Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: mO8HZ63Ev+mdoxe8SsDqYs+6jzVi00vb3Nm19zXcqDI=
Subject key identifier: 12:D4:92:FE:06:AF:08:D8:15:F8:FB:72:1F:1F:89:27:17:1B:85:9A
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 019D9B875861C3689879FC7A0D3CA0A0D7FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 14D5
Signing time: Fri 17 Apr 2026 13:00:31 +0000
Manifest this update: Fri 17 Apr 2026 13:00:31 +0000
Manifest next update: Sat 18 Apr 2026 13:00:31 +0000
Files and hashes: 1: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: 3x8ZTKaTAPY/QaKsVXmy+ePHxD9x3Nbs35J1Zvuz1HA=)
2: qwZdpKjokAcofNdNU2M54zln9G0.roa (hash: 5WlKYdw9vgNtfHFthuKL1OqIGldwR5DZZjXkKE0KqE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:58:61:c3:68:98:79:fc:7a:0d:3c:a0:a0:d7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Apr 17 13:00:31 2026 GMT
Not After : Apr 18 13:00:31 2026 GMT
Subject: CN=12d492fe06af08d815f8fb721f1f8927171b859a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:a6:25:72:df:72:fc:83:c7:63:dc:f7:f6:
25:06:f4:99:75:e1:b1:fc:de:37:27:5d:dd:f8:08:
cd:67:67:7f:00:a4:6a:59:cf:ca:2d:f5:66:ca:02:
14:37:6e:19:0b:37:32:fc:4d:11:af:7e:29:d7:bf:
0b:2c:88:a4:6d:b2:d0:f5:02:47:dc:36:dd:cb:df:
d6:53:49:e3:2e:c7:33:6b:a6:53:b8:89:cf:49:1a:
3f:38:c4:fc:5c:bb:5b:8d:8f:32:44:c3:19:93:1b:
88:c6:9c:32:94:ae:9d:d9:ec:bf:9c:7d:a5:a7:d8:
2f:6c:72:6d:fc:11:20:f6:b3:17:9c:9b:18:dd:45:
b9:06:d7:47:28:9d:d6:d1:92:b1:0b:a9:43:cc:21:
69:f3:af:fe:cd:d2:89:ec:82:88:d7:68:9a:78:c9:
8a:2c:10:f5:d2:50:b2:30:e8:c8:55:64:37:b5:d5:
4c:00:18:23:ab:d7:be:59:b5:33:06:4a:6f:1d:55:
b6:9e:7f:9e:93:0b:d2:eb:41:3e:e2:42:00:58:ce:
b1:1e:8a:d9:a3:dc:a0:b6:1f:06:f3:8a:80:65:5b:
9a:02:08:e7:38:77:22:a1:cc:b1:4d:99:b5:8c:43:
1a:66:29:47:79:a5:43:6c:db:db:b4:37:74:3f:8d:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D4:92:FE:06:AF:08:D8:15:F8:FB:72:1F:1F:89:27:17:1B:85:9A
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:31:ea:6a:74:3b:8c:1b:f1:46:37:e4:28:10:86:bd:fa:38:
e0:e5:30:36:36:11:27:78:7c:17:32:f7:f6:51:fa:a3:69:07:
fd:3b:5d:44:a9:93:4c:11:fe:8f:18:ba:1c:4d:f7:e6:de:bd:
b3:f1:6d:f6:d4:a1:d3:c6:07:c1:19:cd:10:51:1d:32:27:cc:
a6:ae:fd:2e:a6:4f:08:fc:30:a9:7e:45:4d:16:23:1a:c1:9c:
27:5e:d7:55:b1:8c:45:f6:81:5a:30:de:69:df:23:e2:97:1b:
fb:2f:67:03:f7:9f:8c:db:cc:38:9e:a2:c8:a7:17:a8:ec:38:
e3:79:a9:a9:d3:d3:e1:33:e5:6c:78:bf:18:cb:34:2e:9a:d9:
6e:e4:df:53:36:5e:2a:7b:98:76:30:49:00:49:67:f8:c6:c9:
85:25:a6:72:09:77:12:b3:ce:0c:b3:47:22:ff:59:80:46:47:
c6:a6:3b:50:d5:f0:25:58:52:f1:0d:27:be:2a:f6:2d:a2:07:
bc:74:00:1e:62:03:54:1b:0a:95:89:75:1e:db:92:dd:26:02:
5a:43:49:b3:00:47:07:b1:84:02:dc:25:ef:a0:3d:9a:53:ab:
fd:6a:b8:ba:50:d4:83:bf:6a:69:ad:00:2c:e6:4c:d2:14:ff:
18:7b:25:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:19:41 2026 by rpki-client