Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File: IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier: oV8DDXFYRqeWBvp2WDu+Z5S0Pn8rUQrFkpbiC9U9Fds=
Subject key identifier: BF:D4:72:86:39:1C:55:63:AC:87:95:7B:E6:22:3D:0B:12:70:F3:73
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 019CAAFCEF42824B07E11D3592CEBBB46729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 20:00:28 +0000
Manifest this update: Sun 01 Mar 2026 20:00:28 +0000
Manifest next update: Mon 02 Mar 2026 20:00:28 +0000
Files and hashes: 1: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: C3PQWmTSwZkz++RjVjIQSWEqWrq0NoBcFJvkbKN2SxI=)
2: UhcVOrWI94PD7J8NZ396e7oTXmQ.roa (hash: le2/ey5cYL9OHx+rHl459Ml2HcRFUdgLBFJPfGYggHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:ef:42:82:4b:07:e1:1d:35:92:ce:bb:b4:67:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Mar 1 20:00:28 2026 GMT
Not After : Mar 2 20:00:28 2026 GMT
Subject: CN=bfd47286391c5563ac87957be6223d0b1270f373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9b:47:b7:ed:b2:de:5a:26:b9:03:21:fd:78:
be:88:f2:55:eb:38:96:df:5d:b5:0d:19:81:e0:42:
16:2b:0f:d0:3e:f1:b5:ff:2e:bd:5a:48:f6:c4:3b:
9c:7f:23:f5:c2:50:1c:ff:e4:22:5c:0a:00:ef:6f:
2d:71:fd:4e:27:5c:a6:85:be:0b:52:71:af:3b:86:
df:ed:7f:54:4a:39:5c:e4:b9:0e:08:2c:2a:8b:4f:
dd:b3:2f:24:53:61:71:f8:52:a4:69:2d:37:14:a0:
13:d3:ac:9c:4a:5d:7c:6c:00:0e:24:21:9e:f6:bf:
f4:9f:ff:23:e9:0e:80:30:57:02:57:c1:82:58:0f:
bf:6a:5d:a6:dc:2a:59:2c:40:bb:61:5f:d5:0c:3b:
e2:f0:f1:3b:13:96:9d:fd:d5:5b:af:37:f2:01:10:
05:99:2a:a8:f7:76:90:83:8f:f1:2e:9f:1b:8b:1b:
37:52:2d:8e:87:d1:8f:e3:28:9f:14:d5:c6:54:b8:
be:d7:d5:1a:39:76:f4:a5:cd:26:f6:3d:54:41:b8:
ea:d1:b9:4f:22:f7:62:86:02:f5:fb:21:50:89:d6:
5b:c1:eb:46:59:20:a2:c9:7b:29:ff:29:ec:ed:11:
41:08:e6:88:7f:f0:a1:6e:2c:a1:85:0c:a9:87:3f:
18:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D4:72:86:39:1C:55:63:AC:87:95:7B:E6:22:3D:0B:12:70:F3:73
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ba:fa:9e:2d:0f:9a:d8:92:68:3a:78:f1:bd:78:65:9e:9e:
60:2b:08:bd:a5:04:75:7b:b1:ef:9f:53:6d:cb:92:a8:46:a3:
de:e4:bc:e4:29:b0:fb:f6:05:57:9f:c4:dc:2b:a5:7f:36:8a:
f2:c1:44:1b:56:04:16:a0:5a:df:ae:d1:c1:40:d6:90:02:86:
95:5a:5f:8a:6f:cf:b8:06:8f:42:40:84:8f:9c:58:8b:fc:3e:
b1:bc:21:26:3b:19:8d:fe:4a:93:17:cb:a1:a6:98:3c:e9:22:
cb:61:38:5c:4a:e9:2f:b9:3b:4c:f2:2f:e9:e1:7d:b3:09:17:
3a:64:cf:36:16:6c:a5:f4:dd:66:2c:77:f8:fb:1e:7e:15:e5:
98:a5:87:0b:4b:eb:6c:cb:58:cc:1b:97:7a:47:03:d6:da:f2:
5d:e4:f5:b4:db:f5:10:8c:8a:f5:83:1a:ad:f6:5b:fc:54:c1:
17:66:7c:08:32:e3:93:a6:d4:6a:06:20:8e:30:16:14:77:34:
6b:fb:ab:74:3f:e9:78:89:f0:60:bc:cb:2a:52:4d:ac:e1:17:
17:13:f7:a7:12:61:93:de:2d:bc:7b:02:22:34:b1:b8:29:75:
79:c6:8f:c9:90:36:a5:3f:58:8f:c9:83:f7:00:79:8b:c5:64:
dc:30:fe:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:44:30 2026 by rpki-client