Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: hAUVvsFP55Li2epwGDTvfcV0ve7PStBn0RLQ9TowrFU=
Subject key identifier: 89:E7:C8:37:16:95:4D:FF:05:8E:05:A0:C8:8D:DC:4F:AA:07:B7:8E
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 019D9A3E1D309704D6046CD65BE9CABC8E1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 0658
Signing time: Fri 17 Apr 2026 07:00:54 +0000
Manifest this update: Fri 17 Apr 2026 07:00:54 +0000
Manifest next update: Sat 18 Apr 2026 07:00:54 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: uxYCleIXp41ZztBzHKY86iBzs5PuDEiRXIXcNbnXRBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:1d:30:97:04:d6:04:6c:d6:5b:e9:ca:bc:8e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Apr 17 07:00:54 2026 GMT
Not After : Apr 18 07:00:54 2026 GMT
Subject: CN=89e7c83716954dff058e05a0c88ddc4faa07b78e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:78:6d:d6:04:b0:58:c9:d2:87:2b:01:9f:38:
57:a3:15:e7:95:b3:11:02:63:b6:f1:ef:36:cf:d7:
db:30:73:e2:80:16:f8:57:b4:e2:60:7b:8a:7f:48:
e1:d9:78:23:da:3e:b1:72:18:06:6e:b8:6c:bb:21:
87:d0:ce:63:dd:72:76:90:1d:02:ec:13:4f:ff:b0:
db:86:4b:bf:1c:98:db:b7:12:c7:59:9c:04:79:92:
26:dc:95:fe:9e:c6:fa:7d:51:6e:51:80:e3:c7:7b:
10:bc:03:2f:ae:51:87:d7:aa:e6:a4:fd:c6:f2:a8:
e9:bf:34:3d:e5:bb:85:43:df:dd:10:8d:a5:9b:34:
0b:fa:13:17:57:69:4a:39:a7:4d:4b:7d:50:06:ee:
1a:25:6d:23:5b:b1:21:be:79:cd:0d:a1:fb:35:60:
fa:8a:fc:d3:00:05:15:5d:97:24:91:a9:35:88:7a:
ae:f5:0f:4c:da:9d:61:1d:26:49:e9:f4:e0:42:d0:
8a:47:f7:18:e2:f3:3a:ea:df:b1:cd:de:92:25:e1:
df:ae:8a:71:55:65:b3:e9:64:4c:c6:e0:ae:7c:cb:
46:dc:4c:08:22:c1:97:49:1a:a3:f4:1f:ef:ca:34:
cd:b3:b8:7d:be:72:47:9f:c7:9d:bd:ce:6f:6c:2b:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E7:C8:37:16:95:4D:FF:05:8E:05:A0:C8:8D:DC:4F:AA:07:B7:8E
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:5a:3d:77:35:08:be:be:33:d6:13:c2:ef:d9:48:17:cf:7f:
27:73:62:ad:ae:a2:8c:52:c9:2c:65:40:c3:97:fe:6e:fc:52:
3f:f4:75:2b:c6:3e:26:20:fe:e1:09:c8:db:cf:9b:6d:f1:3a:
96:bd:b6:ab:ae:2c:ef:c9:e9:33:64:00:6b:d4:8f:96:ce:8b:
c0:7e:28:57:d7:5b:a5:51:17:a1:11:80:34:59:db:12:a0:a0:
8a:e8:80:7a:f7:7b:0a:da:e8:8d:3a:cb:24:82:ba:a2:ae:46:
04:76:ca:a8:c9:e8:11:21:bd:48:e6:00:43:ba:9f:e7:7c:a9:
b5:83:6f:f3:57:b2:ff:15:d9:ef:64:37:fc:d0:b9:3e:9a:9a:
0c:34:53:ac:2d:9b:71:87:a1:46:8d:0f:91:81:88:06:63:3f:
ac:82:33:b9:bf:f4:ba:db:70:55:2a:4f:f1:eb:3b:6b:17:f5:
6c:5e:b9:aa:37:18:92:b8:2d:0a:e1:0d:fb:2e:d2:9a:0e:5c:
60:bb:d7:9f:b1:7f:0a:d9:e4:0f:a3:0c:dc:f0:0f:cd:dc:e9:
61:14:07:f5:49:7f:09:2d:90:27:79:2b:b2:18:8d:68:cf:c8:
65:cd:3c:de:b3:be:4d:42:34:51:5c:38:10:de:33:69:71:c9:
a0:b0:69:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:37:28 2026 by rpki-client