Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: /Cl87Tacn5kni7qh4WFwtNu5Z2+WFNT7LrvhbD17NNQ=
Subject key identifier: 26:FF:13:EC:53:80:60:20:F9:41:AC:F9:EA:47:37:61:FD:2C:64:ED
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019CAD599E6308D4B77E48A2162E7604592E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 07:00:57 +0000
Manifest this update: Mon 02 Mar 2026 07:00:57 +0000
Manifest next update: Tue 03 Mar 2026 07:00:57 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: cypHDg7EVSbG9vFqizD8CXvO3sZwmP7V00lKc2Nai/Q=)
2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:9e:63:08:d4:b7:7e:48:a2:16:2e:76:04:59:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Mar 2 07:00:57 2026 GMT
Not After : Mar 3 07:00:57 2026 GMT
Subject: CN=26ff13ec53806020f941acf9ea473761fd2c64ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:32:42:c5:08:73:b0:26:0a:ac:52:4c:33:73:
60:61:a6:8d:75:d2:86:2f:c5:85:59:09:51:fd:60:
72:8c:76:04:cd:1d:53:85:11:af:83:f3:79:eb:39:
78:8a:ef:15:68:ed:38:0f:22:c0:ae:f8:c1:44:0e:
6e:7f:9a:26:7d:14:15:b2:fb:7d:f3:d5:74:12:ed:
e3:17:07:30:9d:59:f9:d6:81:66:45:cc:26:5d:c4:
0c:0b:17:ed:b0:8b:e3:2e:07:e3:3d:97:d8:23:d8:
50:96:07:54:6b:5d:5f:fb:f1:94:c3:d7:f0:cc:a1:
ec:5e:d7:ce:a3:80:44:a3:7b:c1:e3:02:d0:ee:31:
4d:08:50:58:d2:f7:ee:72:bd:55:83:8c:71:c3:fc:
29:cd:87:51:08:82:d3:9a:54:de:61:bf:19:e0:fe:
e5:e7:52:3e:06:60:f9:a8:da:55:14:3e:f3:de:40:
d8:9e:d7:dc:a8:0e:e3:40:25:b6:cf:2e:af:70:7c:
17:99:35:5d:35:96:e6:4b:cb:e6:95:4a:b1:63:f1:
e5:74:a2:1c:90:71:77:06:f1:4e:24:80:18:39:9a:
a8:4a:c3:9a:8b:61:39:d4:80:a0:93:b7:80:f9:80:
7d:ea:cb:cd:13:b4:9f:f9:42:78:6c:04:c3:65:6e:
d8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:FF:13:EC:53:80:60:20:F9:41:AC:F9:EA:47:37:61:FD:2C:64:ED
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:82:82:64:69:48:3d:c8:bc:5b:02:2a:e3:2b:19:93:5e:81:
e5:1b:a3:13:cd:34:c8:99:8a:ec:7e:2c:e4:0e:dd:9c:f8:6f:
52:c5:25:62:73:91:64:31:ac:f2:bf:54:7b:15:41:74:fa:fd:
3e:75:50:0f:c7:f6:41:e8:88:3a:08:c8:97:fc:d4:30:dc:a2:
72:83:83:33:0e:5a:bb:4a:bd:1f:0b:73:a8:b4:00:d7:d9:c5:
6a:bf:3e:4d:84:e2:5a:d2:51:9d:db:0c:fd:1f:51:86:4c:95:
9e:bc:80:34:90:89:5e:32:79:3e:89:df:94:68:47:77:ee:8a:
f2:25:97:8e:cb:1a:3d:20:e8:b4:97:e5:a7:cd:dc:0c:14:6b:
47:ee:68:51:b3:98:5b:06:9d:ae:3f:8e:57:5e:5b:51:b8:8b:
17:a3:3a:57:d8:f2:20:a8:cc:41:1e:67:85:a8:76:06:94:52:
cf:0e:f7:31:76:7e:ba:0c:b9:6a:3f:02:ba:d7:a7:e5:16:14:
f4:fb:3b:b8:11:77:b7:1c:8f:ee:7a:2c:17:0b:ac:ac:ab:0f:
c7:08:4a:72:2c:a4:73:7f:f3:55:8c:99:0d:e4:6f:41:dd:12:
a2:c1:ef:eb:b7:89:4e:66:57:fa:33:3c:6b:71:9a:e5:54:ae:
fc:be:58:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:51:17 2026 by rpki-client