Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: 4OSIyBxJfTi2SwGIovi9KuGiSMy6D/IaC+lzvYEeOss=
Subject key identifier: 8A:71:79:BA:BA:F7:E5:6E:04:EB:A4:7A:8D:B1:F8:18:63:26:E3:F4
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 019D38662D791E17D5979A73BE4F2CFEA28C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 071B
Signing time: Sun 29 Mar 2026 07:01:53 +0000
Manifest this update: Sun 29 Mar 2026 07:01:53 +0000
Manifest next update: Mon 30 Mar 2026 07:01:53 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: hkvKBWy0fSKDMRoEq12OTz27pXC6Foy5mCanKNdaKI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:2d:79:1e:17:d5:97:9a:73:be:4f:2c:fe:a2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Mar 29 07:01:53 2026 GMT
Not After : Mar 30 07:01:53 2026 GMT
Subject: CN=8a7179babaf7e56e04eba47a8db1f8186326e3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:99:32:32:e2:80:93:44:fa:d7:73:83:c8:93:
e4:ba:5f:5b:31:e9:c1:66:4e:42:11:73:ff:07:50:
32:1a:21:92:ad:a1:61:81:ed:e5:c7:23:11:d2:99:
d7:09:27:11:ab:b9:5d:ae:20:2a:9c:1a:4b:6d:7f:
45:06:a2:05:8b:d9:45:aa:f1:c0:aa:9a:d0:ec:16:
a9:16:6f:19:7e:31:49:31:55:66:35:36:1a:a9:0f:
f3:df:00:9e:35:bb:54:90:db:4a:da:e7:77:95:15:
13:b4:09:f8:e8:a7:01:a0:45:78:52:f5:cc:58:e7:
98:12:be:c2:eb:51:04:f3:58:94:8c:cf:15:75:43:
9d:19:55:8b:31:a0:de:de:b4:9a:84:88:4e:a2:ca:
e4:0c:9c:16:20:00:6a:50:f2:df:e0:f1:c9:09:7f:
d7:07:e2:86:9e:4a:e6:67:f0:fe:f0:4a:4f:56:25:
d4:10:69:be:fb:16:10:f6:0e:f3:83:b6:67:85:11:
58:aa:64:aa:c4:ec:aa:7c:92:c0:88:20:38:a3:f4:
29:4b:52:7e:76:10:0b:12:6c:87:1a:87:28:be:51:
08:d0:09:05:2f:08:88:be:b8:5f:a3:b4:c2:5d:7a:
c0:58:ce:91:5e:f9:68:3f:cb:4d:74:a3:d8:50:b7:
84:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:71:79:BA:BA:F7:E5:6E:04:EB:A4:7A:8D:B1:F8:18:63:26:E3:F4
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:37:1f:cd:a3:db:bb:f8:79:91:33:51:3b:e1:6a:06:cb:47:
cd:f1:82:2c:3d:99:39:89:89:2d:ac:80:94:82:3d:f6:86:36:
de:cf:b8:5e:ab:fd:6c:a4:61:f2:b0:c1:fa:d0:06:e3:8c:ec:
f5:52:40:15:24:ab:01:72:bd:b1:e8:ec:81:56:6b:be:a2:b8:
d9:cc:2d:18:39:39:df:3a:59:32:a3:fd:ac:b1:c0:da:50:97:
db:34:b3:d2:01:33:d0:9d:01:d8:7f:2f:7c:49:ac:73:90:ed:
50:bb:9a:ec:67:db:47:e3:65:4b:ce:09:9a:e8:73:3f:37:86:
87:02:b4:8d:cd:61:7f:39:55:de:2f:de:72:db:bc:81:fb:13:
6b:87:a9:f9:8c:ec:73:23:a7:de:f3:96:c1:55:c6:e4:47:30:
6f:70:48:41:83:30:da:25:8f:9c:5a:19:9d:0f:37:86:f1:b8:
58:29:73:70:c3:32:1e:02:05:65:cb:22:0a:ca:66:10:6f:8d:
22:97:f0:19:17:3c:17:e0:7f:ed:f3:82:4c:dc:f2:f0:c6:5f:
b1:72:f4:43:4a:ef:a8:2f:d3:71:44:ac:c0:69:0b:74:cd:5c:
01:3e:ea:b3:e8:e8:ba:9f:58:be:7d:20:aa:ac:93:d9:95:a7:
58:e6:b3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:19 2026 by rpki-client