Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: 9Hi9labW/w3gbjvmfwcPOrPZWgT6jNyMCSoxfKw3/Bk=
Subject key identifier: CB:F3:E8:73:C7:CA:C9:21:F4:5C:8E:4A:CA:A0:A5:CE:50:A6:80:7A
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 019CAA58E9BB63BE42B403CDB746A26ABE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 17:01:19 +0000
Manifest this update: Sun 01 Mar 2026 17:01:19 +0000
Manifest next update: Mon 02 Mar 2026 17:01:19 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: mgvvKG1m3sXtuQ+mF3G9a98DcjKvfL+ydLo64Bpaw7A=)
2: zYkjl96qhuSKPjhR9FJ_SMLo0wo.roa (hash: 6MFml2JMis3B7T1zy1tlmB3r3uzT/y8AN0S/oyRhlxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:e9:bb:63:be:42:b4:03:cd:b7:46:a2:6a:be:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Mar 1 17:01:19 2026 GMT
Not After : Mar 2 17:01:19 2026 GMT
Subject: CN=cbf3e873c7cac921f45c8e4acaa0a5ce50a6807a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d2:73:fd:bb:f9:da:39:9c:8c:83:ff:21:f6:
a6:d1:44:5c:64:69:4d:1f:9c:e0:a9:fb:31:e4:28:
40:90:48:5e:ee:ea:af:4d:d2:86:c8:28:d5:66:29:
32:36:6e:ce:55:88:75:ca:d7:56:2f:e9:5a:70:cd:
2c:23:11:be:e1:fa:bc:29:5c:2f:e7:0e:29:a3:f5:
c4:c2:2d:8a:bf:65:1e:a1:11:8f:04:99:c5:bc:7d:
ee:1d:21:6a:8c:c6:dc:27:3b:e0:96:4b:e3:f4:e0:
3a:f6:7f:21:05:d4:5f:c6:f8:ba:bd:15:3c:69:7b:
02:5f:65:84:ec:0e:9b:42:8e:6f:a0:9f:f7:66:a9:
65:75:43:0d:69:c7:62:fa:45:f8:40:47:d2:35:6d:
a3:e4:bf:61:76:09:12:58:9f:91:8b:e1:18:18:a9:
7a:9d:d8:4a:17:83:7d:0d:4f:65:00:33:ef:57:9a:
f3:8e:33:b6:2b:ae:f4:35:37:c2:f3:3a:22:e0:05:
9f:d4:0a:8f:5a:11:3c:3e:17:e9:0c:61:2a:c0:32:
57:06:34:0d:f6:93:04:63:7a:0b:09:18:17:6b:c4:
c7:78:a6:ad:d2:ef:a0:69:7b:9c:67:63:5d:8a:ac:
7b:ae:f0:55:12:63:eb:ec:f4:4d:3e:67:2c:b8:bd:
da:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F3:E8:73:C7:CA:C9:21:F4:5C:8E:4A:CA:A0:A5:CE:50:A6:80:7A
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:cb:99:49:4a:34:51:67:60:c1:6b:19:4f:c2:74:f6:36:02:
97:77:c7:a8:1e:45:c2:91:9e:eb:d4:57:5d:f1:8b:7b:a0:35:
31:f0:9f:d6:75:34:df:61:e0:d5:c4:f5:22:c0:6a:ab:d6:3f:
51:3d:0d:2f:07:e8:21:0d:9a:f8:e7:2b:8f:78:cf:b9:e9:12:
7a:6e:59:66:23:56:03:71:75:3e:7d:42:4d:9b:69:3f:6f:68:
4b:cd:3d:01:62:19:d6:43:a6:f6:ff:7c:82:c0:31:af:dc:bd:
7d:24:b0:f8:cd:93:5b:ea:50:7a:71:a9:c9:7b:91:7e:ff:94:
86:f7:9c:dd:83:61:36:9c:17:cb:f0:49:60:5d:b7:4b:3d:85:
a8:18:c4:33:bb:8d:db:11:c2:75:7a:11:7c:eb:29:18:a2:3b:
82:cc:ed:6c:8c:d9:93:24:d7:10:75:9a:e0:a6:17:62:bb:48:
1a:c3:0d:81:b6:f7:7a:6b:3d:b4:3a:e9:ac:ae:84:e0:b6:e3:
68:d9:95:6e:fe:54:08:d4:84:cf:5a:56:ed:26:68:a6:d5:82:
d3:fa:04:bc:bd:8b:14:23:05:e6:74:d0:ca:79:2d:7d:dc:18:
06:85:fa:8f:fd:db:95:5e:9b:ef:80:24:e4:66:68:c3:c7:80:
4f:fa:69:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:00:14 2026 by rpki-client