Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: XG5GnhE9KzmNJEQQeNQ+Td37MX9HtN0LlANP7f4ivls=
Subject key identifier: 7A:B7:64:A2:1F:CE:85:31:47:C0:00:5B:FA:0A:28:C3:C2:C1:E7:78
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 019CAD902F684F75F1A134107811A2F182EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 08:00:33 +0000
Manifest this update: Mon 02 Mar 2026 08:00:33 +0000
Manifest next update: Tue 03 Mar 2026 08:00:33 +0000
Files and hashes: 1: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: aylmBJhB55J17tlccwNGCSubEpd5E1RK4HC/Sd8smxM=)
2: tZEur65DZRQxS8J-3HPiT7ZHHZQ.roa (hash: QH0sRva7RS+lctZ8onEh+mUTqcR1lWAI/dUY/rIRqdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:2f:68:4f:75:f1:a1:34:10:78:11:a2:f1:82:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Mar 2 08:00:33 2026 GMT
Not After : Mar 3 08:00:33 2026 GMT
Subject: CN=7ab764a21fce853147c0005bfa0a28c3c2c1e778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:23:aa:c0:5f:58:25:60:67:a7:e6:4b:a0:
33:cd:54:cf:76:cb:b2:f7:77:2b:76:58:ed:9b:cf:
7c:ef:d5:23:24:99:2c:88:85:bc:66:8a:43:81:71:
03:df:75:f7:6f:c3:f5:c8:94:b9:e5:02:30:c8:3b:
17:9c:16:14:da:73:3d:cf:9e:32:6a:e3:62:e0:4a:
4a:ce:ed:34:20:19:f2:3c:07:10:eb:c9:79:ad:c0:
45:38:b3:1d:08:2c:29:55:5b:40:ac:aa:9d:99:38:
93:42:51:db:a4:8c:fd:49:49:47:2c:7a:d9:97:12:
6e:67:03:e9:2a:ea:45:8a:27:12:54:16:e9:4e:96:
ad:20:db:86:a4:8c:8c:bc:65:30:59:d3:8e:50:a6:
47:ad:77:6b:5e:49:fc:17:46:e1:9d:4a:26:08:88:
5b:4a:70:a6:84:38:6b:f3:5b:bf:d3:64:92:63:75:
9b:5a:0a:d8:10:aa:28:2d:46:2a:60:2e:b2:b2:ea:
85:cc:44:36:61:29:2d:38:e8:df:aa:f7:8c:60:cb:
33:3c:c2:3b:b5:48:32:16:7f:e4:8d:a1:1d:5a:d1:
9d:fc:2e:4d:56:23:b4:25:fd:bd:51:02:e0:12:24:
cd:77:53:b8:c7:fa:ab:7a:94:e6:af:0a:9f:4d:e6:
43:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B7:64:A2:1F:CE:85:31:47:C0:00:5B:FA:0A:28:C3:C2:C1:E7:78
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:59:1d:d3:ee:c3:d8:6c:75:fc:e9:52:76:5a:dd:67:d0:0c:
a6:c1:c4:13:5f:36:cd:6c:0d:d0:5b:88:0f:42:7b:6d:77:42:
d1:92:61:3f:cd:25:8f:1d:24:3e:df:b2:97:7b:97:7b:70:d8:
5d:bf:e7:55:ab:ef:bc:25:40:8b:16:a3:be:92:53:ee:28:ad:
d9:8a:89:64:87:2c:b5:1b:1c:b5:49:28:03:26:b8:3e:c1:61:
d4:99:e1:48:d4:6f:83:38:3a:27:55:f6:51:ca:a3:e2:17:ed:
95:b8:f7:5d:8a:5f:a1:32:bf:37:70:5c:f1:e9:e5:6a:7e:7f:
a2:a4:2f:18:05:b4:ca:e1:a4:fd:9c:53:89:49:f3:87:ef:0c:
ee:39:f2:e2:d2:a1:12:3c:1e:48:fc:d4:cf:50:ea:1e:19:46:
48:78:54:f0:e4:ba:e0:b1:bf:18:bc:d4:d0:b8:41:7c:72:0e:
d0:bc:d3:44:e7:63:41:34:ce:92:ac:c4:48:e7:c6:1f:22:8f:
3b:a0:00:16:8a:eb:9f:a1:63:69:08:6c:62:23:48:a4:f2:52:
9b:df:b0:4a:40:27:dd:83:4e:ed:0c:da:b8:c0:55:0d:b1:f6:
56:da:f3:20:35:f7:b0:f4:9d:88:86:2f:10:c3:e9:2e:0f:29:
ae:04:02:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:00:07 2026 by rpki-client