Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
File: IOI90FhJzIEyVauNG4U_ucRdhpQ.mft (raw, json)
Hash identifier: JrMw5tEGQs5/e6j/F9C+wU1ze73kn6ZgeWSuLyL0MYw=
Subject key identifier: 7C:6D:EE:57:B5:E7:D8:51:FE:AB:22:13:87:B5:AB:4F:9F:B8:7A:D4
Authority key identifier: 20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
Certificate issuer: /CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Certificate serial: 019D34BF36F863A759947736B6C6416EC4C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
Manifest number: 028D
Signing time: Sat 28 Mar 2026 14:00:39 +0000
Manifest this update: Sat 28 Mar 2026 14:00:39 +0000
Manifest next update: Sun 29 Mar 2026 14:00:39 +0000
Files and hashes: 1: G06i-715DWwzIGeO7ozFvpuVglo.roa (hash: NAlau0Ue6s6TBIRjFefwCaMBe6vvRr2rxlG4HQ5m2NM=)
2: IOI90FhJzIEyVauNG4U_ucRdhpQ.crl (hash: 2wdwieAr+mOaj1MHMymCDs1Pb+TmSAm2ZrYiPrLJU+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:bf:36:f8:63:a7:59:94:77:36:b6:c6:41:6e:c4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Validity
Not Before: Mar 28 14:00:39 2026 GMT
Not After : Mar 29 14:00:39 2026 GMT
Subject: CN=7c6dee57b5e7d851feab221387b5ab4f9fb87ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c4:44:aa:c7:24:ed:34:64:54:3b:a0:73:4f:
14:2e:41:1a:b6:57:f9:07:9b:1c:ed:64:18:2a:f0:
42:1a:0d:1e:00:2d:7c:81:9d:9f:30:34:8a:6f:12:
35:17:21:1a:a1:41:88:1b:e7:70:3d:25:d2:f8:27:
ee:b0:cc:c1:74:ca:40:b8:79:b7:d3:7b:fe:66:09:
d0:06:3c:f6:8a:62:be:b3:ec:01:55:8d:1d:23:b0:
2a:46:4f:a2:77:86:7c:32:75:79:d2:c1:0e:19:1c:
66:b2:ec:3c:25:f9:54:39:87:22:c1:ec:21:f8:6e:
11:62:e9:52:91:a9:34:13:3e:2a:1b:37:15:4d:30:
5f:2b:0c:f8:65:d0:55:6f:99:e7:2c:19:26:6b:ca:
28:ee:2b:0c:1b:be:b3:5a:c3:b2:51:47:da:2a:92:
eb:26:d1:e3:2a:e6:7b:a4:56:2f:7c:4e:58:df:27:
ad:a1:64:f1:e3:db:69:57:39:24:f3:5e:da:ca:67:
72:40:f4:ec:f8:46:5c:2a:7b:e3:8c:43:76:f5:5c:
05:60:f6:ba:23:eb:b7:03:a6:f2:e0:fb:ff:1d:5b:
b2:fd:6a:52:61:ef:bf:70:b3:7c:22:1f:50:e7:7f:
d2:61:5f:8e:09:1d:26:d0:f9:24:ba:dc:9a:f3:74:
bd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6D:EE:57:B5:E7:D8:51:FE:AB:22:13:87:B5:AB:4F:9F:B8:7A:D4
X509v3 Authority Key Identifier:
keyid:20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:ae:ea:4c:60:89:ae:34:ac:b0:ac:79:e7:b7:ce:79:e8:64:
2c:e9:d1:a4:6f:cd:22:e1:8e:ed:b5:e6:62:d2:d6:41:c9:ba:
cf:84:b7:a3:45:a5:0b:bb:ef:45:e0:a5:93:cb:66:e0:f8:a0:
4a:ec:de:21:dd:ad:92:a2:28:d9:eb:58:32:0f:82:8f:5e:e6:
99:c5:ed:91:91:75:c8:0c:2f:1c:21:b7:55:07:1e:39:17:6e:
8d:bf:43:62:ae:a3:3c:10:66:02:33:7f:de:0e:40:06:c9:d5:
80:23:9f:26:5a:6b:e0:47:ce:db:89:60:6c:8c:e5:52:65:5a:
78:71:06:4b:7e:83:dd:39:e1:f6:fd:a4:37:53:61:e3:40:1b:
55:b9:78:ef:70:36:51:49:b5:f7:2a:2e:b2:cf:e9:a4:07:78:
0b:be:cb:17:d3:4f:cb:34:e1:1e:22:e2:57:46:50:1a:32:8c:
7c:0b:8b:55:7d:59:23:34:53:ec:2f:4c:88:c6:15:67:c8:84:
25:4d:6a:e4:5b:4d:48:8c:c0:8a:fe:f3:0a:74:d3:5b:f7:2f:
f8:ac:22:48:89:6c:ca:b7:ac:04:fe:25:39:97:8b:1e:28:8f:
f8:89:e6:28:80:19:a2:0c:23:94:0c:5e:10:d5:ca:18:46:75:
43:11:29:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ00vzb4Y6dZlHc2tsZBbsTAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZTIzZGQwNTg0OWNjODEzMjU1YWI4ZDFiODUzZmI5YzQ1
ZDg2OTQwHhcNMjYwMzI4MTQwMDM5WhcNMjYwMzI5MTQwMDM5WjAzMTEwLwYDVQQD
Eyg3YzZkZWU1N2I1ZTdkODUxZmVhYjIyMTM4N2I1YWI0ZjlmYjg3YWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysREqsck7TRkVDugc08ULkEatlf5
B5sc7WQYKvBCGg0eAC18gZ2fMDSKbxI1FyEaoUGIG+dwPSXS+CfusMzBdMpAuHm3
03v+ZgnQBjz2imK+s+wBVY0dI7AqRk+id4Z8MnV50sEOGRxmsuw8JflUOYciwewh
+G4RYulSkak0Ez4qGzcVTTBfKwz4ZdBVb5nnLBkma8oo7isMG76zWsOyUUfaKpLr
JtHjKuZ7pFYvfE5Y3yetoWTx49tpVzkk817aymdyQPTs+EZcKnvjjEN29VwFYPa6
I+u3A6by4Pv/HVuy/WpSYe+/cLN8Ih9Q53/SYV+OCR0m0Pkkutya83S9hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHxt7le159hR/qsiE4e1q0+fuHrUMB8GA1UdIwQY
MBaAFCDiPdBYScyBMlWrjRuFP7nEXYaUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYt
Yjg4OGEzMTI0NDU0LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYtYjg4OGEzMTI0NDU0
LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACq7qTGCJ
rjSssKx557fOeehkLOnRpG/NIuGO7bXmYtLWQcm6z4S3o0WlC7vvReClk8tm4Pig
SuzeId2tkqIo2etYMg+Cj17mmcXtkZF1yAwvHCG3VQceORdujb9DYq6jPBBmAjN/
3g5ABsnVgCOfJlpr4EfO24lgbIzlUmVaeHEGS36D3Tnh9v2kN1Nh40AbVbl473A2
UUm19youss/ppAd4C77LF9NPyzThHiLiV0ZQGjKMfAuLVX1ZIzRT7C9MiMYVZ8iE
JU1q5FtNSIzAiv7zCnTTW/cv+KwiSIlsyresBP4lOZeLHiiP+InmKIAZogwjlAxe
ENXKGEZ1QxEpAA==
-----END CERTIFICATE-----
Generated at Sat Mar 28 21:44:23 2026 by rpki-client