Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: rbJRrRn0K//dXtYgCWVblNSQUMQeb7hJNSqstq1wxTM=
Subject key identifier: 9D:D2:F7:72:B8:EC:57:25:52:0D:36:29:34:75:00:4E:03:1A:4F:CE
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 019D38662C4755318FBAB83385670CE1D593
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 092B
Signing time: Sun 29 Mar 2026 07:01:53 +0000
Manifest this update: Sun 29 Mar 2026 07:01:53 +0000
Manifest next update: Mon 30 Mar 2026 07:01:53 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: wPE3xZcPIC6pZTOoK94vp/56JSJ5taO6/GKFQW8YwoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:2c:47:55:31:8f:ba:b8:33:85:67:0c:e1:d5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Mar 29 07:01:53 2026 GMT
Not After : Mar 30 07:01:53 2026 GMT
Subject: CN=9dd2f772b8ec5725520d36293475004e031a4fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:5f:15:2c:c4:98:28:c5:23:c6:36:65:84:
6c:1f:73:c1:15:a9:14:8f:3b:6c:73:e5:4f:51:7b:
cf:28:da:99:54:d4:56:3b:a6:35:c2:28:22:66:db:
db:ac:1b:fd:b1:61:5c:a3:34:78:3d:85:18:9e:5c:
a0:cc:f8:d6:d4:fc:1b:f1:72:ae:bc:04:be:73:6c:
b3:1f:3e:83:c7:b5:4f:54:6d:65:1d:c2:3f:95:7d:
02:0f:de:67:de:2f:76:63:0e:78:fb:64:ec:66:ab:
98:5a:4c:e4:0f:68:f2:cf:08:40:66:d3:3b:86:47:
f4:87:a1:0d:d1:93:53:5f:d9:b0:b6:94:6a:ac:73:
d2:da:60:5e:3d:04:fb:9f:3b:1c:75:05:e8:32:91:
39:db:76:ea:65:e6:97:86:41:48:ec:12:c5:22:70:
6c:bd:e6:e5:c3:92:76:01:22:ad:c2:b5:12:8f:6e:
4b:e0:54:22:cb:f6:3c:a9:05:d0:a8:ca:b0:10:43:
89:1a:c4:ed:ac:75:9b:aa:3d:55:9e:47:cd:8f:71:
18:67:00:fe:41:b1:d1:4b:6d:f3:38:b7:80:20:c6:
4a:ce:9f:8f:90:d1:3e:1d:e6:ab:51:5a:3f:21:db:
e5:bf:95:4d:a8:de:8c:3e:8d:9b:2a:55:3f:4b:60:
25:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D2:F7:72:B8:EC:57:25:52:0D:36:29:34:75:00:4E:03:1A:4F:CE
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:93:2e:3e:aa:0a:e9:70:f0:85:b5:27:c4:94:66:63:22:2a:
e7:28:af:05:dd:5e:e4:1a:e2:0d:d9:2d:ad:fb:ca:38:f0:8f:
ad:66:a7:1e:3f:01:8f:4f:38:98:9f:c8:bc:6c:ae:57:da:a5:
a9:9d:22:0b:a5:58:49:42:9c:cc:5a:c2:09:e5:c0:b4:68:fc:
45:c8:b8:54:16:c8:c7:dc:e1:2a:49:f6:66:84:f4:b7:b2:d5:
f0:a4:8b:c7:a7:53:90:e3:e9:ca:73:61:d6:5a:14:84:f6:b8:
93:c0:e9:c8:69:d7:a4:ed:61:40:70:84:f0:85:1c:2c:b2:7b:
92:7a:8c:35:3d:f3:e1:b1:d6:64:99:f8:81:00:c0:51:6d:b4:
c3:80:54:d4:f4:0b:7d:05:a8:15:20:de:7e:23:14:d3:f0:2c:
9d:8e:3d:84:5b:be:ae:8d:9d:16:60:3c:8c:08:23:ce:29:9a:
81:de:6c:fd:8f:be:a5:6c:41:6a:8f:98:dd:d2:23:5e:68:08:
19:81:cf:f7:43:44:06:56:e9:a2:d0:d6:91:78:e4:da:a8:3d:
46:8a:28:98:d3:53:bc:db:04:4c:38:3f:8d:95:4f:48:d9:c2:
c1:7a:cb:d1:bc:f9:b4:80:68:57:40:84:eb:8e:4b:41:36:bc:
0c:78:49:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:36 2026 by rpki-client