Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: hrTyBsYkYpcMMJo11htCihjLmM9XOPZk+o8fiFlDmfY=
Subject key identifier: 99:87:72:84:E0:98:FA:FF:AB:03:65:B2:D5:3A:73:DC:95:87:52:D1
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019D99621F103C03DCAEE141D48577A722EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 04A9
Signing time: Fri 17 Apr 2026 03:00:37 +0000
Manifest this update: Fri 17 Apr 2026 03:00:37 +0000
Manifest next update: Sat 18 Apr 2026 03:00:37 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: QMk+NSeqfHp52JNrXeX3wUJFwprbB8pxLcbaAoB5A1M=)
2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:1f:10:3c:03:dc:ae:e1:41:d4:85:77:a7:22:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Apr 17 03:00:37 2026 GMT
Not After : Apr 18 03:00:37 2026 GMT
Subject: CN=99877284e098faffab0365b2d53a73dc958752d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9d:50:8b:40:62:7a:e5:38:af:10:c5:1b:75:
35:fc:7e:22:c8:14:a8:35:a8:f5:e6:9b:81:fc:09:
d2:77:b0:6c:5b:5c:57:27:0e:b7:54:63:9b:38:fc:
ee:30:3f:7c:72:26:b2:84:ba:34:17:6c:f6:ee:53:
b4:66:1b:41:6a:b9:13:07:a4:56:e2:e1:66:05:4d:
db:32:e0:ef:49:ce:b9:44:d8:7d:dc:85:5b:01:80:
b7:6f:3b:0f:cf:bb:51:3a:2a:23:df:40:8c:b0:0b:
7f:ff:44:cc:df:01:7b:c1:ae:46:f1:8d:ae:18:be:
51:ca:5c:aa:5d:74:3e:86:54:e0:88:79:1d:43:10:
a0:30:3a:9f:fe:62:89:10:8c:74:6b:07:e4:2d:60:
3e:34:1e:40:45:0d:fd:41:b0:57:99:65:cd:00:9d:
ba:eb:51:12:ed:51:a6:15:c0:ae:4e:46:96:cd:3e:
46:72:4b:17:de:c8:22:2a:7e:0a:be:71:6c:c9:ca:
05:82:fa:2b:89:8d:bc:be:9d:96:da:4e:a4:6a:0c:
e2:85:25:84:e2:26:ff:14:d5:97:a1:8f:5d:0e:8c:
c0:d1:28:d4:83:af:bb:f3:62:9d:c1:8a:6d:b8:4a:
69:d1:f9:f6:f5:d8:45:69:63:88:ce:5a:46:f5:eb:
1f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:87:72:84:E0:98:FA:FF:AB:03:65:B2:D5:3A:73:DC:95:87:52:D1
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c4:b5:ef:1a:31:e0:b0:bb:60:f3:69:de:9c:04:9c:a0:f8:
8f:36:77:d9:55:15:0a:dd:f3:ee:4c:83:ea:75:ee:45:a3:8c:
ca:35:41:4a:8b:22:14:79:c3:59:cd:d4:21:3d:0d:20:a1:9a:
8c:ed:f1:c0:5a:c3:53:6e:88:88:24:85:b2:78:a1:e5:e3:0b:
8c:35:3f:81:a7:4b:d8:54:5e:a1:19:df:77:18:02:1b:7d:40:
13:54:b5:c2:a2:d8:d4:71:3d:98:5c:90:7a:ae:8a:54:6f:b1:
bb:35:7f:62:9e:a4:fa:8f:98:16:1c:12:f2:4e:4b:2f:41:a6:
57:a6:0c:bc:26:88:ff:34:88:f5:ab:b8:4a:96:ec:53:94:ff:
57:fc:7e:d5:42:e5:31:41:a1:ab:c5:67:1f:6f:07:85:fe:e7:
04:da:5a:12:0d:ce:a6:48:c4:eb:b9:0a:7d:15:01:38:c6:4b:
80:38:db:f5:c4:29:45:02:db:d7:3f:4e:6b:0d:0d:da:b4:5b:
b6:4e:9d:da:51:b6:f3:b7:ee:5d:64:36:a4:62:ab:96:95:1f:
3d:66:83:1d:36:d0:ea:2f:8e:f2:0a:4a:d1:00:82:1b:d0:58:
1f:bd:27:67:57:88:7a:2a:d1:19:16:b1:29:04:f2:66:ff:c7:
d9:d5:b5:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:41:28 2026 by rpki-client