Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: F5e3F3FrBZKJjPze+8q6FrS2aJ6ZX/7t6r365aZn2dg=
Subject key identifier: D0:A4:70:07:CD:9E:94:84:0A:A7:11:9C:2B:82:0B:27:C7:92:6A:B3
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 019D99D0CA202B01B69D3E15638EE503A335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 05:01:30 +0000
Manifest this update: Fri 17 Apr 2026 05:01:30 +0000
Manifest next update: Sat 18 Apr 2026 05:01:30 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: QS4TmyioDEWOB9U86tb20pLY8cVTkFtrjaLe/NMdLnA=)
2: zYkjl96qhuSKPjhR9FJ_SMLo0wo.roa (hash: 6MFml2JMis3B7T1zy1tlmB3r3uzT/y8AN0S/oyRhlxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:ca:20:2b:01:b6:9d:3e:15:63:8e:e5:03:a3:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Apr 17 05:01:30 2026 GMT
Not After : Apr 18 05:01:30 2026 GMT
Subject: CN=d0a47007cd9e94840aa7119c2b820b27c7926ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:66:4c:43:53:a8:dc:2a:97:0d:fe:39:5c:c0:
15:98:33:d4:c8:27:f1:c0:89:1b:3c:bd:4f:e0:a8:
11:45:6c:4a:4f:57:7c:36:04:97:45:50:67:f1:e1:
e1:da:f5:a9:87:49:fa:64:a8:f0:71:27:eb:14:d5:
49:78:ec:a9:dc:72:31:ab:dd:69:ca:af:09:d2:42:
c0:4f:6a:44:18:09:7a:5c:f3:6e:e0:40:ab:61:9f:
90:a7:9b:52:78:fb:12:38:af:39:36:82:3a:ca:5d:
e5:5d:28:52:51:f9:cb:e3:be:e8:5a:e9:3f:fe:0f:
6c:88:67:b4:8e:4a:66:e5:82:fa:7d:70:4f:2b:8e:
2e:be:24:36:e6:0b:df:35:3a:96:de:0c:86:da:2d:
16:75:2d:8d:65:3c:78:28:79:7f:28:06:a9:94:36:
e7:57:12:4c:fc:33:bd:f1:38:1f:c5:05:e4:2c:3c:
95:a2:d2:16:62:61:ff:d1:c3:6b:a0:38:a3:95:99:
e6:38:e9:5c:d5:ba:e4:8c:ba:15:98:01:32:4e:89:
40:92:f6:19:56:a3:30:f1:96:24:b8:71:71:bb:73:
9f:93:8f:dd:9b:e4:da:aa:3c:fa:53:72:39:f9:fb:
23:c8:05:f1:e5:41:52:4d:e8:ab:cb:fd:0b:6b:e3:
f0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A4:70:07:CD:9E:94:84:0A:A7:11:9C:2B:82:0B:27:C7:92:6A:B3
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:67:92:1d:b2:a8:ac:0c:1b:db:2c:05:31:dd:36:6a:eb:4c:
ed:59:f1:68:46:33:39:c6:cb:56:fb:15:8d:27:e4:5a:aa:fd:
1d:92:e8:7f:8e:0e:6e:53:39:09:e0:00:d9:36:50:2c:c5:dc:
7d:17:91:c2:fe:78:68:5a:cf:75:4d:eb:13:6c:77:4c:5b:5a:
e1:3c:ab:5c:09:64:9b:3b:ed:8d:22:3c:ab:76:9b:1b:c3:1f:
54:e3:92:84:40:63:5e:70:75:85:b1:22:a9:a5:d0:5d:3d:8c:
da:c0:c6:b8:4c:25:1e:d0:25:35:42:2a:7d:be:13:f5:b6:7e:
e3:dc:e4:13:fa:a4:60:7b:5e:04:a9:9e:38:70:ec:3b:7e:e3:
19:f7:b6:7c:44:bb:51:cc:69:26:83:8b:a0:bf:33:14:41:15:
af:56:cd:16:62:e9:e4:34:f9:ca:e1:ae:55:29:6c:64:9a:07:
50:a8:bb:e7:5b:38:93:99:75:29:ba:2c:be:73:3a:10:05:2d:
df:8e:67:90:55:fc:9a:72:6f:7f:bb:a0:e1:32:68:61:dd:ea:
8d:01:e8:f5:a2:1d:0b:1e:13:cb:16:75:c0:e0:8a:04:cb:29:
73:97:28:34:b7:81:73:88:29:52:fb:b0:37:05:fa:ed:7a:39:
1f:1e:d0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:19:39 2026 by rpki-client