Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: gJhI/jHTwe+EDHbo7+PxTgUrgXT1IvpiBCPaYPKzPXs=
Subject key identifier: 9D:E4:89:43:27:05:D1:A8:83:3A:3B:84:AA:9D:F4:70:CB:BE:91:68
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 019D9E1B0ED7037C349FAD49ABAC77D33398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 1062
Signing time: Sat 18 Apr 2026 01:01:06 +0000
Manifest this update: Sat 18 Apr 2026 01:01:06 +0000
Manifest next update: Sun 19 Apr 2026 01:01:06 +0000
Files and hashes: 1: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: X8lvX956jQi9DbS3ng3UQPucw968nu9PkY+ollcHQUA=)
2: yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa (hash: p3KrL6JUxzdYriz06hWpPAtkTxaVZyDG1Zr5vFYZVTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:1b:0e:d7:03:7c:34:9f:ad:49:ab:ac:77:d3:33:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Apr 18 01:01:06 2026 GMT
Not After : Apr 19 01:01:06 2026 GMT
Subject: CN=9de489432705d1a8833a3b84aa9df470cbbe9168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:31:90:72:cb:91:00:19:1c:2f:08:cc:d5:f0:
23:1e:3a:38:56:04:33:1e:89:4e:df:64:c8:37:2a:
fe:3a:09:83:a2:7e:84:27:7a:b9:79:7e:e8:63:a3:
f4:fe:9a:e9:69:50:6b:05:fc:a3:b5:bb:ff:e1:80:
5a:93:05:15:7b:b1:a7:e1:1e:d3:8c:6b:72:c1:5f:
54:ef:46:b4:ea:a2:24:6f:0a:4a:7d:26:49:ac:dd:
9b:ef:0b:9c:07:ae:39:7a:e1:d0:be:35:b5:3d:29:
65:0c:da:d5:5f:52:2c:29:cf:51:b7:31:39:40:54:
6f:4e:f3:b3:f2:42:3d:d1:ed:5a:f9:46:ca:1c:2a:
3a:a7:82:d6:34:ff:b6:f4:ab:ca:f1:95:9b:0d:41:
a6:37:a5:9f:87:be:f4:88:14:53:de:5b:5b:a9:ee:
eb:a5:a3:29:7e:43:0f:41:3b:bf:60:70:25:e1:f6:
19:b9:82:93:83:4b:de:1a:ac:46:83:82:a1:20:47:
e1:b0:94:0a:b0:c6:7a:8a:a4:75:91:65:c2:e0:79:
bc:17:24:84:88:2b:e6:6f:04:32:a2:35:a9:38:97:
69:31:b9:4c:a2:02:b9:fe:e2:4a:fc:cd:a1:13:25:
a2:4c:70:6b:5e:41:64:54:ec:b0:44:36:05:c1:41:
45:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E4:89:43:27:05:D1:A8:83:3A:3B:84:AA:9D:F4:70:CB:BE:91:68
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:de:53:1d:c5:da:b1:6f:6e:d7:17:44:04:ec:6a:c1:6f:76:
59:da:5e:8f:a9:9d:16:18:88:70:f8:fa:4c:19:27:68:65:58:
87:d1:75:8e:97:a5:58:0d:97:67:54:a3:54:31:aa:a5:f2:a5:
95:66:3c:28:1c:50:d2:ec:bb:5a:c7:e3:54:c1:29:5a:6b:b0:
78:6f:a1:53:55:e3:3f:25:6d:e3:19:7a:7f:fc:36:ac:67:ef:
61:ad:06:ed:db:70:28:12:dc:09:85:40:82:4a:39:da:52:09:
9c:7c:77:26:53:84:1a:2d:33:3b:c5:3b:7b:db:ba:a7:45:f6:
c1:80:80:55:f1:d1:35:50:8f:6f:d9:56:3f:0d:85:eb:26:1d:
7e:ea:68:a1:4e:97:5f:0d:54:02:87:58:f2:a5:84:60:a5:e6:
f8:a8:aa:aa:a6:f6:17:df:46:2f:63:0f:21:d7:de:04:5f:97:
0c:b9:d5:dc:c8:a0:ab:f8:23:23:03:0a:56:2c:43:bc:c9:fb:
7b:bc:ce:8e:34:e8:db:c9:6e:6b:f2:f3:25:aa:cd:0b:e1:a9:
cc:ae:2b:b0:8e:10:0f:c6:07:6c:eb:86:64:23:fd:24:02:bc:
7d:43:84:2a:a0:37:20:02:0d:22:5e:f6:4c:04:c4:d4:4f:f1:
5b:66:fe:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:41:39 2026 by rpki-client