Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: qmrJllg4Jt/1n2d3banHNDo7OVINjVRb48mUm4bLaLA=
Subject key identifier: 43:43:2E:FE:9C:FE:ED:FE:C0:60:40:73:DC:FC:99:82:47:8F:02:E9
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019DCE62BF33A8B142412E99EFEB7FABA3D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 10BF
Signing time: Mon 27 Apr 2026 10:01:11 +0000
Manifest this update: Mon 27 Apr 2026 10:01:11 +0000
Manifest next update: Tue 28 Apr 2026 10:01:11 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: l5IlJRAvDEGPFs+NEWsQFKG1qyKm4JT2vE2mPMv/CVs=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:62:bf:33:a8:b1:42:41:2e:99:ef:eb:7f:ab:a3:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Apr 27 10:01:11 2026 GMT
Not After : Apr 28 10:01:11 2026 GMT
Subject: CN=43432efe9cfeedfec0604073dcfc9982478f02e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:29:92:84:b5:ed:2e:c2:0b:01:32:b9:82:f9:
4f:fd:44:4f:40:ff:2a:e5:37:b1:c8:95:7b:07:c9:
d2:f5:c8:32:49:27:89:e9:59:d0:7e:e5:cf:0f:b8:
4c:26:de:69:f3:be:59:5c:1b:18:92:4f:42:ac:da:
e7:15:5d:68:45:30:d5:43:5b:d9:e9:64:16:7c:2e:
d1:8f:35:33:af:a0:23:9e:cf:d9:0c:81:6f:b7:4d:
78:c5:19:03:5a:82:17:50:c5:3d:3c:8f:44:7c:22:
8b:f2:89:fc:ac:de:61:eb:19:2e:10:03:90:2c:18:
ff:ce:a6:02:d7:f7:78:cc:29:22:29:5c:9e:c0:e3:
c8:1a:ce:d8:89:43:a1:49:38:03:c0:59:1b:53:27:
0f:44:f7:60:b5:a0:ea:7d:aa:39:c9:a7:15:c4:a5:
76:79:58:d9:44:14:67:ba:00:4f:b1:18:5c:8c:d3:
7c:0d:a8:44:11:d7:c0:46:a0:22:65:3d:95:59:3a:
6e:e6:1f:7f:18:83:29:0a:9c:60:02:b9:33:48:19:
24:07:96:93:30:54:f4:48:f2:07:e7:0b:e9:19:77:
63:7e:ae:3f:6f:3b:55:36:79:15:2d:88:7b:3e:a0:
f3:ca:28:a6:8e:e9:9e:32:2c:cc:ba:4c:67:f7:59:
56:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:43:2E:FE:9C:FE:ED:FE:C0:60:40:73:DC:FC:99:82:47:8F:02:E9
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9f:f8:21:c7:c1:45:22:8a:21:fd:65:e2:9a:20:3b:fa:58:
8a:1a:0f:cc:ce:45:ef:da:9a:95:21:da:1b:37:4f:e9:f9:28:
d1:9c:52:34:07:c6:15:f8:4c:59:c5:06:64:5c:0e:69:ae:91:
12:c4:48:fb:58:7c:b1:42:d0:1c:c1:38:03:2f:39:dd:15:05:
66:4e:95:32:f6:b8:a0:4f:a0:2b:98:c2:45:92:3d:88:aa:2d:
82:d1:5f:03:3e:35:ed:f8:d1:3f:83:5a:8c:01:2c:40:31:8c:
90:4c:8b:51:06:0d:93:95:5e:c3:12:d9:e0:f7:00:f4:ce:92:
85:d3:c1:2b:d8:6d:7f:e1:06:fa:9c:a7:28:3c:bc:54:b2:ca:
18:fa:c2:e9:c6:c2:b4:f3:75:cf:68:b2:00:35:57:0f:89:c4:
5c:67:f8:44:13:66:25:f7:f2:22:51:15:a5:4d:b3:79:51:bd:
b5:be:d5:28:bf:e1:ec:7b:2f:86:e5:99:24:3b:9f:b5:63:0a:
72:56:a7:7f:a8:02:a9:da:37:d9:4b:8b:05:64:ff:23:32:35:
13:ae:cc:9f:1c:8e:2b:46:43:93:65:84:b1:7a:1d:dd:5d:dc:
bd:8c:be:65:ff:7c:cd:9a:2c:88:f4:4d:0c:73:f1:aa:be:9d:
93:4f:17:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 12:39:37 2026 by rpki-client