Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
File: iGbk-cPITtuUl18HHNhwfDgzqIY.mft (raw, json)
Hash identifier: Lago+fID0GA/zZaJgGWxItJpJA9bnc+L4awl49/ZJi4=
Subject key identifier: C8:BC:E1:2B:E2:97:8A:47:A6:95:DA:0E:CC:77:BD:E7:C2:3D:80:25
Authority key identifier: 88:66:E4:F9:C3:C8:4E:DB:94:97:5F:07:1C:D8:70:7C:38:33:A8:86
Certificate issuer: /CN=8866e4f9c3c84edb94975f071cd8707c3833a886
Certificate serial: 019D375261D86777089B2269F45DACF616DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
Manifest number: 0158
Signing time: Sun 29 Mar 2026 02:00:38 +0000
Manifest this update: Sun 29 Mar 2026 02:00:38 +0000
Manifest next update: Mon 30 Mar 2026 02:00:38 +0000
Files and hashes: 1: iGbk-cPITtuUl18HHNhwfDgzqIY.crl (hash: GPj2Jef3N8IGNuBW8OmF3CL2Bfs0nC9kqkBLdkLeRD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:61:d8:67:77:08:9b:22:69:f4:5d:ac:f6:16:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8866e4f9c3c84edb94975f071cd8707c3833a886
Validity
Not Before: Mar 29 02:00:38 2026 GMT
Not After : Mar 30 02:00:38 2026 GMT
Subject: CN=c8bce12be2978a47a695da0ecc77bde7c23d8025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:22:36:15:41:27:3c:3d:59:f2:60:08:30:5c:
42:e6:44:75:e5:fe:f7:c8:e3:0f:77:7f:a1:cc:94:
9d:37:8f:ce:27:97:e1:35:92:fe:7e:1f:95:90:ca:
28:3b:25:9d:86:19:16:ae:b3:c7:a4:b0:a3:b3:7e:
60:f7:08:36:f4:e3:0f:eb:bb:60:56:99:ac:78:17:
58:08:ae:99:41:70:c5:68:22:b4:37:96:f9:08:36:
2e:ff:d7:c5:2c:9f:78:cc:7b:80:01:7d:b0:ca:43:
38:a3:d7:37:9c:13:37:fe:42:56:05:11:72:56:4d:
46:91:ce:51:17:9c:26:da:8d:01:44:6b:f5:7c:4c:
0c:79:7c:cd:94:6d:ea:11:9e:8c:c8:63:b4:99:e8:
85:aa:75:ea:95:83:3d:b5:a6:84:20:53:a7:c2:f6:
80:98:e6:7b:7e:95:d5:ca:6a:f6:91:08:46:16:b2:
1b:d3:d6:d2:59:41:19:ad:b8:fd:b0:97:18:74:14:
7a:d0:22:b3:e0:37:5a:6e:1d:48:d1:dd:70:bd:63:
3b:c5:f2:55:08:60:3c:f5:58:75:f9:8b:85:62:3a:
51:95:53:ee:37:ac:57:86:f4:eb:0c:27:af:b0:27:
9c:66:a8:e5:89:d8:70:f6:2c:ee:4c:b8:6b:90:4d:
ac:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BC:E1:2B:E2:97:8A:47:A6:95:DA:0E:CC:77:BD:E7:C2:3D:80:25
X509v3 Authority Key Identifier:
keyid:88:66:E4:F9:C3:C8:4E:DB:94:97:5F:07:1C:D8:70:7C:38:33:A8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:ff:b7:87:c0:f1:b6:42:ef:f4:b8:72:bc:ee:0d:52:e8:85:
b0:66:a9:35:f5:e3:50:18:a5:3d:36:11:d9:fc:d6:ee:e1:ae:
44:d0:cb:74:57:25:c6:fb:63:24:a7:7f:20:f8:57:24:fa:84:
5e:f6:df:29:2b:13:a6:25:03:18:04:06:61:35:cd:ff:f1:6f:
f9:bb:9c:b7:0d:90:0b:3f:12:27:75:39:67:92:d2:60:ff:c7:
7f:00:9e:7a:43:45:8a:51:89:1b:fb:c3:09:54:0e:97:91:08:
41:28:e2:34:91:00:d3:2a:f3:2f:61:4b:7c:5c:b6:09:e9:95:
37:ea:74:d5:46:8b:ce:be:ac:e3:83:70:89:6f:f7:1f:ba:a1:
f9:c3:cb:20:b0:c4:f2:36:6e:80:25:d8:be:15:22:af:ac:10:
cb:9c:5d:f4:de:6a:4d:22:ae:dc:ac:93:2c:22:69:69:28:22:
9f:65:df:b4:e0:e6:ac:9f:60:c7:cc:9f:29:86:7b:fa:6c:83:
8d:22:64:34:84:a2:dc:09:b4:10:55:eb:e8:8f:84:4a:72:55:
df:2a:e8:d7:9d:10:3d:dd:4f:8a:5c:9e:81:c6:df:95:2a:37:
aa:21:01:e0:fe:b8:64:96:4e:87:17:e4:91:c0:80:5a:84:49:
f9:95:98:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:28 2026 by rpki-client