Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
File: IClZ7xuVPXmKoPVkMafxG2vhltY.mft (raw, json)
Hash identifier: LbzkNWHoyCu8MA0pE2Y4+1Q8X3xOnVkpHwwK/q/viBQ=
Subject key identifier: E2:40:2F:76:1A:CE:EF:58:39:BE:77:19:DA:6A:A3:B9:63:9D:79:ED
Authority key identifier: 20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6
Certificate issuer: /CN=202959ef1b953d798aa0f56431a7f11b6be196d6
Certificate serial: 019D3940B8FF921AB44D038DCD832A2AED42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
Manifest number: 1488
Signing time: Sun 29 Mar 2026 11:00:36 +0000
Manifest this update: Sun 29 Mar 2026 11:00:36 +0000
Manifest next update: Mon 30 Mar 2026 11:00:36 +0000
Files and hashes: 1: IClZ7xuVPXmKoPVkMafxG2vhltY.crl (hash: alFf1OwgmHkM5szn29IRqJ2VsZtoQmuiVpQDDR3GUxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b8:ff:92:1a:b4:4d:03:8d:cd:83:2a:2a:ed:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202959ef1b953d798aa0f56431a7f11b6be196d6
Validity
Not Before: Mar 29 11:00:36 2026 GMT
Not After : Mar 30 11:00:36 2026 GMT
Subject: CN=e2402f761aceef5839be7719da6aa3b9639d79ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2a:59:f7:94:8c:16:fb:91:68:f4:e2:08:8a:
40:e1:58:79:4b:93:dd:6e:77:bc:a8:ca:18:50:b4:
37:ff:8e:40:1c:b8:f4:49:71:0b:3b:8d:68:24:14:
4b:4c:41:d9:69:00:64:b6:d7:8d:2c:c8:35:67:58:
03:04:3e:b1:63:b5:45:80:a5:d3:09:0d:18:eb:ec:
48:f1:d5:fc:c4:7d:60:2d:d1:3e:e4:ee:df:9f:29:
57:8d:b4:37:2b:d9:70:a9:b0:90:96:a3:ac:6f:cb:
df:56:ff:be:90:82:ce:44:4a:4d:54:33:a3:d6:6e:
85:c7:c7:46:4a:3c:02:0f:65:e6:e0:70:8d:44:7a:
63:de:e8:0b:f9:ed:54:3b:6e:d3:22:15:99:b8:3e:
d1:a3:de:9b:86:ba:8c:33:b6:44:80:95:80:f0:f6:
f3:fb:a9:69:c2:e1:9a:05:29:b6:3f:6d:47:e5:74:
99:45:f0:7d:04:02:c8:06:3e:66:05:9a:cb:c8:25:
1c:e5:26:91:3f:8e:66:07:3f:1e:d7:85:f2:d0:b5:
eb:72:42:90:09:2f:59:67:eb:c0:43:85:f0:9e:a9:
f5:cf:31:25:28:47:0b:d8:73:6e:9c:9d:86:f5:b7:
68:f6:16:be:f3:a8:aa:b7:10:55:13:13:34:7a:59:
fc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:40:2F:76:1A:CE:EF:58:39:BE:77:19:DA:6A:A3:B9:63:9D:79:ED
X509v3 Authority Key Identifier:
keyid:20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:f7:a9:63:5d:77:13:ce:64:c8:84:5c:ec:4c:02:18:ce:c7:
8d:7a:c0:b1:6e:6e:aa:42:ef:c6:f7:10:d2:8e:7b:36:77:0c:
ee:d9:1a:c8:85:a5:ff:f3:1b:b0:64:07:36:f3:14:ac:ea:c0:
cc:ab:e1:f4:ee:60:b7:e1:d4:a9:98:6f:fa:75:d7:3e:8b:f0:
13:04:4a:c8:76:c7:f6:f0:ce:23:2d:95:cd:ca:54:1f:17:f8:
e9:39:e0:e6:06:d5:1f:4b:4b:81:4f:f2:9b:7e:4a:48:d2:28:
f3:31:1f:6e:40:b5:5b:06:6a:44:8c:57:cc:c4:e5:77:06:e8:
b2:5c:6b:f8:5e:2a:47:9b:68:13:cd:1e:0e:94:fe:23:ac:15:
e9:07:fa:f7:88:0b:b3:59:6c:9c:ea:3c:b1:1f:8d:53:2c:c3:
94:f4:da:6f:44:fb:72:58:d1:a0:6d:1b:14:91:96:9c:0f:8d:
88:f5:42:58:aa:8b:65:36:d8:af:11:8c:99:1e:c9:cc:ec:86:
14:dd:69:d5:32:6c:a7:43:c8:33:f4:56:9f:a3:25:3b:83:2c:
d1:35:b6:8a:40:cb:6c:eb:66:e1:9c:89:b0:b2:aa:d4:c8:2b:
1f:b1:98:69:c3:01:f4:5d:a0:a3:f9:13:d6:05:f9:c5:ee:3b:
ee:bb:d2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:48 2026 by rpki-client