Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: zPOSMEUZVYGeakNwHC8ZjjVSDZrNemnEykvRBd+yJSg=
Subject key identifier: C3:5A:5B:BF:EE:E9:12:38:D8:E5:56:7C:B7:6B:63:14:3F:95:EC:B4
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 019D39AE8773F71103193DC5329A0D04C1DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 102E
Signing time: Sun 29 Mar 2026 13:00:32 +0000
Manifest this update: Sun 29 Mar 2026 13:00:32 +0000
Manifest next update: Mon 30 Mar 2026 13:00:32 +0000
Files and hashes: 1: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: 4hAyqzp97GLy2faS9gcazqom0vxRB/jnLspnKhfpjEs=)
2: yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa (hash: p3KrL6JUxzdYriz06hWpPAtkTxaVZyDG1Zr5vFYZVTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:87:73:f7:11:03:19:3d:c5:32:9a:0d:04:c1:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Mar 29 13:00:32 2026 GMT
Not After : Mar 30 13:00:32 2026 GMT
Subject: CN=c35a5bbfeee91238d8e5567cb76b63143f95ecb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8b:e0:30:6f:d4:e3:b1:52:8f:6d:09:24:14:
3d:09:c9:3a:1c:08:8a:82:4e:1f:15:65:17:d4:e4:
8a:bd:52:95:06:75:78:97:2d:a3:d3:94:ae:a3:01:
26:5f:4a:e6:8a:25:67:88:9c:b2:6e:64:97:ff:dc:
e5:02:3d:b2:27:ea:d4:b4:98:71:1a:dd:25:99:28:
84:f5:17:5b:6f:88:08:90:7a:e1:f1:48:6d:81:a1:
5b:f6:b4:3d:6c:b8:e5:1a:87:d3:ff:8a:b2:62:f9:
04:06:3d:9c:75:12:16:d4:a0:c7:df:af:49:c4:ce:
46:20:cb:32:e6:82:ab:ab:45:18:dc:61:0c:f7:c1:
3f:89:79:8f:35:ec:c9:b2:5e:c2:df:12:cd:95:84:
9d:fa:6c:96:9e:3a:7e:d4:0e:62:43:2a:32:da:60:
97:15:a4:33:30:90:47:1f:2a:77:c1:f1:98:59:a6:
c4:48:06:23:a0:54:60:d4:9a:53:12:9f:4a:65:91:
12:38:98:bc:19:c6:90:8b:5f:34:fe:01:4a:9e:98:
11:04:8a:aa:9b:98:f4:a1:a7:42:0a:8c:33:d3:f0:
79:03:d9:dc:3c:f9:d3:ee:0e:dd:4c:69:95:15:ee:
ca:54:85:9f:1d:c2:57:e4:f3:cb:d2:84:4b:ef:a6:
b5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5A:5B:BF:EE:E9:12:38:D8:E5:56:7C:B7:6B:63:14:3F:95:EC:B4
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:3a:ad:25:4b:cb:d5:83:0f:57:69:90:f4:a9:d6:96:4e:5e:
30:89:3c:88:c6:76:63:f7:7e:0b:3f:a5:f8:10:c7:c5:45:88:
d3:71:07:ce:30:09:fb:6b:75:5f:3d:1e:d5:9b:be:38:7a:64:
38:11:2c:c9:80:66:68:3e:50:56:fc:69:b0:fe:34:f5:35:28:
82:04:03:ca:4a:33:63:36:9f:e0:a5:52:c9:11:32:48:e1:44:
24:0c:27:ec:b7:9b:e3:d2:ab:f1:8f:44:6f:f5:d3:76:df:47:
a7:d4:c6:dc:9f:ce:5c:36:2e:78:24:0e:b5:e5:81:ce:7b:2c:
8c:85:44:1f:8a:89:9f:cd:d0:f7:36:75:bb:99:d3:e7:62:9a:
b0:c4:3f:63:ae:68:c5:bc:7a:30:f8:53:a0:9b:2b:e6:1a:79:
0a:9e:a6:19:f4:1a:d6:82:76:3e:f6:b6:71:d4:46:84:da:69:
78:6e:30:ac:f6:00:42:82:7f:e7:bb:ef:b1:3b:c1:f5:45:f3:
00:f1:6f:53:7d:50:4e:de:49:88:d2:db:42:c0:3c:77:0e:45:
8e:2d:69:e4:dc:c4:65:88:e3:a5:d7:15:82:4a:79:57:c0:e6:
3a:86:90:ee:3f:a2:8e:05:56:fd:2a:6c:88:39:46:e1:20:51:
a3:bd:90:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:08 2026 by rpki-client