Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: 3sc1TtR18usytCjBYplueyWxg7Kd1gmUOpymuruukwk=
Subject key identifier: 2C:8D:AE:CD:3E:F3:D7:FA:11:02:C0:A9:90:17:93:FF:A6:48:A0:54
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 019D9A3E5E3A1E31DE0C481D51F7BCB0FDAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 1855
Signing time: Fri 17 Apr 2026 07:01:11 +0000
Manifest this update: Fri 17 Apr 2026 07:01:11 +0000
Manifest next update: Sat 18 Apr 2026 07:01:11 +0000
Files and hashes: 1: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: WxOZ+GHm/XEf5uFaOe+8MzjlHKb8hlfogzR1Z1fPoxM=)
2: TlCjshw48MI80zaCqZRdp10HXmU.roa (hash: IUaeg0F1EJZvlebFMhAdUjihSrKer72rVZfI7a/WmYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:5e:3a:1e:31:de:0c:48:1d:51:f7:bc:b0:fd:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Apr 17 07:01:11 2026 GMT
Not After : Apr 18 07:01:11 2026 GMT
Subject: CN=2c8daecd3ef3d7fa1102c0a9901793ffa648a054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5b:17:6e:50:81:df:fd:9e:d4:88:80:a1:4e:
a1:a2:7e:73:e7:25:12:f5:a4:3e:2e:7f:90:17:b6:
87:f9:0c:c5:2f:34:08:43:f2:28:25:b6:99:bd:91:
10:98:c0:7e:fe:fe:83:78:0b:d2:8d:25:f6:a2:32:
1d:ef:c0:94:f0:09:e6:8c:db:74:2e:d0:b7:ee:39:
49:26:01:80:80:2b:49:f3:b5:3f:3d:6e:0e:d9:28:
50:07:e7:e8:90:0a:7b:a8:34:1a:d0:1a:f7:5e:41:
d3:49:1f:e6:6b:0d:e5:19:e2:f2:88:ec:d7:1f:24:
7e:6b:b1:6a:d5:cb:78:9b:7b:eb:cc:99:77:31:61:
75:6f:02:13:65:df:b8:df:0d:58:d4:3c:1e:fa:b8:
32:1f:de:90:57:5d:b2:fd:99:c5:12:13:8a:bb:04:
00:b5:25:ab:14:58:3f:2c:7f:12:5c:29:5d:c0:64:
d1:11:04:5d:d7:0f:d1:f5:ab:28:a3:fb:99:af:30:
b1:7e:40:89:74:61:f5:42:22:c0:f4:68:d6:b8:05:
a1:fc:b0:81:6b:2a:89:14:06:c2:80:16:8d:ac:4b:
fe:67:ba:92:6e:84:19:b5:c1:c1:e0:02:f3:15:25:
e6:04:92:d8:5c:3b:0e:fd:e2:c4:55:7a:45:94:55:
bd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8D:AE:CD:3E:F3:D7:FA:11:02:C0:A9:90:17:93:FF:A6:48:A0:54
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:1d:3f:b2:03:6d:3b:8d:ac:a6:ac:f4:c0:1c:fb:07:6e:16:
f3:47:0c:76:9c:72:b1:8a:0a:16:e2:2d:9d:5d:d8:f8:3e:96:
a6:cf:18:20:e3:a6:57:83:8e:26:50:18:81:11:2b:3f:38:65:
6f:90:ad:43:02:db:0b:46:6f:29:aa:59:83:29:91:0e:62:b3:
fe:85:e1:03:3b:56:80:d5:22:71:24:d8:ca:88:25:ad:92:ef:
8d:3a:ef:53:a2:fe:a3:e4:91:e4:81:7e:96:9a:ae:fe:bc:34:
80:e1:b7:54:ab:7c:8d:15:f4:73:d5:16:4f:d5:bb:dd:0e:d4:
a2:54:ab:60:ba:ce:68:97:19:2a:21:c5:fe:e7:18:ab:f5:e3:
28:6d:ef:da:96:4d:6f:f3:33:ef:b2:8d:26:28:79:51:ac:bb:
ab:56:93:bf:a6:c0:17:1f:e1:44:46:4b:a5:a8:95:cb:bd:21:
98:e5:80:d4:4c:b3:40:e8:4c:2d:3e:2b:2b:40:85:51:64:8f:
21:9b:41:3b:d8:f5:be:d9:73:b7:9b:17:89:1f:a0:9d:dd:e0:
6d:c9:8e:eb:30:33:52:61:a5:c8:df:c8:10:fa:72:6c:5b:22:
12:b1:f6:bd:f8:32:8d:02:3c:7a:51:bd:c8:d4:20:af:a5:6b:
46:c4:c2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:01:17 2026 by rpki-client