Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: a0C0TvIghnLIRzqgFLb2dDDPIhhuzUINQy4m9KUaCpQ=
Subject key identifier: 50:9E:C8:3F:63:CE:CA:53:5E:D0:76:07:B8:3B:C8:F7:E7:D0:94:37
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 019D36E568B1B498C86C812661E140755496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 131C
Signing time: Sun 29 Mar 2026 00:01:37 +0000
Manifest this update: Sun 29 Mar 2026 00:01:37 +0000
Manifest next update: Mon 30 Mar 2026 00:01:37 +0000
Files and hashes: 1: 5lnasV2204ovFjXYLSXNVvtyrOk.roa (hash: xjGig7wrwgL+6zENtEl5DMDRUc85WEr4TmfLvxx+0vU=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: 6GvgMWIqnMyqN8Yv9u6tuQ3qViJ6zDZJqXaPnwCE4Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e5:68:b1:b4:98:c8:6c:81:26:61:e1:40:75:54:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Mar 29 00:01:37 2026 GMT
Not After : Mar 30 00:01:37 2026 GMT
Subject: CN=509ec83f63ceca535ed07607b83bc8f7e7d09437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c3:18:e3:b1:c4:0e:a5:ad:71:4b:86:d7:6f:
eb:76:94:c7:8a:24:cd:97:2f:b5:1c:69:60:ec:89:
38:28:cd:73:91:a2:6e:a8:07:78:61:68:0e:33:72:
76:10:0d:2f:3e:d0:95:ff:75:a4:e0:f8:6f:d9:34:
17:7f:4b:07:f9:ed:1a:1f:2f:c0:dc:42:4e:e8:48:
83:e3:ec:e8:93:98:08:db:16:08:85:56:3d:9d:8e:
69:68:aa:7e:6c:08:53:5f:be:e5:9c:fd:34:b3:33:
3e:04:fe:b8:c6:f3:99:ae:7c:b4:82:f1:55:ca:61:
e2:fb:46:26:d3:aa:8f:e8:a0:4a:4e:4b:ac:5e:69:
6c:9c:c0:76:b9:b5:13:a1:a5:0b:fe:87:be:c3:c5:
db:11:d8:ef:bb:b0:81:a0:cf:ea:c9:b8:88:e5:2a:
6f:3d:80:2f:76:60:72:2f:e0:ff:ed:45:0b:b9:57:
7b:d0:68:84:00:c0:67:2a:f8:77:2a:7a:53:13:81:
24:3e:58:f1:ca:5e:d7:f5:49:e2:5b:d3:22:6d:e6:
15:77:a0:6a:63:44:54:57:2b:8f:bb:6e:66:f5:63:
0b:35:01:a1:11:78:2d:f4:5d:77:b3:5e:ee:a7:ed:
1a:7c:b2:08:be:8f:0f:f9:86:5c:2e:75:87:de:99:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9E:C8:3F:63:CE:CA:53:5E:D0:76:07:B8:3B:C8:F7:E7:D0:94:37
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:cf:22:43:18:aa:fd:dd:51:0a:d0:1d:0e:80:9d:31:47:55:
57:12:75:d8:b5:c0:f5:a3:4d:14:54:51:7d:01:1b:8a:71:83:
63:f3:36:14:e5:18:20:6b:b8:2f:ee:db:c3:c7:e6:63:fa:0c:
ad:30:5e:1f:fb:02:a7:1b:90:30:4d:79:e7:ea:79:59:a9:4f:
ea:c1:02:06:13:f1:7c:f0:07:c3:f0:5b:a9:44:75:0b:f4:0d:
c9:df:9b:3c:0d:29:a8:f2:f2:a8:f2:15:8a:10:e5:05:c4:2b:
99:79:ab:58:21:bc:21:3f:03:fa:dc:43:dd:50:7e:b5:d0:9a:
0d:eb:e6:88:5e:37:d1:a7:30:40:ce:76:5b:33:62:ff:19:7b:
00:b2:16:24:2b:6e:26:3f:ca:b1:fe:25:e0:07:89:04:d0:31:
52:4d:3f:e0:d4:25:97:0d:25:33:3d:e8:c2:07:fe:81:8d:96:
e3:fa:74:57:8e:c8:e5:2d:37:45:ab:9e:ba:56:3d:97:ee:e4:
98:38:53:8e:e8:38:64:d6:33:a4:32:a2:3b:dc:5f:ab:05:84:
e9:cf:de:7a:76:13:c4:0b:0d:6e:fd:69:77:1c:ea:08:17:6f:
f0:c1:c3:67:2d:e2:db:e6:ec:29:ec:77:89:3c:0a:af:06:16:
1a:70:29:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:41 2026 by rpki-client