Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
File: iOpSVfiNS5VxicFC-KxWgcUMaKY.mft (raw, json)
Hash identifier: kpBXiWnW+mKsTX5gew/oe5VQF2RApYPA91Xvc3xouRM=
Subject key identifier: 61:BA:64:A4:DB:EE:3D:8E:81:1C:AE:FF:3F:95:78:33:13:07:A5:37
Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Certificate serial: 019D999914BEBA8F96F18EF5FF63BDE4FA3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
Manifest number: 0B47
Signing time: Fri 17 Apr 2026 04:00:39 +0000
Manifest this update: Fri 17 Apr 2026 04:00:39 +0000
Manifest next update: Sat 18 Apr 2026 04:00:39 +0000
Files and hashes: 1: iOpSVfiNS5VxicFC-KxWgcUMaKY.crl (hash: uzpZPx8pt6dkQptvD4gSr3Id7avGZJYoPEkS0xs4jkE=)
2: pgGnSHyUvU2MCidf2eDuWrDOeCY.roa (hash: oty+EyubS3vsZNVfWcxWo/GIVhsqz3pi2U3eHoewYe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:14:be:ba:8f:96:f1:8e:f5:ff:63:bd:e4:fa:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Validity
Not Before: Apr 17 04:00:39 2026 GMT
Not After : Apr 18 04:00:39 2026 GMT
Subject: CN=61ba64a4dbee3d8e811caeff3f9578331307a537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:dd:7e:e6:3c:f2:44:67:20:dc:89:99:6c:bb:
b0:de:b0:be:0a:3c:20:0d:38:a8:27:60:14:f7:3b:
e3:fb:52:50:56:33:66:4c:0b:4b:1f:fb:09:1d:28:
8a:77:d0:71:02:9b:4e:ce:74:20:79:56:79:19:7b:
37:5f:b2:65:2e:ca:2f:48:fc:8d:55:84:29:79:a6:
08:23:98:11:73:1f:1d:ab:d8:93:f8:70:05:1d:da:
1c:dd:0d:d2:82:d1:4f:d4:4c:7c:65:bd:1a:bb:be:
97:39:7f:1a:f7:e4:e1:a8:47:e5:75:d4:ee:e0:e2:
6d:d5:eb:8b:98:50:20:d7:0a:cc:ca:67:07:76:36:
aa:30:72:8a:8e:ee:51:36:06:b1:8a:23:3c:fe:54:
bf:e8:5f:e1:a2:76:7b:bc:ea:fa:56:52:1a:e1:42:
74:ef:39:35:27:db:98:06:f7:6d:be:ec:16:f2:24:
2d:6d:69:ba:1c:b5:88:b7:66:c1:95:b9:48:9e:52:
0e:20:aa:74:e9:6c:ba:0b:ea:85:5c:73:5f:12:47:
af:b2:25:b3:7b:7a:56:07:40:71:48:ee:85:d7:01:
75:fb:a6:32:f4:5a:c0:ea:c5:93:aa:00:9d:ce:59:
60:3e:1d:b8:cc:c2:ed:89:60:af:e1:5c:fc:99:36:
c2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:64:A4:DB:EE:3D:8E:81:1C:AE:FF:3F:95:78:33:13:07:A5:37
X509v3 Authority Key Identifier:
keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:85:5f:b1:4d:2f:ca:54:2b:3e:de:b2:9a:75:09:c3:62:13:
84:4a:5b:ce:24:d3:40:c8:26:53:af:d0:16:c3:12:b7:30:57:
18:60:79:a7:91:d8:7e:7a:50:f6:a4:72:a4:ec:06:93:c4:83:
ca:66:c0:08:11:b6:23:40:36:84:e3:86:27:bb:28:23:aa:31:
ec:89:71:36:af:f3:3d:04:16:14:cd:8f:5e:51:d3:6d:2d:28:
cf:1d:8d:c9:b2:e3:d4:25:53:3e:a2:e5:ab:5f:eb:c5:94:7d:
8c:6d:80:02:f3:78:4b:13:7e:e3:0d:0b:47:84:d8:94:6f:04:
aa:46:08:04:34:bb:76:c7:7d:a1:6f:7c:ac:20:eb:67:99:bc:
17:b1:d7:e5:df:f2:fb:46:a4:88:b6:bd:c1:29:a6:ae:f1:2d:
e3:1b:1c:af:17:a9:0b:f1:d7:a2:a6:03:eb:6e:56:9a:67:bf:
d0:36:bd:72:a0:cf:14:90:b3:92:97:1d:84:99:32:ae:83:d9:
01:c5:be:61:32:0c:ff:a3:73:8b:7a:77:42:d1:15:81:39:f7:
c2:de:41:00:43:7e:e7:71:bf:78:6b:01:b9:0a:b7:7a:10:20:
b1:84:56:3c:00:3b:d1:ea:8d:01:f9:ee:9f:4d:4e:9e:bb:56:
ee:42:ab:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:24:26 2026 by rpki-client