Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: tILkpIQsYbD0wbQ7Ok0CYs2v+aKpTxl7dzCPeOI2l04=
Subject key identifier: 0F:7B:7A:BA:C6:17:26:DB:16:9F:70:F0:17:B3:49:D7:9E:F4:95:54
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 019D37F70A39D823A1DD469EDE6F2B10F57F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 10FD
Signing time: Sun 29 Mar 2026 05:00:29 +0000
Manifest this update: Sun 29 Mar 2026 05:00:29 +0000
Manifest next update: Mon 30 Mar 2026 05:00:29 +0000
Files and hashes: 1: bzcWIOR530kfZXQw__qDEK1p8UI.roa (hash: t4Fa41wgJdlSaS1EXeWWpyDSCXN0855ilnaAwd5UGbU=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: TnlnqmvTP3qeUtIonAX6Chu3bIzXi325RJLUB8Pq9+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:0a:39:d8:23:a1:dd:46:9e:de:6f:2b:10:f5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Mar 29 05:00:29 2026 GMT
Not After : Mar 30 05:00:29 2026 GMT
Subject: CN=0f7b7abac61726db169f70f017b349d79ef49554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b9:10:19:f8:34:8a:88:61:b3:56:9d:22:67:
14:13:bf:e7:f5:c9:4f:42:37:79:f7:1d:7d:67:0b:
d4:44:34:78:12:32:04:05:45:a7:b3:ae:b1:d8:ce:
d0:cc:1b:40:10:3e:4c:d5:66:3e:32:ee:27:e8:7d:
db:2a:01:c4:77:88:01:b2:b7:c1:83:d1:2b:75:b7:
f8:27:c7:ec:ee:cc:77:09:f7:63:1f:8b:bf:ee:16:
64:59:32:97:21:a3:c9:3f:33:5c:dc:3c:e9:83:6d:
6d:e2:06:1f:20:ca:87:ae:a5:27:48:62:41:14:f8:
11:47:fd:cf:b8:11:dd:10:19:81:e6:14:31:5a:0f:
d3:6b:c8:e4:9a:06:15:09:48:19:77:4d:4f:a5:3d:
c7:de:f3:49:73:e9:64:fe:bc:5c:82:f3:dd:c2:c7:
36:4f:43:01:b2:50:05:68:b9:f6:b5:61:6f:11:2e:
89:09:ae:dc:69:28:aa:ef:d0:69:6c:c2:10:fb:c0:
a2:bf:c4:38:2b:aa:e7:d6:d2:f6:96:20:0e:9c:69:
da:3c:01:92:c4:57:ba:41:21:97:91:59:f5:58:74:
e9:ce:8a:d6:b3:43:5e:43:a0:d2:cf:96:a1:58:45:
fc:a6:c9:0a:ea:ed:69:46:5b:b2:7b:25:18:0a:88:
49:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:7B:7A:BA:C6:17:26:DB:16:9F:70:F0:17:B3:49:D7:9E:F4:95:54
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:29:e0:fe:27:b2:7f:86:a4:37:b1:e6:e2:8d:d3:f3:b8:92:
50:a4:d6:0e:05:42:26:42:67:5f:6b:62:ff:f8:ae:99:fc:88:
db:0f:32:6e:a2:02:ac:ae:cf:65:79:b3:dc:9f:6f:a2:08:91:
8f:a4:ab:53:7c:b7:53:48:d1:5f:18:68:19:ec:67:fa:34:7d:
69:d8:1c:3f:e3:0c:e0:25:88:81:6b:d8:b9:00:ab:10:dc:2b:
93:4a:f1:cf:44:26:f1:6f:ed:19:8d:d9:12:34:c6:2c:78:82:
1c:27:50:df:44:45:33:b3:4d:3f:bc:fc:3f:36:8c:af:54:4b:
01:4d:70:29:cb:b8:fe:ac:4c:03:db:d2:39:9d:c0:11:1a:51:
79:af:7d:22:d5:be:81:08:f2:f4:05:26:48:2a:1d:16:d1:77:
33:6d:10:8e:fc:01:19:9c:db:f9:c8:1c:31:57:db:d5:ed:f4:
bd:06:67:0f:52:36:e7:c4:6d:3b:f1:55:1c:a2:39:64:e2:86:
e0:c0:86:e5:15:f1:e3:1b:72:c2:3a:5e:5e:09:5a:a7:60:d6:
0a:9e:ed:10:d9:ca:81:52:f4:32:e9:f0:e3:ef:c7:7b:8d:53:
c9:bd:cf:70:d3:65:bd:1c:99:90:87:a8:68:69:74:12:05:cc:
aa:9b:8a:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039wo52COh3Uae3m8rEPV/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhODM1NTVjYWEyMmNlOWI5YjE2ODM1MDNhMTRlM2NkZDgz
NmUwMWIwHhcNMjYwMzI5MDUwMDI5WhcNMjYwMzMwMDUwMDI5WjAzMTEwLwYDVQQD
EygwZjdiN2FiYWM2MTcyNmRiMTY5ZjcwZjAxN2IzNDlkNzllZjQ5NTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7kQGfg0iohhs1adImcUE7/n9clP
Qjd59x19ZwvURDR4EjIEBUWns66x2M7QzBtAED5M1WY+Mu4n6H3bKgHEd4gBsrfB
g9Erdbf4J8fs7sx3CfdjH4u/7hZkWTKXIaPJPzNc3Dzpg21t4gYfIMqHrqUnSGJB
FPgRR/3PuBHdEBmB5hQxWg/Ta8jkmgYVCUgZd01PpT3H3vNJc+lk/rxcgvPdwsc2
T0MBslAFaLn2tWFvES6JCa7caSiq79BpbMIQ+8Civ8Q4K6rn1tL2liAOnGnaPAGS
xFe6QSGXkVn1WHTpzorWs0NeQ6DSz5ahWEX8pskK6u1pRluyeyUYCohJDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA97errGFybbFp9w8BezSdee9JVUMB8GA1UdIwQY
MBaAFIqDVVyqIs6bmxaDUDoU483YNuAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAt
MWYzMjU0NzNjZTY4LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy83YjljZjgtMjU0Mi00MWMyLTg4YzAtMWYzMjU0NzNjZTY4
LzEvaW9OVlhLb2l6cHViRm9OUU9oVGp6ZGcyNEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsCng/iey
f4akN7Hm4o3T87iSUKTWDgVCJkJnX2ti//iumfyI2w8ybqICrK7PZXmz3J9vogiR
j6SrU3y3U0jRXxhoGexn+jR9adgcP+MM4CWIgWvYuQCrENwrk0rxz0Qm8W/tGY3Z
EjTGLHiCHCdQ30RFM7NNP7z8PzaMr1RLAU1wKcu4/qxMA9vSOZ3AERpRea99ItW+
gQjy9AUmSCodFtF3M20QjvwBGZzb+cgcMVfb1e30vQZnD1I258RtO/FVHKI5ZOKG
4MCG5RXx4xtywjpeXglap2DWCp7tENnKgVL0Munw4+/He41Tyb3PcNNlvRyZkIeo
aGl0EgXMqpuKHA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:48:59 2026 by rpki-client