Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier: Lg9AUP9d8XygF8P54YOk9XfwCbondTtT9vjF2sS/7G8=
Subject key identifier: F9:9C:E5:89:40:7F:71:D9:B2:B8:8F:1B:62:E7:36:E0:95:D2:15:E9
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial: 019D3865CD53CFDA344C5A5C37C17EC0F10F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:28 +0000
Manifest this update: Sun 29 Mar 2026 07:01:28 +0000
Manifest next update: Mon 30 Mar 2026 07:01:28 +0000
Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: iqOJzt9RUyZuiTq76lx9vXlhs+8/Xiq5LNuC87HRpYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:cd:53:cf:da:34:4c:5a:5c:37:c1:7e:c0:f1:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
Validity
Not Before: Mar 29 07:01:28 2026 GMT
Not After : Mar 30 07:01:28 2026 GMT
Subject: CN=f99ce589407f71d9b2b88f1b62e736e095d215e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e5:a2:54:2d:c7:0c:c7:39:1c:ce:67:02:cb:
bd:d9:a8:2e:d2:d7:fb:58:ce:c8:88:ed:e3:48:21:
81:d7:03:9f:0b:db:26:e8:5e:a1:bd:8a:fa:47:e4:
aa:fa:8d:d6:d3:57:46:0a:b8:e8:ff:88:48:ca:70:
12:69:d1:fe:ec:5c:83:ec:40:b4:0d:35:a8:39:0e:
28:15:d7:34:06:54:b2:ed:ad:73:94:9d:ad:a8:a2:
2c:0a:50:8e:da:59:19:20:29:4d:69:c0:4d:ee:e6:
10:b9:64:0f:af:54:74:67:6d:6b:57:1e:54:9e:06:
50:39:79:48:22:24:02:a0:19:8b:8e:d7:4e:c0:6d:
0b:24:b2:38:85:78:4b:75:77:66:57:3c:43:f8:c1:
01:50:79:39:2a:d4:b9:65:c7:28:09:10:9a:8d:f4:
3a:b2:c7:46:97:0c:fd:38:85:a7:eb:54:f1:03:61:
8d:5f:4e:48:bd:89:89:fa:32:f7:7a:e3:9d:46:03:
36:a0:d5:07:1f:66:43:b9:bb:fe:7b:20:96:fe:89:
0a:0e:19:d1:68:a7:55:03:e1:2b:28:b2:7d:fc:cd:
11:03:75:4a:a6:e9:21:df:71:61:23:97:99:4c:fd:
b8:6d:8b:0d:9a:a4:9c:d7:53:70:f3:0e:4c:32:66:
a3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9C:E5:89:40:7F:71:D9:B2:B8:8F:1B:62:E7:36:E0:95:D2:15:E9
X509v3 Authority Key Identifier:
keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:a0:1b:c4:bc:6a:d5:a2:ab:fb:fa:9a:fa:2b:17:f8:61:d8:
13:2b:11:eb:a1:b2:ad:ea:90:f8:77:fe:ce:bf:50:a7:d6:63:
50:e6:86:cc:0c:6f:de:19:2b:04:5c:8c:4b:e1:5a:01:a1:6d:
b5:f4:85:25:c1:82:49:65:a5:87:a8:42:b8:b0:6e:10:7c:d2:
29:6f:37:e9:fd:30:f8:eb:8f:0e:aa:90:98:b5:f3:c0:7d:f8:
4d:2a:d2:a8:2b:c7:18:da:c1:43:81:fd:eb:13:67:dc:ce:38:
eb:a2:40:50:7f:51:fe:ca:36:37:a3:ea:45:5e:8b:73:43:fb:
43:eb:5b:06:fc:dc:dc:c7:94:bf:d8:54:9d:26:28:6e:bb:ac:
7a:64:7a:85:76:a3:d1:b3:3c:d1:c4:9b:f6:37:f5:f4:0c:ac:
62:26:3f:71:63:9d:82:e3:16:dd:f4:7c:1f:a2:3d:ae:40:4a:
50:19:72:91:2f:91:66:54:7f:b3:ce:17:3d:72:9c:84:26:c1:
af:be:67:08:f6:56:e6:d6:8e:13:3a:03:48:0c:a9:7d:36:4b:
a5:aa:b8:6a:58:46:f6:1a:47:5b:49:f3:83:6d:7d:cf:ee:77:
d1:f3:b2:8f:8a:a2:6c:6d:aa:38:0d:93:af:1d:f6:61:26:29:
94:ff:c3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:39 2026 by rpki-client