Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: evXenskoL+2kt5TgaqJpVQRah86i6uxfBv4+SI3kiP8=
Subject key identifier: 22:3D:F8:9E:07:20:42:BE:B9:C7:49:6C:24:72:D8:BB:90:CF:A7:72
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 019D37F722598117E29F4AD979269FCD18AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 05:00:36 +0000
Manifest this update: Sun 29 Mar 2026 05:00:36 +0000
Manifest next update: Mon 30 Mar 2026 05:00:36 +0000
Files and hashes: 1: NoeQVsGRTiyXfh1eMtf_ayztjys.roa (hash: AI/YmWAsP7YbcuYJ9yAOU2XEXLr8wONVVB+AxIjcXdo=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: YwTvzha/11/2q1cuSG/9jq8Aw0sU7MmOkUDxIIn9w7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:22:59:81:17:e2:9f:4a:d9:79:26:9f:cd:18:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Mar 29 05:00:36 2026 GMT
Not After : Mar 30 05:00:36 2026 GMT
Subject: CN=223df89e072042beb9c7496c2472d8bb90cfa772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2b:55:3c:59:3a:ac:dd:97:74:24:04:9f:3b:
00:95:4e:f2:15:6d:45:a6:3a:02:b8:10:d5:59:a8:
47:a4:34:c5:f4:ef:41:40:73:7a:1a:ed:b7:32:b2:
04:2f:5d:fe:27:b4:0e:7e:2b:f3:7a:72:a8:de:b0:
bf:6b:ca:44:f1:70:20:b5:78:05:69:62:d2:0c:5d:
1f:39:0b:dc:cf:58:e7:3f:2e:32:d3:9b:f1:4d:d8:
12:53:64:c8:7f:90:d7:6d:17:d2:43:b0:51:e8:9c:
7c:f1:78:9e:27:87:09:6e:2e:91:ca:5c:b5:ff:d7:
39:22:5f:ca:2c:ac:ce:27:0b:a4:57:59:14:41:e5:
7e:ca:52:ba:7f:86:12:36:68:45:e0:31:23:63:60:
b4:43:f0:65:b0:21:d7:1d:a4:b1:e6:b8:f0:1f:16:
bb:8f:d3:05:5a:4f:c2:c2:59:ee:51:b8:f3:8e:bc:
86:46:cd:36:48:e5:3e:33:3a:ef:56:2d:a7:d8:78:
2b:6f:a7:a6:c0:25:5c:8b:ad:1c:08:0f:bf:62:d9:
3d:e8:a7:a5:11:8b:a1:5c:3a:2d:69:cf:17:1a:d8:
bc:80:ca:91:32:37:65:fb:7f:45:9e:c3:4c:1e:0e:
cb:c0:72:8c:f1:42:76:da:c4:71:05:01:1b:b4:9e:
01:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3D:F8:9E:07:20:42:BE:B9:C7:49:6C:24:72:D8:BB:90:CF:A7:72
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ee:60:b1:0b:d0:40:0b:16:c3:28:27:53:96:e5:e5:45:e7:
1c:78:d2:e3:43:53:9e:37:e9:f2:09:07:70:16:90:b8:ca:e2:
80:c0:7e:b1:fa:db:36:1b:e0:06:27:57:01:54:63:8a:fe:8b:
eb:b0:55:49:55:44:a4:e4:6a:32:f3:75:9c:07:25:3b:90:70:
09:db:cb:49:08:de:57:49:bc:74:b3:c3:ac:dd:ee:48:4d:17:
14:b1:45:1b:a0:d0:5e:40:55:75:b2:54:03:a2:17:2c:1e:18:
48:68:01:35:50:c8:59:4e:e5:0c:28:ce:84:03:00:d6:b7:f9:
99:e8:69:12:b9:24:a5:a6:43:c4:93:1d:1b:c6:e0:49:07:42:
c4:6d:61:2a:17:14:47:d1:1d:65:cc:01:27:14:c7:34:4b:ff:
f2:c1:a8:4c:dc:2c:db:22:b8:1e:e6:84:ce:19:5f:d4:f0:c0:
0a:dc:f8:65:c5:4d:38:13:19:9c:df:e4:46:ba:f0:bd:8a:29:
ae:c4:be:7c:93:92:08:43:0b:60:c9:be:d4:a7:8b:33:56:37:
7a:06:8d:37:86:99:d4:37:e2:f4:11:c3:1c:61:a9:3a:b2:f7:
2c:27:ed:c5:15:f3:f6:b9:c4:d8:1a:66:5a:44:c7:e7:4b:f0:
a2:9f:29:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:26 2026 by rpki-client