Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
File: imlbOroepOZUeIxRZBRYzJlXgEA.mft (raw, json)
Hash identifier: eq8TFGOxwbAeK3P8aCktdWVozejtqMXMypTeh1tXL4I=
Subject key identifier: 3A:D1:8A:70:9E:27:DC:63:BB:5C:30:AA:52:03:55:A4:EC:09:D2:01
Authority key identifier: 8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
Certificate issuer: /CN=8a695b3aba1ea4e654788c51641458cc99578040
Certificate serial: 019CFF1AFFBF2326D31D2D30FAEB6C6C095A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
Manifest number: 1871
Signing time: Wed 18 Mar 2026 04:01:25 +0000
Manifest this update: Wed 18 Mar 2026 04:01:25 +0000
Manifest next update: Thu 19 Mar 2026 04:01:25 +0000
Files and hashes: 1: imlbOroepOZUeIxRZBRYzJlXgEA.crl (hash: zMHuJAN5hlBYD0w58xTwH9Ncpk6cZGeWi6iWWywfxE8=)
2: kE5VlmslAvRcrZ42pGQyAHfoqrE.roa (hash: AmEozEHyDw1oYPPxW0JA4Yammx0So33uCTb4ELzWUD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Mar 2026 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ff:1a:ff:bf:23:26:d3:1d:2d:30:fa:eb:6c:6c:09:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a695b3aba1ea4e654788c51641458cc99578040
Validity
Not Before: Mar 18 04:01:25 2026 GMT
Not After : Mar 19 04:01:25 2026 GMT
Subject: CN=3ad18a709e27dc63bb5c30aa520355a4ec09d201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c4:ab:ca:f8:fb:35:ac:3e:2b:cd:05:c5:64:
06:a0:0d:3d:62:0a:b2:6e:9f:9a:c5:8e:97:65:4c:
ef:61:69:11:ba:02:b2:a7:b2:40:11:26:b3:53:2b:
87:48:50:cc:48:0d:f8:8c:a6:83:23:dd:ea:2b:bf:
25:6b:13:f2:b1:e4:44:90:a7:f9:a8:71:b8:8e:93:
80:14:2b:73:c0:a9:4a:e1:25:ac:1f:8e:c0:c1:5f:
c8:cd:b0:af:2f:41:36:dc:4b:bb:9b:52:5a:a5:88:
95:2d:bb:98:cc:52:16:22:f9:e1:55:6a:72:11:04:
fb:f6:68:50:cf:53:37:d6:05:b0:e7:8e:a0:09:8f:
34:91:20:00:57:de:5f:75:9a:82:d5:18:29:c3:a3:
c3:f2:fa:ca:e2:ea:fe:88:f1:90:77:db:4c:58:66:
84:22:13:66:ad:b2:fc:a0:c4:03:5f:ac:05:c3:a2:
c8:a5:b6:b7:25:b3:48:46:6f:86:bc:4d:39:16:8a:
d3:aa:b1:3d:7a:21:95:54:78:45:e8:e8:58:ea:d7:
40:ca:90:27:76:3a:c7:81:a4:1e:33:18:2b:ab:77:
dc:bd:55:7f:37:65:25:81:a2:71:c5:ab:27:16:8c:
dd:a6:19:67:43:cf:ec:d8:04:51:9b:b9:94:6b:e1:
0d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D1:8A:70:9E:27:DC:63:BB:5C:30:AA:52:03:55:A4:EC:09:D2:01
X509v3 Authority Key Identifier:
keyid:8A:69:5B:3A:BA:1E:A4:E6:54:78:8C:51:64:14:58:CC:99:57:80:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imlbOroepOZUeIxRZBRYzJlXgEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/538194-7560-4456-b45c-ca26c22cfafd/1/imlbOroepOZUeIxRZBRYzJlXgEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:74:3e:54:81:7c:26:67:a4:58:0c:75:35:19:4a:3a:a4:45:
76:fa:6a:6c:7c:4c:92:66:2a:49:65:ce:33:ac:5b:a0:40:bc:
da:0c:ef:48:15:a9:31:d4:55:b5:d0:9d:40:76:92:e4:f3:77:
34:85:8c:9d:02:b9:bc:ce:e7:95:77:b3:e5:95:53:c2:59:bc:
f0:50:57:45:c7:7e:24:95:6c:49:d7:9f:07:db:7f:72:39:89:
5e:a2:14:73:b5:ec:bc:8d:8b:5b:82:fd:dd:99:12:f7:db:b2:
9c:06:8f:82:ff:bf:46:a7:8d:59:50:3e:ee:75:78:3e:94:14:
44:e7:e4:75:77:9e:10:dc:fc:c1:88:e6:c1:94:c4:ff:6a:bf:
59:b3:20:60:be:bb:e3:66:19:34:f9:19:02:64:17:7d:f6:fa:
74:47:5d:60:51:c9:0e:90:ea:36:d9:b4:14:95:3d:be:1b:ed:
b8:ed:2d:ff:31:cc:32:df:f4:69:82:61:bc:73:19:c5:dc:4d:
7d:b2:91:34:a8:59:2e:4c:71:5c:94:9e:d0:0b:78:7a:03:78:
a5:7f:e2:93:32:70:f5:a0:60:23:15:28:74:d3:bb:51:c9:f7:
c4:7a:da:30:5b:d0:0c:8e:37:df:94:28:92:83:fb:a2:fe:20:
25:e1:f1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 18 12:21:32 2026 by rpki-client