Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: ID0j4Dn7LX63iAQqoH/r4scPTVej4o+qLkybBoRTCV8=
Subject key identifier: D2:05:1E:E1:C2:8E:86:F9:5A:3F:6E:58:8F:D3:96:D8:9E:F5:76:D3
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 019D992BAF0D5D6A5166F65DE95BC9910D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 02:01:10 +0000
Manifest this update: Fri 17 Apr 2026 02:01:10 +0000
Manifest next update: Sat 18 Apr 2026 02:01:10 +0000
Files and hashes: 1: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: 7vEClq1QIUIq3yx5FyHgK6wOO9rce87nThPDViC/u5s=)
2: tZEur65DZRQxS8J-3HPiT7ZHHZQ.roa (hash: QH0sRva7RS+lctZ8onEh+mUTqcR1lWAI/dUY/rIRqdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:af:0d:5d:6a:51:66:f6:5d:e9:5b:c9:91:0d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Apr 17 02:01:10 2026 GMT
Not After : Apr 18 02:01:10 2026 GMT
Subject: CN=d2051ee1c28e86f95a3f6e588fd396d89ef576d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:52:a4:24:09:a1:eb:96:07:2f:4a:c9:a5:
2f:1a:40:13:f5:22:a4:c5:2f:ff:e4:2b:1b:73:99:
47:c1:3b:3d:21:27:74:0c:4b:24:fd:35:81:9b:e9:
b1:93:83:ad:6f:4b:36:9a:0c:02:b1:d0:7f:dd:f8:
e0:25:0a:5d:bc:c9:cd:70:ef:d9:cb:18:b8:e0:a5:
19:60:67:71:7f:54:dc:b0:82:ff:43:3a:85:f0:3d:
4d:c3:25:7d:ed:33:cd:0f:02:1c:cf:c4:db:5e:57:
87:65:46:16:a2:1b:5f:b7:a2:e4:9d:a0:6c:11:3c:
54:d9:7a:2a:4b:57:db:56:73:63:13:7c:82:11:8e:
0a:3f:84:68:73:b7:f6:07:67:08:f6:78:67:4c:73:
43:72:d0:8d:aa:18:1f:41:70:b9:9b:65:5b:cc:f8:
72:b8:dc:e3:3f:69:10:1f:3c:f2:80:4b:f7:a9:08:
10:3b:a2:db:7d:d9:77:f8:45:62:31:38:9e:1f:0e:
63:b3:9c:22:3b:77:e4:02:b6:37:47:62:6d:a3:2d:
eb:d8:48:1a:dc:ca:39:b7:5f:4a:06:cf:17:ec:83:
61:58:6d:e2:b5:75:5d:0e:d5:86:5c:de:0d:45:7f:
dd:d0:4d:c5:47:03:d3:7b:54:0e:e1:77:3d:28:eb:
e2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:05:1E:E1:C2:8E:86:F9:5A:3F:6E:58:8F:D3:96:D8:9E:F5:76:D3
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:b0:b9:83:59:d4:6e:ef:29:68:80:17:5d:1e:c0:05:00:d6:
ff:17:b1:e6:8c:d0:6e:b4:0d:f2:a3:1f:c2:ed:49:87:2f:6f:
64:40:8f:db:6e:be:3b:e0:52:83:8c:18:f6:a0:25:cc:47:83:
ef:0c:a8:5d:15:bd:93:e8:96:46:78:6a:a4:1d:47:1e:d6:68:
2a:90:46:ad:4c:c4:72:3a:5c:df:14:02:f7:2e:d7:d0:bc:d7:
67:52:64:7d:41:7d:8f:37:54:a4:58:fb:7a:9a:66:12:28:a6:
17:db:77:91:53:a9:c9:bb:d3:0f:c2:d8:6a:ed:47:86:31:47:
47:95:89:85:d4:4c:1d:86:95:41:1f:9c:ce:24:87:b9:2f:b8:
f4:a6:5d:d1:32:42:b9:d5:39:72:29:ce:72:fb:56:1a:17:95:
d7:8a:24:39:d3:e6:2c:6a:71:76:47:7d:96:94:1a:76:41:cd:
70:76:aa:a8:69:3b:a9:2e:d6:2c:ee:26:2e:a8:4a:87:f2:eb:
ea:3b:d7:0f:b6:68:6e:62:d5:64:76:05:10:30:b5:17:c6:0c:
f6:44:a9:f6:97:23:c9:00:61:eb:a3:73:7a:b2:fd:f7:91:72:
c5:c9:6a:ec:30:98:6c:84:3c:03:ec:b8:de:3b:af:6f:9a:cb:
ac:0b:04:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:13:27 2026 by rpki-client