Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: tqpDl05x/yr218NVENyCEymWAELPPinVWj8ARSJaPPY=
Subject key identifier: 96:BB:99:C4:61:5B:99:4F:E1:AA:C4:A9:76:CB:B2:BB:76:C4:C3:BD
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 019CACB5423D891AFC175ABCDE0576610F19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 05DD
Signing time: Mon 02 Mar 2026 04:01:25 +0000
Manifest this update: Mon 02 Mar 2026 04:01:25 +0000
Manifest next update: Tue 03 Mar 2026 04:01:25 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: d7VJSbgwbefmOWndnWU+flh4LJIN24ZGfH/PwItnjFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:42:3d:89:1a:fc:17:5a:bc:de:05:76:61:0f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Mar 2 04:01:25 2026 GMT
Not After : Mar 3 04:01:25 2026 GMT
Subject: CN=96bb99c4615b994fe1aac4a976cbb2bb76c4c3bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2f:df:6f:c5:e4:35:05:f5:74:ac:b1:a8:08:
5c:ec:00:74:41:fb:96:da:62:94:78:51:95:05:4b:
b1:a1:e2:ce:fa:2a:da:14:92:a1:7b:5e:0a:cc:48:
b2:e1:b0:10:79:39:65:f3:8f:e7:ba:23:4b:fd:f1:
72:c9:a2:eb:02:cc:af:b2:d3:94:cd:74:61:d8:84:
8c:6b:63:bc:2c:ae:6f:d5:19:86:9c:93:a8:96:bd:
5d:4b:c7:82:69:70:2a:63:da:75:56:3c:3c:f2:1e:
a5:3b:96:3b:7a:31:03:db:4e:3c:5c:1a:52:85:4f:
09:28:88:13:1e:2a:ef:31:9f:07:53:73:57:53:67:
29:74:fa:3f:5b:56:e2:f0:9b:dd:33:c8:97:57:3d:
93:79:08:51:dd:47:bd:e7:31:87:88:36:b6:c2:f0:
24:c3:ba:86:ae:69:32:60:27:05:2a:37:6b:7e:ce:
68:21:0f:53:5f:68:8e:07:de:d4:29:5c:91:17:9b:
0b:d7:8e:dc:40:e9:cb:55:b2:ed:71:cb:24:b9:a3:
c7:86:23:42:27:1c:12:63:72:2b:45:cd:f7:dc:e4:
1c:08:3b:27:c7:f5:3f:48:7e:15:2f:b9:db:f7:cb:
2b:a6:1f:4a:b2:e6:3b:f9:27:4f:43:e0:c2:5f:61:
dc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BB:99:C4:61:5B:99:4F:E1:AA:C4:A9:76:CB:B2:BB:76:C4:C3:BD
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:78:09:95:07:51:4e:81:01:81:0d:ad:e1:06:12:38:c4:57:
8f:d0:b5:83:e3:da:25:f2:ca:1e:09:70:95:6a:5d:b1:95:24:
54:c9:39:92:5d:df:8e:ba:fc:66:0d:37:ad:39:c3:8a:66:b1:
18:5e:ea:fa:44:99:d4:b4:21:b0:06:52:24:47:7b:b4:55:43:
33:72:a9:ad:0c:fc:46:89:3c:59:26:3d:e1:8e:81:b6:7e:59:
8e:e3:bc:a3:48:9d:f1:0a:0a:32:f6:1a:98:8a:7c:6d:ae:70:
0b:06:8e:4d:39:92:9d:3a:89:89:77:30:ee:84:73:45:ae:7b:
c0:e1:ef:0e:2e:b9:c6:7b:07:b3:ac:3d:12:45:fb:ac:5c:1f:
6a:24:7c:fa:1e:7b:db:96:9f:be:64:36:fe:80:01:3c:db:76:
c6:26:3d:bb:44:d9:52:c4:8d:fb:49:0d:7d:2f:a4:f8:2d:3d:
29:c9:0b:9a:84:da:7b:7e:51:6c:bf:ec:0f:a4:a5:85:b8:71:
c8:ff:01:40:c5:47:88:cd:c9:9e:76:7c:0b:f7:ac:14:eb:85:
41:a8:34:7a:8b:f0:bb:5b:f8:10:c6:69:43:96:ae:ca:2c:4e:
eb:12:eb:56:25:76:c9:96:59:4a:97:c6:f3:26:1e:ec:69:e3:
d9:58:69:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:56:43 2026 by rpki-client