Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
File: iSWuMjSiyXwn9171HT_zJr4GDiw.mft (raw, json)
Hash identifier: RX6JKhR5lyDJ5LYVDBZyax9oWNcGIZA8bvyBPE5RnSQ=
Subject key identifier: 00:97:3A:21:B9:AC:9E:53:E3:7E:A6:28:CA:0B:4D:AD:80:66:9F:36
Authority key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Certificate issuer: /CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Certificate serial: 019CAA2166C9D071EA82971ADAA737EDB9BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
Manifest number: 1841
Signing time: Sun 01 Mar 2026 16:00:41 +0000
Manifest this update: Sun 01 Mar 2026 16:00:41 +0000
Manifest next update: Mon 02 Mar 2026 16:00:41 +0000
Files and hashes: 1: iSWuMjSiyXwn9171HT_zJr4GDiw.crl (hash: bH1lUD6j5Je+Q2wFiKPDnJ4I6fId3MhMGKQOHnZ/iFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:66:c9:d0:71:ea:82:97:1a:da:a7:37:ed:b9:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Validity
Not Before: Mar 1 16:00:41 2026 GMT
Not After : Mar 2 16:00:41 2026 GMT
Subject: CN=00973a21b9ac9e53e37ea628ca0b4dad80669f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:d9:81:ad:3c:5d:8b:4a:0a:e8:0f:9f:4e:
94:aa:ba:fe:bd:3a:93:42:e4:02:1e:8a:22:c0:44:
92:bf:69:e3:50:1d:75:b5:58:7c:c3:d0:08:a6:2b:
02:24:ec:e1:f0:68:2e:33:46:ad:40:36:85:f0:5c:
f5:19:f4:d1:08:1d:e6:a3:4a:00:7f:fe:97:a0:eb:
c9:27:2e:9a:57:1d:2a:c7:58:bc:d5:a2:d2:f1:45:
e9:f4:cd:7c:0b:3c:41:8a:76:ad:21:e7:d5:88:fb:
ca:06:a2:a7:5d:af:7a:02:ef:be:dc:0e:1e:21:20:
d6:3c:a7:fe:04:c5:c3:ea:df:05:e1:ba:bd:83:a8:
b9:1a:d9:ab:3a:27:e9:b2:64:a2:a4:45:3e:71:59:
e3:87:0b:44:b2:51:14:da:5e:b0:d2:c8:62:1a:b9:
96:aa:89:28:97:d8:2d:dc:10:f2:75:a4:16:21:4b:
49:db:66:fc:81:92:93:45:c2:fe:d4:a6:b3:af:50:
fb:4c:90:87:03:4e:6a:88:c8:24:d3:f4:46:9e:c3:
3f:28:f6:45:c8:a2:e7:da:08:e3:86:49:99:f3:10:
9e:a0:83:45:9e:60:b3:6a:0c:90:35:24:0b:0c:bb:
52:c2:db:3a:c1:08:69:07:85:bb:1d:45:09:34:42:
8a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:97:3A:21:B9:AC:9E:53:E3:7E:A6:28:CA:0B:4D:AD:80:66:9F:36
X509v3 Authority Key Identifier:
keyid:89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:aa:3a:1b:6e:f4:de:d4:86:86:34:f7:dc:ab:c8:c9:25:32:
86:a6:c8:29:2d:12:c8:6b:87:3a:22:12:e5:4d:e2:47:38:ec:
20:ee:4b:68:99:fa:71:25:df:37:73:a5:aa:b6:ea:c3:9d:48:
06:a5:f1:05:26:32:a8:dc:98:f4:f6:20:9c:6e:d7:90:61:21:
ea:42:79:d9:07:82:08:59:58:0e:7b:fe:60:d3:78:fa:82:2f:
19:77:94:a3:93:b7:e6:a7:a2:9e:1c:87:17:2e:d3:26:99:a9:
f9:f8:bc:c3:5b:01:9f:74:43:da:d1:0b:09:83:83:ad:32:08:
ba:dc:0c:ea:f2:5a:a4:4a:0a:c7:5f:0b:08:d2:02:0c:39:c0:
b4:97:ac:6e:ee:17:7e:a1:17:4d:86:8c:62:c9:e0:64:04:f8:
ba:5c:80:33:64:62:7d:46:dc:63:09:94:69:11:3f:f1:35:d4:
89:0f:59:5d:76:d6:bc:89:65:b5:69:1a:2c:16:65:79:61:b0:
ec:78:34:f3:e2:d0:1f:e1:91:3f:32:ca:b6:e8:8c:58:78:db:
5f:d3:8a:e6:73:91:c4:25:7e:f0:5a:21:1b:2e:03:94:65:1a:
34:90:1f:46:84:1a:07:c9:fd:a0:41:8d:c1:3e:5e:eb:27:80:
b4:7a:5c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:50:09 2026 by rpki-client