Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: 5iPbnQ9f/4TEgR4EAWZPlaoCErdGEsR/52/G6mgXB78=
Subject key identifier: 5F:3B:20:B7:F2:68:62:2F:36:A6:A5:D4:BB:B6:70:59:4C:EE:30:02
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 019D9962EAB88988D1A281C72758806EE6A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 134F
Signing time: Fri 17 Apr 2026 03:01:29 +0000
Manifest this update: Fri 17 Apr 2026 03:01:29 +0000
Manifest next update: Sat 18 Apr 2026 03:01:29 +0000
Files and hashes: 1: 5lnasV2204ovFjXYLSXNVvtyrOk.roa (hash: xjGig7wrwgL+6zENtEl5DMDRUc85WEr4TmfLvxx+0vU=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: LCd8JXvKm5zthm5/K0kTeSQbh9nvGg/APgWC5lV7VGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:ea:b8:89:88:d1:a2:81:c7:27:58:80:6e:e6:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Apr 17 03:01:29 2026 GMT
Not After : Apr 18 03:01:29 2026 GMT
Subject: CN=5f3b20b7f268622f36a6a5d4bbb670594cee3002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bd:10:fc:b0:00:e9:bd:a0:b8:c2:fc:6a:09:
79:13:64:da:cf:d3:17:d5:6f:5c:70:e6:76:98:a7:
0b:02:7f:e9:6d:1f:96:47:cb:a0:cb:42:8d:7c:17:
a4:f6:c6:39:cf:47:0e:9e:d1:42:64:56:35:40:95:
05:7a:54:9c:bd:b5:c8:d6:dc:0f:67:16:95:41:9b:
dd:7c:b2:a7:a1:54:6e:8a:21:44:7d:d6:3f:f5:9c:
b3:0e:59:0a:63:d1:9c:46:56:f1:eb:7d:5a:47:5f:
08:44:ce:f7:6d:0b:88:7a:d5:14:10:df:9e:53:32:
d5:df:70:73:48:0d:6e:38:8b:e7:d3:ee:0b:99:eb:
f0:20:aa:5f:8e:c8:67:01:98:8b:80:50:b6:b6:b1:
33:1c:e1:4f:24:05:23:54:85:3a:cd:76:de:74:12:
cc:ee:b4:59:c8:04:d9:67:9e:e5:7f:4c:77:0f:1a:
f3:24:09:7e:2a:f2:54:6b:25:81:d1:72:1d:4b:5c:
ff:dc:e7:43:00:6c:0c:04:25:46:07:d5:29:0b:0c:
92:87:83:62:cc:0e:16:9f:c3:1d:81:22:2c:aa:63:
5f:23:b5:88:da:aa:04:c0:59:19:5f:7c:91:3e:28:
6e:5c:2b:7c:97:0a:7d:9d:be:64:59:df:bf:3e:ab:
3d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3B:20:B7:F2:68:62:2F:36:A6:A5:D4:BB:B6:70:59:4C:EE:30:02
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5b:00:8e:83:5d:80:78:c6:0c:6e:39:d5:5f:11:91:8a:dd:
6c:fd:71:e6:4e:9a:41:c9:e0:a3:42:5d:56:76:1b:b2:be:7f:
22:72:cc:0c:8d:c6:53:9a:39:ba:b3:f2:87:9c:d6:34:f9:e2:
5d:d0:ba:6e:6d:e8:9d:b8:91:cc:da:25:9e:45:be:e2:56:8f:
07:c4:6d:3a:b6:04:49:17:01:f0:7f:a8:9e:69:1b:4e:e0:e2:
d9:4c:7f:00:8e:78:4c:7f:9c:ad:f9:69:fa:9a:8d:e7:83:89:
48:49:44:02:38:b8:88:a2:db:50:33:98:ba:75:69:28:d1:a6:
4f:0e:24:b2:fa:95:f0:9c:0f:82:2e:42:a6:b0:4e:cb:80:f1:
7f:a1:81:a0:37:f6:46:27:9a:0a:7e:e1:83:0f:8c:d2:7a:ce:
9c:d0:68:03:b6:d2:8a:4f:fb:89:be:cf:09:fd:1a:ef:63:42:
90:f8:10:32:1e:2d:dc:a1:5d:82:af:34:bb:ef:af:0e:da:28:
cd:a1:e6:01:29:e6:7c:e3:18:18:0e:c8:f0:23:de:e7:fb:b9:
d9:51:f4:ff:60:15:a7:f3:79:d1:62:c1:3c:19:d1:34:aa:f3:
26:cb:8a:9e:84:11:d8:81:66:fd:53:18:32:12:f8:bc:83:26:
06:3f:e0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:19:40 2026 by rpki-client