Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: lNStwMlGYsMe2zrqVhGm6Cn7z8/8Ki6RdyijArcV95Y=
Subject key identifier: D7:37:DF:D2:7F:C1:FB:1E:8F:D3:09:EA:E8:16:C8:35:95:5E:E3:B6
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 019D389C1622989A5BCA7D3B983676407B06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 08:00:46 +0000
Manifest this update: Sun 29 Mar 2026 08:00:46 +0000
Manifest next update: Mon 30 Mar 2026 08:00:46 +0000
Files and hashes: 1: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: WDvNs43DMcQXrdaNY7lO0LhQeqLqEjNvSv81/iY2LcE=)
2: tZEur65DZRQxS8J-3HPiT7ZHHZQ.roa (hash: QH0sRva7RS+lctZ8onEh+mUTqcR1lWAI/dUY/rIRqdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:16:22:98:9a:5b:ca:7d:3b:98:36:76:40:7b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Mar 29 08:00:46 2026 GMT
Not After : Mar 30 08:00:46 2026 GMT
Subject: CN=d737dfd27fc1fb1e8fd309eae816c835955ee3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:88:ce:6c:0a:63:04:92:ce:25:6d:e8:61:e4:
47:d6:d3:de:0f:cd:9f:ba:74:ee:03:8f:e8:3b:f2:
2d:d4:1b:d7:ab:c8:14:9b:f0:e1:6b:0f:5b:a4:7c:
fc:48:51:f7:f1:d0:f7:61:47:d4:c9:ba:19:1e:2b:
13:47:a1:f6:e1:f7:13:d3:8a:7d:e1:1c:da:87:e1:
7f:84:62:5d:c7:1e:5a:bd:b6:c1:4c:d7:67:f3:91:
82:4e:d3:f7:b4:ec:da:22:53:3e:91:39:1b:f2:59:
77:0f:8c:0c:8e:f0:17:d4:e6:b6:6c:95:a7:21:bf:
87:a6:fb:a2:20:6d:16:e6:89:0e:13:92:00:0e:c3:
86:ee:4d:78:8f:dd:7c:16:03:1c:8d:7d:ca:f5:2a:
39:f7:1c:24:ea:cd:0c:c4:08:dc:70:aa:f5:cb:e1:
a6:91:f0:d0:9d:97:83:d1:d2:4b:57:48:2b:6d:9d:
0f:6a:d6:ed:a2:33:40:3f:fb:02:22:88:3b:63:62:
e7:52:1a:40:20:44:ae:e9:e1:85:a6:54:1b:00:a7:
41:eb:7a:69:ec:f3:c1:f8:dd:44:79:5f:b7:7f:ad:
2d:62:bd:24:28:2b:f1:41:f6:9a:08:79:e8:e2:8e:
72:aa:48:a6:ff:58:ed:d6:92:04:76:5c:cd:c3:0f:
e5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:37:DF:D2:7F:C1:FB:1E:8F:D3:09:EA:E8:16:C8:35:95:5E:E3:B6
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:3c:9a:2b:28:07:2a:0f:e5:c2:e7:f3:65:86:bc:d9:0a:67:
d9:46:cb:c5:d9:f9:83:89:40:83:89:3b:fd:dc:bb:e1:35:6d:
60:72:9d:01:0d:7f:97:0c:ec:08:31:6a:55:61:43:56:24:4c:
e0:06:79:00:8c:87:f9:6d:5a:5e:81:a3:a2:6c:b2:69:cc:e7:
02:26:f2:b2:ac:4d:fd:ae:62:4a:51:6f:fd:32:f2:96:38:d3:
ef:83:73:c7:4e:4d:34:7c:74:47:92:5f:d0:48:e1:2a:5b:8d:
65:fc:b6:00:6f:cd:96:ee:14:b2:00:76:71:2b:8f:05:3d:c2:
3b:d7:ca:a5:dc:c9:6b:2b:7a:48:c5:0d:a8:ca:00:aa:14:5b:
73:f7:36:d2:99:8e:1d:cf:ad:de:9b:76:e0:25:5c:0b:de:a4:
e9:ca:f9:d7:07:b1:24:c7:93:23:29:ee:83:db:e5:d7:b2:c6:
fb:e5:1e:36:d5:95:d9:1a:88:f8:6d:9f:95:34:0e:bf:c6:02:
9d:ce:02:49:a1:e2:ce:42:30:e7:eb:d7:1e:f0:a3:79:f4:ac:
a8:5b:6d:4e:c3:6c:df:b5:f4:36:5f:7b:09:81:74:57:cf:6e:
18:d0:0d:dd:a7:46:aa:6c:45:f5:19:e3:24:19:9e:fa:83:d2:
08:aa:3b:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nBYimJpbyn07mDZ2QHsGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTJlOTI0ZmNhY2I4NjJjZjNiNjRmNTZlNzY3YmMzMjZm
MjdmY2EwHhcNMjYwMzI5MDgwMDQ2WhcNMjYwMzMwMDgwMDQ2WjAzMTEwLwYDVQQD
EyhkNzM3ZGZkMjdmYzFmYjFlOGZkMzA5ZWFlODE2YzgzNTk1NWVlM2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIjObApjBJLOJW3oYeRH1tPeD82f
unTuA4/oO/It1BvXq8gUm/Dhaw9bpHz8SFH38dD3YUfUyboZHisTR6H24fcT04p9
4Rzah+F/hGJdxx5avbbBTNdn85GCTtP3tOzaIlM+kTkb8ll3D4wMjvAX1Oa2bJWn
Ib+HpvuiIG0W5okOE5IADsOG7k14j918FgMcjX3K9So59xwk6s0MxAjccKr1y+Gm
kfDQnZeD0dJLV0grbZ0PatbtojNAP/sCIog7Y2LnUhpAIESu6eGFplQbAKdB63pp
7PPB+N1EeV+3f60tYr0kKCvxQfaaCHno4o5yqkim/1jt1pIEdlzNww/lTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNc339J/wfsej9MJ6ugWyDWVXuO2MB8GA1UdIwQY
MBaAFIgS6ST8rLhizztk9W52e8Mm8n/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zYTk4ZTItOGFlOC00NzIzLTg5NTkt
Y2UyZDhlM2ZjODA0LzEvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zYTk4ZTItOGFlOC00NzIzLTg5NTktY2UyZDhlM2ZjODA0
LzEvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkzyaKygH
Kg/lwufzZYa82Qpn2UbLxdn5g4lAg4k7/dy74TVtYHKdAQ1/lwzsCDFqVWFDViRM
4AZ5AIyH+W1aXoGjomyyacznAibysqxN/a5iSlFv/TLyljjT74Nzx05NNHx0R5Jf
0EjhKluNZfy2AG/Nlu4UsgB2cSuPBT3CO9fKpdzJayt6SMUNqMoAqhRbc/c20pmO
Hc+t3pt24CVcC96k6cr51wexJMeTIynug9vl17LG++UeNtWV2RqI+G2flTQOv8YC
nc4CSaHizkIw5+vXHvCjefSsqFttTsNs37X0Nl97CYF0V89uGNAN3adGqmxF9Rnj
JBme+oPSCKo7CA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:08 2026 by rpki-client