Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json)
Hash identifier: UY37HDs2fZO5jYTnGKLDUbavNVgZJg71KbZarSukQgQ=
Subject key identifier: 1A:BA:9B:55:A0:6F:6F:E5:B3:33:81:BC:AD:51:29:8A:6F:26:70:5E
Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae
Certificate serial: 019CAB6B481E8D4860FC26D94B2C94FC1B60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
Manifest number: 123E
Signing time: Sun 01 Mar 2026 22:01:00 +0000
Manifest this update: Sun 01 Mar 2026 22:01:00 +0000
Manifest next update: Mon 02 Mar 2026 22:01:00 +0000
Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: vgPxhtUFEUwFqajBe3dZD+bNVxTQ5gbFmKTQGQCf/7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:48:1e:8d:48:60:fc:26:d9:4b:2c:94:fc:1b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae
Validity
Not Before: Mar 1 22:01:00 2026 GMT
Not After : Mar 2 22:01:00 2026 GMT
Subject: CN=1aba9b55a06f6fe5b33381bcad51298a6f26705e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e6:34:a5:7f:b6:9d:c4:30:8f:99:81:85:98:
36:ba:50:5e:33:54:11:28:39:44:53:9e:8f:fe:08:
2c:35:65:6b:6c:b1:b2:29:7a:76:8b:1c:e7:e8:48:
b7:21:51:96:60:85:71:09:7d:7e:06:ad:5a:8b:0f:
80:dc:f3:77:04:ff:f1:1b:98:94:a9:1c:1b:83:52:
a7:50:80:7d:44:48:d4:e3:9b:c3:d5:da:f7:37:13:
cf:8b:1b:cd:08:13:2e:ab:cf:5f:ed:e3:13:42:2a:
9a:33:6c:bd:90:99:bf:5f:f7:0a:63:6a:27:aa:14:
82:6f:52:b7:25:71:f6:bb:64:1e:4b:62:f0:32:16:
5b:3b:d2:14:80:ac:84:1a:80:08:17:17:1e:a3:55:
fb:ff:09:d7:be:db:99:74:2b:b0:28:5d:8f:32:03:
65:9a:47:57:9e:80:58:2d:68:cb:0d:ad:76:69:66:
33:ca:d5:09:b5:dd:20:65:af:4d:44:0c:e0:41:a6:
89:d6:b8:da:f8:14:97:e5:30:60:65:6e:2e:59:3c:
c4:e6:30:61:04:15:c6:4d:c1:df:aa:c8:17:41:4e:
57:95:36:06:30:c6:ad:2b:22:cf:c6:e4:30:dc:4b:
c6:14:02:f7:48:18:0f:dd:4b:d7:39:aa:04:90:93:
80:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BA:9B:55:A0:6F:6F:E5:B3:33:81:BC:AD:51:29:8A:6F:26:70:5E
X509v3 Authority Key Identifier:
keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:39:71:16:a4:ef:28:e8:92:21:cb:04:a3:8d:13:77:76:bc:
8e:93:5a:b4:69:c9:b4:2f:4b:b4:88:c9:f9:ee:28:b4:b0:68:
f7:d6:66:40:6f:03:96:8a:1f:b2:74:a9:89:3a:58:a4:a8:44:
38:e3:c9:0d:bf:31:20:0b:92:9d:33:cb:88:5e:1b:18:52:fc:
33:2f:7b:6d:5c:1d:46:c4:45:9b:b8:cc:72:26:23:34:f2:7e:
c4:8d:12:29:c4:f4:63:41:94:a2:c0:76:c0:6a:7e:dc:0d:17:
04:e6:96:23:2c:30:39:eb:d9:08:7b:a6:c2:87:12:09:ed:c2:
58:15:49:46:ec:99:4e:aa:48:6a:a8:fd:38:15:8e:6f:0b:8e:
f8:15:10:59:1d:45:31:4b:94:4f:1b:e6:6c:ba:78:e6:47:55:
a2:8b:cd:20:df:73:76:97:96:88:cc:e1:33:24:1f:b3:c2:a2:
b2:2b:65:35:1f:08:6b:11:19:3f:de:1d:66:3f:c6:15:33:67:
96:ae:93:22:58:be:c2:a6:e5:55:c3:14:03:56:81:a6:aa:6a:
50:e4:39:eb:31:c7:c2:34:10:cf:5d:2c:61:3b:86:9a:c7:84:
03:4e:87:93:3a:a8:fc:85:f5:98:62:88:3d:df:43:4f:ee:da:
9b:8f:84:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:24:50 2026 by rpki-client