Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: 9mNnrHyspzVfEXTznQ23+JqY1OAeKUzJvCpX31Ixizw=
Subject key identifier: BB:E0:0A:77:82:7E:5C:E6:A7:B6:DB:23:C3:40:EA:20:87:32:18:ED
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 019E31855BFE3FAEC4951712947113874F7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0E1C
Signing time: Sat 16 May 2026 16:01:23 +0000
Manifest this update: Sat 16 May 2026 16:01:23 +0000
Manifest next update: Sun 17 May 2026 16:01:23 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: LCJDdSzFi7n/0nOCYafl28EEqw0PbF01UDRxo8bIKJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:5b:fe:3f:ae:c4:95:17:12:94:71:13:87:4f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: May 16 16:01:23 2026 GMT
Not After : May 17 16:01:23 2026 GMT
Subject: CN=bbe00a77827e5ce6a7b6db23c340ea20873218ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:db:a4:e4:bc:6b:2a:46:18:e1:9e:28:3e:
dc:f3:ab:6c:9a:d2:82:bb:fb:82:50:35:26:e0:9d:
3d:46:c2:d7:ca:d9:d6:50:94:22:6c:a5:1e:d0:92:
99:3d:e4:b7:4d:91:4a:ec:fb:4d:9d:4b:8c:cd:2c:
01:44:f5:6a:dd:06:7d:d3:82:c0:47:c6:7f:15:6b:
11:a0:da:ac:19:ff:d0:09:c7:c6:21:af:14:b8:d2:
3f:06:13:8a:10:ca:69:4a:a9:56:92:3c:60:8a:83:
d4:af:b8:1c:1a:f5:86:81:d1:11:52:9a:32:b3:75:
55:12:68:16:78:d7:e4:b3:62:4f:90:5c:a8:e8:16:
d8:e4:25:0e:35:2e:cc:6f:ce:99:f9:21:15:f3:a5:
c9:6c:b3:2c:e4:2d:c0:e1:00:09:41:df:dd:18:68:
74:ff:36:cb:aa:47:4c:1b:f8:6b:9b:ee:08:54:0e:
2a:cc:2f:54:d4:0d:cd:59:20:94:39:ca:ca:26:a4:
d7:1b:40:43:cd:5c:ee:9d:aa:73:93:a2:10:42:97:
f9:bd:8e:c4:a8:86:d3:57:2b:65:8a:fb:3f:80:a2:
c7:9c:db:25:81:26:0b:fc:b5:1c:bd:e4:58:92:f9:
e8:ee:fc:06:d2:f8:fd:b9:97:26:db:29:9f:fd:af:
17:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E0:0A:77:82:7E:5C:E6:A7:B6:DB:23:C3:40:EA:20:87:32:18:ED
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:80:7f:14:0c:1b:a9:76:19:b2:63:2f:48:ab:9d:5e:93:53:
8e:d8:32:95:7b:db:8a:03:fe:05:59:2c:52:bb:56:81:f1:9f:
e1:c8:2d:8d:54:3f:61:d9:4b:65:41:68:ba:2b:f8:1a:92:50:
11:34:da:69:53:ae:0f:6b:bc:ab:ca:4d:83:09:37:61:29:c2:
fd:3d:03:8b:10:30:7f:cb:d4:69:ce:bb:ca:fa:a5:51:a4:50:
e3:92:36:77:c9:a4:29:5d:fa:08:87:73:af:c4:04:6b:b5:69:
21:bb:19:c8:64:9d:0f:6a:dd:89:83:e8:6c:af:d7:37:9f:57:
c2:39:7b:f8:cf:df:45:fe:9b:28:bc:03:52:34:db:d2:83:7a:
6b:6c:a5:af:34:5f:f5:c4:ad:7a:6b:72:fd:6c:3c:15:f5:91:
db:b8:7c:10:10:08:32:63:95:1d:77:ad:a2:90:ce:59:93:37:
95:d0:1b:22:0e:c7:58:6e:78:4e:73:e0:2f:c5:3c:98:8f:1f:
6f:cd:18:17:17:98:9f:ca:0e:cb:e0:5f:fe:76:8b:f6:e0:0d:
51:55:4e:1d:5a:e4:a9:81:f9:ff:41:b8:67:12:c0:d4:96:8e:
ea:ba:c5:e0:e4:64:c6:f6:51:a1:fe:25:0a:0d:3d:90:c3:6d:
fc:ec:20:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:28 2026 by rpki-client