Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: FAr9O97J3caVAUVBxfbdaKsefaAaOe8NMeY446ICnCY=
Subject key identifier: 04:5B:0D:16:6D:F4:2A:7D:E0:94:2F:80:2D:02:BF:8E:80:3C:9F:20
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 019CAD5A3B8A1E78965910D7A9EECCA3D54F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 06D3
Signing time: Mon 02 Mar 2026 07:01:37 +0000
Manifest this update: Mon 02 Mar 2026 07:01:37 +0000
Manifest next update: Tue 03 Mar 2026 07:01:37 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: u9BjmCsmDw/srnQM+KgFWNWel1ljNvIdIP8NRGCAHCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:3b:8a:1e:78:96:59:10:d7:a9:ee:cc:a3:d5:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Mar 2 07:01:37 2026 GMT
Not After : Mar 3 07:01:37 2026 GMT
Subject: CN=045b0d166df42a7de0942f802d02bf8e803c9f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7f:4a:c5:41:d1:0b:33:80:95:0f:0d:4c:b3:
89:0c:a5:e9:b3:5d:cf:90:2f:60:2c:ba:db:89:f3:
7f:a0:7d:7f:0c:70:30:bf:6b:68:c4:8f:a4:15:79:
fe:c8:d1:57:d5:f1:ef:d0:ce:d9:49:b1:01:e0:0c:
09:13:72:cf:ad:e2:3a:53:9c:25:ad:b2:bf:04:6c:
93:51:45:fc:af:d5:5d:14:c7:cf:36:09:80:52:20:
fe:f9:70:30:ea:2f:2e:f4:ed:ef:cb:97:70:1b:91:
96:60:8a:7f:52:77:a2:3c:fc:33:58:ea:b5:6a:69:
2f:b5:fe:76:25:a7:a4:44:3c:c4:35:a4:01:03:14:
dd:7e:2b:33:af:0d:98:4f:98:2d:4f:b6:98:49:69:
fd:aa:38:7d:6c:2c:ae:e8:fc:01:15:12:77:c8:99:
aa:cd:5e:88:8f:ae:b9:b1:8e:f9:fc:b1:31:de:4d:
99:46:88:a2:f3:0d:ff:2f:0a:14:82:ba:a7:32:e8:
3a:93:14:70:a7:a3:aa:3e:7b:16:98:8f:c1:81:1c:
fa:b2:86:9e:3d:36:69:dc:32:f3:ac:35:63:7d:7e:
28:a6:1f:ba:f8:16:66:05:46:61:72:bf:a7:04:b4:
58:fd:1d:71:78:cf:1d:4d:c1:1d:92:cf:7f:bd:ff:
eb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5B:0D:16:6D:F4:2A:7D:E0:94:2F:80:2D:02:BF:8E:80:3C:9F:20
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d4:84:30:f3:35:3c:c0:d8:24:af:b7:df:ae:b9:37:58:e3:
8f:7e:7c:0f:7c:3c:ab:bf:90:57:e1:59:29:58:2f:af:4a:e4:
bb:e8:f0:a4:f1:68:02:0c:f8:8d:d4:65:45:9c:4d:0e:32:35:
0c:9c:45:9a:fa:94:0a:0a:e5:f3:0f:61:ea:6f:05:37:74:9c:
86:85:db:3b:9b:b4:e1:77:2a:c6:af:eb:4a:06:57:7b:6d:85:
44:b3:9c:8d:6a:7c:5f:0e:d6:c8:85:69:df:2d:88:af:3b:8a:
7e:40:18:42:d5:b4:03:70:85:b5:5e:41:80:61:76:ea:57:05:
a4:7e:0e:94:83:fe:97:de:94:38:a1:9b:f8:c2:8f:4a:f9:c2:
62:c6:8e:ea:80:6b:d3:67:51:92:5b:17:3e:33:0b:08:14:9e:
9d:89:cf:67:83:10:8a:ee:c5:f6:ce:85:0a:ef:42:c8:4d:75:
4a:d3:53:95:86:dc:c4:89:ef:67:3f:66:39:ee:31:39:cf:9e:
09:fc:a3:57:14:36:bd:4a:10:5d:da:6a:d7:06:a9:a2:b8:3b:
82:a5:6f:3a:c5:af:59:e5:af:a7:05:29:8d:45:72:c4:60:35:
d8:c0:37:a6:ae:a9:08:22:dc:51:8c:2e:b0:b2:39:6a:cf:fa:
d0:4d:f9:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:40:34 2026 by rpki-client