Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
File: Iu8SfmGVSrmJNlydukuMBkzu2fA.mft (raw, json)
Hash identifier: Q2e2yM6i9+GonBy7cOJNCP70wUCnba86YPLJpAgbbtw=
Subject key identifier: 7E:09:D5:AE:CD:BB:8C:B5:AC:48:F1:AB:89:51:8A:BD:74:7B:E6:C2
Authority key identifier: 22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
Certificate issuer: /CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Certificate serial: 019D39AF2348653F3B88D3DD1F2442DEE28D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
Manifest number: 06E7
Signing time: Sun 29 Mar 2026 13:01:12 +0000
Manifest this update: Sun 29 Mar 2026 13:01:12 +0000
Manifest next update: Mon 30 Mar 2026 13:01:12 +0000
Files and hashes: 1: Iu8SfmGVSrmJNlydukuMBkzu2fA.crl (hash: 3NUxSfl+H6KXOlQEKj84/bvGU+ml+Z4MHZ8yiiU2g8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:23:48:65:3f:3b:88:d3:dd:1f:24:42:de:e2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Validity
Not Before: Mar 29 13:01:12 2026 GMT
Not After : Mar 30 13:01:12 2026 GMT
Subject: CN=7e09d5aecdbb8cb5ac48f1ab89518abd747be6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d4:29:4f:1b:bd:b3:48:08:c5:18:a0:6b:fd:
a3:1c:2e:43:31:51:84:32:7c:40:4c:07:5d:93:ca:
6d:9b:c8:4d:b4:62:75:be:97:28:70:b5:25:1f:90:
45:a1:4d:4b:b1:07:0c:4a:af:8f:cf:cc:db:83:fc:
95:80:0e:1d:0c:0d:86:4c:86:a4:d8:7f:79:f6:e3:
cf:74:bf:e3:1c:e7:51:8f:c8:51:6b:88:5c:50:68:
ec:c1:53:e9:ff:9a:4b:7c:e9:63:c9:4c:5c:e4:7e:
0b:ff:4f:0e:f2:23:d0:02:02:ea:e3:96:83:aa:93:
fc:2a:b6:df:23:6a:96:05:47:5a:1b:99:12:29:50:
e4:44:f2:87:b0:9b:c8:3c:77:4b:63:45:cd:02:ac:
a4:4a:d2:5a:05:06:b3:58:68:79:a1:15:32:2c:7b:
de:a7:2f:2d:25:e4:cb:75:37:1d:34:db:a4:19:f7:
7f:59:dc:0c:b5:7b:fb:17:08:8a:00:74:26:a0:50:
38:bf:98:13:35:ab:dc:2a:4d:75:e7:15:be:c0:d9:
22:b2:ab:1e:12:61:1e:42:9c:b2:13:20:0c:50:6c:
ec:6c:dc:6a:dd:c7:c7:0f:2d:b5:fe:28:36:08:fd:
3c:38:ba:6e:21:47:f3:0e:7a:f0:19:ed:30:a1:de:
f1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:09:D5:AE:CD:BB:8C:B5:AC:48:F1:AB:89:51:8A:BD:74:7B:E6:C2
X509v3 Authority Key Identifier:
keyid:22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:3e:80:d4:76:f2:90:e1:20:e4:c6:c1:ab:05:f1:77:e4:3e:
bc:13:9e:5c:b4:ab:d2:56:9d:a2:c0:1d:3b:0b:ad:2c:42:3e:
77:3f:b9:6c:b5:f6:35:d6:0e:22:4f:4c:83:1b:3f:4a:47:61:
6b:cb:48:23:82:eb:e9:c3:0a:f0:b6:24:ff:9c:a0:a6:f9:e7:
43:c4:45:8d:25:9d:67:d7:a7:19:58:bf:a7:cb:ea:7e:f7:e5:
57:24:ea:39:d7:16:7d:f2:08:c8:0f:07:90:d2:39:49:43:35:
96:a4:dd:51:fe:19:c5:2d:37:b7:86:1b:bb:1e:96:1d:f0:01:
c1:33:69:ee:20:f7:89:6f:4f:88:17:df:68:ce:1d:b5:76:53:
80:c5:9c:34:8f:76:19:31:00:5b:00:40:e8:f0:eb:76:cc:5a:
12:0e:62:be:62:4f:d3:68:e7:3e:37:77:3a:7e:37:ad:f1:50:
0a:c0:80:c4:71:81:5e:31:e0:a6:5b:7d:15:d7:ec:13:19:91:
a8:10:3d:61:13:bc:db:2b:3d:f3:8f:81:d2:7a:7e:ad:28:a9:
de:51:48:df:7b:4e:c9:3f:35:2a:83:5c:15:a3:ef:41:1b:04:
af:c2:7e:03:17:a6:69:bb:1f:a5:f9:fe:f7:cf:33:02:86:e8:
fa:cd:26:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:29:09 2026 by rpki-client