Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
File: iMaZNJivBRiWLl9I1chG3BddGIQ.mft (raw, json)
Hash identifier: 0tsmZHqofac99m4qf0nqWk3OvCA++xUhiQGS7pX8RD4=
Subject key identifier: 78:9F:01:60:FB:4E:5E:A3:D0:6B:65:AE:85:47:50:B7:B6:9C:D4:F4
Authority key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Certificate issuer: /CN=88c6993498af0518962e5f48d5c846dc175d1884
Certificate serial: 019D38D3C268679157F12CF2C5974258BA6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 09:01:35 +0000
Manifest this update: Sun 29 Mar 2026 09:01:35 +0000
Manifest next update: Mon 30 Mar 2026 09:01:35 +0000
Files and hashes: 1: iMaZNJivBRiWLl9I1chG3BddGIQ.crl (hash: FLQwnBeTqoQqBi9OgTBiNxZbsWWgXJCUDerp4pAP4Nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:c2:68:67:91:57:f1:2c:f2:c5:97:42:58:ba:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c6993498af0518962e5f48d5c846dc175d1884
Validity
Not Before: Mar 29 09:01:35 2026 GMT
Not After : Mar 30 09:01:35 2026 GMT
Subject: CN=789f0160fb4e5ea3d06b65ae854750b7b69cd4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:87:09:2d:53:ed:95:06:70:e6:00:62:b0:
d9:e4:85:ea:85:99:c6:29:8f:95:d3:38:25:6d:99:
b2:1e:9a:02:f9:d4:bb:26:28:20:8c:bf:74:ee:a9:
55:03:14:ce:be:2d:ea:ea:3f:0f:06:c6:2b:e6:5c:
25:0f:e7:bd:21:54:65:46:ca:1d:e8:35:12:67:5d:
24:53:0b:3c:15:b9:11:ce:d3:6c:c4:62:3a:b2:9f:
bc:25:ee:b9:87:d6:8c:17:6d:90:7b:9a:2d:87:3a:
5d:3b:02:fc:4f:6a:53:c4:e1:aa:a8:35:18:6d:4d:
89:74:85:d5:7f:14:09:7f:de:43:88:94:7f:f1:eb:
6e:62:a2:4d:0b:99:54:3f:11:55:07:4d:72:b8:46:
9d:9a:93:11:c2:c2:51:b3:75:a4:9f:79:de:01:c8:
d1:0f:40:27:be:12:ae:99:ee:cd:a4:0a:a1:79:c4:
06:4a:19:d3:ef:0f:a5:8b:c3:4d:91:10:23:e8:69:
ea:5b:c7:41:ab:90:c6:c6:3b:69:a4:16:34:1f:8d:
d4:70:3b:68:1c:fb:36:4b:f1:7e:f3:32:16:49:93:
73:b1:ae:2d:0f:4f:85:52:3f:f9:7d:21:9b:e2:a6:
6e:e7:12:17:f9:29:eb:59:76:27:0b:d7:80:b9:6b:
05:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9F:01:60:FB:4E:5E:A3:D0:6B:65:AE:85:47:50:B7:B6:9C:D4:F4
X509v3 Authority Key Identifier:
keyid:88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:5c:d0:ac:64:50:8f:f2:bf:62:6b:50:e4:ff:f1:f6:56:74:
52:7e:74:e7:d3:1b:c9:76:6c:f1:39:b2:3c:71:93:4e:f4:f3:
73:0f:b4:08:b1:af:d2:d1:29:ff:e8:6c:ea:25:a8:f2:e2:7e:
52:b6:80:6d:00:be:28:36:73:19:16:f5:04:22:74:ef:f6:42:
71:fc:9f:ee:9a:e3:d1:fc:74:e8:b6:db:fc:bd:56:24:9f:e1:
54:c0:2a:de:ea:29:83:8a:34:a2:88:2d:d9:ab:0d:cc:35:01:
ba:a8:1d:12:87:d8:d1:f9:f7:5c:19:28:a0:7e:e5:30:17:7f:
d8:63:4e:7b:ba:05:cb:c5:bd:f8:ea:38:f3:e4:a7:a8:10:60:
0c:61:0e:c0:a2:76:b3:ce:5e:19:1a:af:33:82:df:fe:c3:93:
b8:b4:71:ee:31:76:a7:6a:98:b2:57:58:9a:19:df:b6:f4:a3:
1e:5e:8d:dc:f1:b6:f4:58:e8:1a:e5:29:7f:b6:51:09:99:b7:
4c:85:4c:7d:22:d8:5e:eb:92:05:1f:bc:39:89:e6:66:1c:fd:
52:66:76:b8:92:6e:84:b3:49:6b:c9:85:54:98:25:56:cc:bd:
da:ff:6b:99:3d:3b:42:b2:9a:ef:b1:9e:e7:8f:d6:a5:bf:45:
b5:fa:aa:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0408JoZ5FX8SzyxZdCWLptMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YzY5OTM0OThhZjA1MTg5NjJlNWY0OGQ1Yzg0NmRjMTc1
ZDE4ODQwHhcNMjYwMzI5MDkwMTM1WhcNMjYwMzMwMDkwMTM1WjAzMTEwLwYDVQQD
Eyg3ODlmMDE2MGZiNGU1ZWEzZDA2YjY1YWU4NTQ3NTBiN2I2OWNkNGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpaHCS1T7ZUGcOYAYrDZ5IXqhZnG
KY+V0zglbZmyHpoC+dS7JiggjL907qlVAxTOvi3q6j8PBsYr5lwlD+e9IVRlRsod
6DUSZ10kUws8FbkRztNsxGI6sp+8Je65h9aMF22Qe5othzpdOwL8T2pTxOGqqDUY
bU2JdIXVfxQJf95DiJR/8etuYqJNC5lUPxFVB01yuEadmpMRwsJRs3Wkn3neAcjR
D0AnvhKume7NpAqhecQGShnT7w+li8NNkRAj6GnqW8dBq5DGxjtppBY0H43UcDto
HPs2S/F+8zIWSZNzsa4tD0+FUj/5fSGb4qZu5xIX+SnrWXYnC9eAuWsFvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHifAWD7Tl6j0GtlroVHULe2nNT0MB8GA1UdIwQY
MBaAFIjGmTSYrwUYli5fSNXIRtwXXRiEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC84MWIwMGEtZjY4ZC00NGY0LTg4MjUt
OTgyNzM2YjQ1YmRmLzEvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC84MWIwMGEtZjY4ZC00NGY0LTg4MjUtOTgyNzM2YjQ1YmRm
LzEvaU1hWk5KaXZCUmlXTGw5STFjaEczQmRkR0lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlzQrGRQ
j/K/YmtQ5P/x9lZ0Un5059MbyXZs8TmyPHGTTvTzcw+0CLGv0tEp/+hs6iWo8uJ+
UraAbQC+KDZzGRb1BCJ07/ZCcfyf7prj0fx06Lbb/L1WJJ/hVMAq3uopg4o0oogt
2asNzDUBuqgdEofY0fn3XBkooH7lMBd/2GNOe7oFy8W9+Oo48+SnqBBgDGEOwKJ2
s85eGRqvM4Lf/sOTuLRx7jF2p2qYsldYmhnftvSjHl6N3PG29FjoGuUpf7ZRCZm3
TIVMfSLYXuuSBR+8OYnmZhz9UmZ2uJJuhLNJa8mFVJglVsy92v9rmT07QrKa77Ge
54/Wpb9FtfqqHg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:34 2026 by rpki-client