Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: OSVnKK+kpVLHJ10P3OuNKg/dMz1vYp08Lkg2Ku9T4AE=
Subject key identifier: DE:00:17:B1:3C:D3:98:95:41:A8:29:F6:B1:64:9C:58:22:8E:09:09
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 019D992B656A09033925338B9988DA09475D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 100A
Signing time: Fri 17 Apr 2026 02:00:51 +0000
Manifest this update: Fri 17 Apr 2026 02:00:51 +0000
Manifest next update: Sat 18 Apr 2026 02:00:51 +0000
Files and hashes: 1: 5qOXZsZ0BHNAbp3kT3SWOZkhYW4.roa (hash: DBxKLTH87HKe59x6vClNlaxgF86/cqJNz234XOYz+0Y=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: vvrcpOXh38rI2DeDLR7UfmRKPFdrTQtmNtZftJwoxpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:65:6a:09:03:39:25:33:8b:99:88:da:09:47:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Apr 17 02:00:51 2026 GMT
Not After : Apr 18 02:00:51 2026 GMT
Subject: CN=de0017b13cd3989541a829f6b1649c58228e0909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:09:47:d8:06:a7:fe:94:a3:33:a9:1f:55:b8:
2b:31:a9:33:5c:7d:48:be:34:ce:81:e4:08:81:b4:
cb:62:4e:c8:62:84:7c:3a:da:d2:e0:ff:99:00:76:
23:e8:11:20:bb:6d:da:0a:ac:33:98:e9:fb:75:fe:
9a:d2:dc:98:79:a2:61:2a:1c:b5:00:7d:f6:59:39:
ee:be:57:e6:12:b4:71:cf:8e:92:11:22:21:8a:70:
01:b7:d5:00:86:c0:70:af:df:49:61:e7:8d:94:0d:
4d:2f:25:27:9b:b5:11:d1:20:3f:b0:74:72:df:14:
83:ea:62:1d:90:2b:63:0a:a3:a8:90:d6:88:dd:c6:
2f:08:f8:44:6d:60:b2:0c:42:b7:28:85:36:82:b2:
2b:1b:31:c1:f9:db:2d:c8:71:64:b3:f4:6a:27:78:
2e:43:f0:f0:6b:a4:84:0c:03:d0:39:a1:f0:c5:bc:
0e:eb:d8:9c:cf:55:35:75:c6:0a:3b:30:7e:1d:18:
58:a7:a4:f1:3e:b9:f3:f6:d0:f2:6a:e8:a0:74:60:
57:c0:b3:30:72:14:bc:04:9c:ce:97:59:8a:8b:c6:
30:3e:e4:0c:c8:65:3b:c4:3e:b9:4c:9d:e1:ba:9e:
82:2e:2e:84:85:52:06:8f:69:37:60:2d:06:1f:32:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:00:17:B1:3C:D3:98:95:41:A8:29:F6:B1:64:9C:58:22:8E:09:09
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:1a:90:3d:f7:af:21:fe:2e:b9:41:52:50:09:03:a7:6f:7d:
1e:d8:ca:bc:4a:a0:71:a2:93:80:0f:b2:29:cd:3d:1e:f5:fe:
13:1c:c3:14:7a:83:6e:db:6f:2e:ee:9c:c2:50:7e:7c:6e:e1:
0a:19:48:ca:15:f4:53:4a:51:a1:66:6a:90:b3:28:57:2b:3b:
4d:29:d0:73:0b:66:59:1f:c7:11:ce:47:ff:fd:b4:83:12:80:
fe:81:c0:1c:83:c7:b9:73:6e:30:a2:95:56:d7:7e:54:d7:59:
41:16:4d:81:66:3b:b1:77:7c:17:f7:6a:48:6a:d1:b1:40:65:
f8:f8:2c:08:4f:0a:32:85:bc:32:1f:9e:88:59:ce:04:c0:3d:
cd:dc:2d:81:e4:d5:69:1f:bf:e1:c2:60:13:fd:91:c6:b6:0e:
19:13:3d:cf:ba:5d:23:14:e2:4c:32:f6:73:81:8f:fb:dd:a8:
fa:2d:21:60:b1:0a:c9:dc:6c:13:91:11:e4:65:b7:58:c9:65:
37:ee:f5:33:54:ec:eb:38:9c:ca:17:6c:6c:33:a1:ad:6f:6f:
ee:15:93:65:fb:9e:00:54:9e:d0:b3:82:9b:cd:c1:5f:4e:a3:
f9:51:a6:b9:55:da:5c:97:26:f2:98:31:2b:0f:b0:4c:6a:30:
6e:3a:c2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:20:45 2026 by rpki-client