Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
File: iSWuMjSiyXwn9171HT_zJr4GDiw.mft (raw, json)
Hash identifier: tXocxzDS+dxZziHVLKyPqEeffWFhRaMnzCaCF28GJoQ=
Subject key identifier: 61:EF:9D:89:6D:AA:1C:60:CB:25:40:DB:9F:EA:2C:39:55:DE:43:B1
Authority key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Certificate issuer: /CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Certificate serial: 019D999938A30E446CBDBD95DE943B5B5738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 04:00:48 +0000
Manifest this update: Fri 17 Apr 2026 04:00:48 +0000
Manifest next update: Sat 18 Apr 2026 04:00:48 +0000
Files and hashes: 1: iSWuMjSiyXwn9171HT_zJr4GDiw.crl (hash: GYe+ncTXCTryvIj+VKayrvk40i8xEwvQoLEbRkkBj4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:38:a3:0e:44:6c:bd:bd:95:de:94:3b:5b:57:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Validity
Not Before: Apr 17 04:00:48 2026 GMT
Not After : Apr 18 04:00:48 2026 GMT
Subject: CN=61ef9d896daa1c60cb2540db9fea2c3955de43b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:49:21:e6:73:d1:81:16:45:f8:77:29:6c:12:
b3:28:b7:55:1a:bf:96:31:ff:e5:d9:d5:8d:cd:22:
44:3e:57:95:f7:1e:d9:1c:f3:7c:68:ae:29:9e:5a:
6b:e9:f1:9e:e0:d5:2d:7d:b5:6b:ae:c7:34:19:af:
91:da:35:b3:85:81:bd:4f:9b:bf:3f:a4:41:93:43:
51:47:de:b1:33:72:65:56:e4:6e:e0:ae:0a:03:e8:
c3:87:a0:60:32:03:44:83:cd:8f:37:19:72:f8:8a:
cb:9c:41:2d:64:3b:b0:a3:72:dd:65:57:2a:ff:8e:
1f:05:46:5d:66:4a:68:f1:b0:7d:52:ca:ec:94:64:
89:ac:a8:e9:80:e7:30:29:98:af:93:37:2f:45:a4:
57:d6:6d:c4:0a:35:7b:ea:41:74:a5:5f:ff:30:68:
3d:d8:ff:b3:8a:a5:51:dd:63:29:c3:32:20:34:d3:
de:e2:f1:86:9f:3b:17:b1:14:c5:fc:d2:c2:e8:ec:
d1:4b:81:8d:2e:1c:a3:cf:2d:52:4b:74:e6:93:b9:
dd:c9:9b:f8:13:1d:48:5a:22:eb:bc:6e:d0:66:41:
a3:e0:2c:c6:bd:3f:7f:b7:64:5d:28:62:5b:97:a0:
a0:b5:ac:5d:5b:aa:96:e5:30:a4:64:47:a8:63:7e:
8d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EF:9D:89:6D:AA:1C:60:CB:25:40:DB:9F:EA:2C:39:55:DE:43:B1
X509v3 Authority Key Identifier:
keyid:89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:1c:78:0f:e6:19:a6:e7:d6:72:aa:a5:6b:c5:8d:65:6f:dd:
4a:78:0e:e2:e0:e6:31:ea:66:b5:eb:51:d2:f3:f1:fd:aa:bf:
c6:b5:30:80:4d:34:08:bb:1a:88:f6:73:8d:ff:ea:ab:fc:3c:
80:c6:8c:69:d6:6a:b0:ec:13:34:00:e1:41:73:34:31:bf:45:
53:e3:5c:cb:97:34:36:c4:69:08:f9:82:47:b9:58:a5:6c:c6:
16:62:54:be:31:5e:20:a6:6f:de:4d:05:a6:ce:57:ba:c8:5c:
36:fb:63:ca:c9:9e:1c:37:ae:c0:ee:0f:77:d9:6b:43:08:70:
93:7d:de:8c:c1:38:12:ae:26:51:b2:a3:bf:75:97:7d:6d:d7:
2c:3c:ea:5f:50:98:30:21:ee:ae:02:99:64:3c:f5:8e:fb:e1:
20:da:63:53:be:e1:ed:95:3c:9c:45:cf:bb:ea:a2:20:e3:79:
df:f0:bc:57:e9:e1:10:d5:ec:8f:2f:87:a2:4f:72:07:de:8f:
c7:f7:a0:54:4c:69:bf:d0:69:60:02:a3:42:be:ec:93:14:66:
58:92:6a:3f:77:6b:6b:28:95:75:58:ff:16:e1:64:52:c1:36:
c6:24:bc:2f:d9:b1:06:7c:c5:28:86:d3:84:03:59:95:16:e4:
03:d7:95:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:36:04 2026 by rpki-client