update: Sun 29 Mar 2026 18:00:40 +0000
Manifest next update: Mon 30 Mar 2026 18:00:40 +0000
Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: 6bGi3MB1qvKo7GiLkoHMCd4iNPuoywUctXDsZNtYvdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c1:4f:0a:29:57:da:75:17:23:ec:16:a3:07:2a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Mar 29 18:00:40 2026 GMT
Not After : Mar 30 18:00:40 2026 GMT
Subject: CN=d6abeca9bd430836b4a6611bc80cb9a5092ec68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f6:77:d5:e6:14:92:7e:4f:30:8a:3a:0e:03:
fb:f5:42:4f:14:4f:c0:94:76:18:23:d3:9c:41:49:
59:90:5a:f9:2f:29:13:eb:80:7a:2d:bf:08:cd:39:
11:93:13:a2:f2:14:30:48:45:f7:ab:55:b3:b3:4c:
8e:72:51:82:7a:98:34:8f:6b:55:32:21:a6:28:bc:
b1:0d:a4:41:44:88:3d:f1:fb:1c:85:22:43:1f:9c:
06:4e:78:7a:a6:d7:fe:85:3a:51:58:d9:c6:53:8c:
3f:b2:4f:fe:fb:fd:47:d5:53:82:25:a6:5e:99:21:
db:f1:84:14:d9:1b:a2:51:40:9a:e0:06:ea:f4:16:
b0:06:06:7a:c1:9e:f5:bf:24:fe:c3:22:a3:40:c3:
f2:c2:7c:e6:71:db:8f:0c:77:c5:01:36:17:05:8d:
6c:d0:cf:73:fa:c4:ed:13:b7:07:52:6c:d4:9a:18:
d0:ca:f8:c2:c7:ec:f3:14:dc:c1:98:c2:9d:99:f9:
09:5c:da:c2:1f:7f:07:3d:30:c0:81:f8:7f:05:f9:
45:64:b3:4c:83:1e:25:d1:52:46:45:0e:cb:cb:2b:
11:97:87:6c:35:b6:1d:33:66:63:a0:d3:d0:90:08:
af:5b:5a:95:a3:77:21:5b:03:f8:a2:a4:5f:41:21:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AB:EC:A9:BD:43:08:36:B4:A6:61:1B:C8:0C:B9:A5:09:2E:C6:8F
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:3b:a3:57:67:64:e1:9a:d3:30:29:20:d7:58:41:55:8d:15:
18:64:a4:98:d6:20:9d:b7:e4:47:c7:59:ef:43:14:82:1a:0a:
00:ea:52:44:45:17:99:dd:71:2f:58:81:7e:95:0a:4d:6a:a1:
04:7a:22:d0:96:91:e1:69:b1:32:ce:9c:f7:8b:08:17:3a:c8:
b7:9e:00:ef:73:86:03:88:e6:85:8c:a3:07:b7:ca:06:d9:eb:
e6:3d:b5:8a:28:3d:85:fe:c2:60:9e:b7:06:b9:c3:53:ad:89:
d1:d9:20:5c:17:9e:e4:eb:cb:fc:88:1f:c3:08:17:b3:ff:2a:
b4:7c:aa:b0:d0:c2:92:b4:f0:f5:34:82:71:f8:b4:a6:77:08:
c8:af:e4:6b:a1:c0:5f:50:84:0f:7d:96:47:b6:93:59:95:b8:
c1:ec:94:85:4d:c6:6c:1c:d0:f3:7d:dd:8b:16:4f:99:42:f0:
31:e9:17:4e:e8:db:3c:c5:b7:1c:0a:8c:0a:0a:ef:d3:43:e9:
7a:4e:53:ba:14:db:9d:dd:a6:31:2a:25:f7:bf:1a:15:e8:e1:
1e:85:6d:ac:b1:51:bd:51:30:ce:09:a8:6b:e2:12:e2:cf:9b:
dd:f7:4d:fa:b4:c1:cf:d1:ee:cc:3a:12:3f:42:7d:8a:6a:91:
ee:48:f6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:16 2026 by rpki-client