Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: UWUjVmj3LGqn+wDO2JGikSJ2aXBr7nb92N9MA4QKKRk=
Subject key identifier: 36:1E:D8:20:84:A8:07:AD:55:FB:AA:B7:79:7D:7E:57:73:58:91:D7
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 019CAD22AB7249053F1A6AB6A07184FE3434
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 06:00:56 +0000
Manifest this update: Mon 02 Mar 2026 06:00:56 +0000
Manifest next update: Tue 03 Mar 2026 06:00:56 +0000
Files and hashes: 1: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: HloiyfkdOBNGmVK+Uvx2NZ4FiDc8MGLxvAJbTlJNk5U=)
2: PUGn7Ab6cMVb76OjXGWaJzUV5BY.roa (hash: iJYYEN2U/S0Cca5PknTdBrcbLrfBr1O6hjipT0an39E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:ab:72:49:05:3f:1a:6a:b6:a0:71:84:fe:34:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Mar 2 06:00:56 2026 GMT
Not After : Mar 3 06:00:56 2026 GMT
Subject: CN=361ed82084a807ad55fbaab7797d7e57735891d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:32:a7:dd:cc:51:a9:c6:38:bf:67:46:ce:
77:d2:b2:c7:12:50:49:c6:ba:9e:6f:3d:15:2b:c5:
ad:a4:44:21:a9:51:d3:29:f0:24:67:f6:08:59:0a:
73:a9:35:4c:c1:38:a0:a8:1c:b0:61:45:2d:b4:94:
14:e1:87:3b:cc:d4:56:7c:82:0b:0d:bd:ec:84:ff:
9a:b4:e8:0d:c9:30:7b:f0:79:b8:86:c3:f6:3f:cb:
d3:a8:c1:b7:af:15:3e:03:3b:d7:42:fa:b5:b7:65:
55:eb:4d:f5:23:b6:f8:9d:c1:67:68:4b:f9:15:a2:
6b:38:4a:d8:bf:3d:9e:76:86:9c:68:89:c4:08:dc:
f6:f6:81:ec:6c:67:f3:94:66:09:60:e1:46:8b:a5:
bf:c4:ec:a1:d1:98:d5:c3:64:0f:8a:55:ce:a5:ac:
da:94:d2:7a:39:81:82:e3:b4:b8:a3:e6:97:d4:bc:
72:1e:28:38:81:6f:9f:25:a5:52:26:7a:64:8f:8b:
c2:f6:52:25:11:1e:23:9c:e3:42:99:74:e6:05:0e:
7b:24:de:e9:94:b0:6e:f5:94:3e:02:d9:66:64:81:
c5:c4:57:b4:70:8b:00:e5:bb:c2:2f:ec:1d:23:a6:
79:33:e7:b1:94:c7:98:1a:47:8a:1f:62:bf:17:ff:
4d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1E:D8:20:84:A8:07:AD:55:FB:AA:B7:79:7D:7E:57:73:58:91:D7
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:44:d6:fa:ba:2c:38:9f:5b:50:df:08:b7:83:18:4c:cd:17:
27:f5:c5:0c:6f:5e:eb:46:a3:9e:7e:e2:b5:a6:df:2d:24:4e:
b1:53:fd:c2:ba:0f:5b:4a:56:32:53:96:81:1f:e1:74:a7:12:
8f:44:74:00:04:31:d3:c6:9f:cf:33:13:ee:ca:16:f4:2b:89:
f7:f9:c8:8f:f8:f5:37:a3:c5:0d:1f:39:58:af:55:17:f6:f7:
c2:1b:cd:cc:46:05:63:73:27:7c:43:70:77:ba:ae:87:66:81:
d9:bf:eb:09:fd:bd:fd:c8:17:8d:29:48:ee:33:3f:78:81:59:
73:72:2e:78:68:17:fc:d9:62:e4:af:b6:6a:7a:87:ee:09:55:
8c:38:99:95:aa:5d:d2:92:4d:b2:ff:be:3b:6c:1d:39:54:85:
13:24:19:9b:99:ae:6f:38:7a:3a:3e:64:a9:54:3d:37:a3:e2:
2c:33:e7:13:b2:86:ef:64:fb:74:ed:53:04:41:ae:5f:13:51:
9b:d3:ac:cf:d2:b3:58:72:fd:9d:06:07:6c:30:f2:11:80:b7:
4a:f9:f0:c9:df:36:ab:57:1d:cc:52:97:68:78:ed:7d:c8:58:
6d:2e:ab:42:dc:25:68:2f:55:7d:8c:06:a5:46:76:7c:f3:d8:
60:8e:ea:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:16:22 2026 by rpki-client