Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
File: IBBUhPGH8gh9Egytlx1oLbMVmWU.mft (raw, json)
Hash identifier: CyAYhaXNMwrHI4utU4V6Q34axDEm9dEhwN5s8ICLV2k=
Subject key identifier: B2:DF:D8:6A:A7:11:16:90:F5:FB:BE:1C:00:32:E7:D9:81:E1:28:B3
Authority key identifier: 20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
Certificate issuer: /CN=20105484f187f2087d120cad971d682db3159965
Certificate serial: 019D371C018608F1CE1E2FE8B66288AACB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
Manifest number: 0431
Signing time: Sun 29 Mar 2026 01:01:15 +0000
Manifest this update: Sun 29 Mar 2026 01:01:15 +0000
Manifest next update: Mon 30 Mar 2026 01:01:15 +0000
Files and hashes: 1: 90vvtkrkAMGYzz8QxxavAe6DrCY.roa (hash: TG20gZKtR2MxO/jwaweSu/ZIE48KIk206vldUHECSqQ=)
2: IBBUhPGH8gh9Egytlx1oLbMVmWU.crl (hash: z4Ru/2L3WjhbDmvUy5sduShQnDd5B6Ac29j0FRRWhY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1c:01:86:08:f1:ce:1e:2f:e8:b6:62:88:aa:cb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20105484f187f2087d120cad971d682db3159965
Validity
Not Before: Mar 29 01:01:15 2026 GMT
Not After : Mar 30 01:01:15 2026 GMT
Subject: CN=b2dfd86aa7111690f5fbbe1c0032e7d981e128b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:c6:0a:72:6c:7d:be:cc:9f:e3:88:5c:5f:
16:0b:89:ce:6f:d2:12:77:a0:a4:56:5c:f2:d0:c9:
ad:78:70:35:16:00:6f:31:ad:5a:11:44:66:25:22:
74:9d:c6:3a:42:d5:98:d9:53:47:84:59:b2:0d:08:
8c:3a:13:19:39:ac:bd:09:02:a7:6b:8d:46:fd:cc:
52:c0:71:56:91:d8:56:02:37:ff:29:20:54:d2:6c:
12:d3:4a:5e:be:26:d2:ba:5f:e9:53:f9:3c:b7:10:
5f:af:7b:19:76:2e:ef:c3:7f:9d:ff:97:ec:c7:45:
67:3a:37:37:ee:d1:c3:85:fe:23:26:97:0f:59:44:
c6:58:55:b4:b1:e0:25:11:11:82:16:ee:b6:96:8c:
73:a5:fc:9e:c2:2f:a6:b6:4d:19:65:a3:15:e0:d2:
85:0c:0b:e3:81:23:29:1c:6f:b9:7e:2c:a8:c4:4a:
1f:2e:6a:e6:35:12:6b:69:13:2f:a0:c3:65:2a:2e:
3b:9e:39:3f:f2:b9:c1:ea:8a:a9:0d:0a:c8:11:46:
b3:db:39:ce:5e:b2:7a:38:aa:f7:79:9f:d7:80:32:
c0:6a:f7:48:87:b6:46:8e:43:2b:28:94:d7:4f:7e:
dc:49:12:0f:bf:e8:31:85:45:be:14:c8:ad:49:73:
f3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:DF:D8:6A:A7:11:16:90:F5:FB:BE:1C:00:32:E7:D9:81:E1:28:B3
X509v3 Authority Key Identifier:
keyid:20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:af:58:e8:17:ee:f8:1d:4c:48:02:7e:95:ac:bf:c0:8b:4c:
fa:0e:81:d0:fd:40:44:f8:69:fd:f5:68:f6:81:15:19:df:06:
d6:54:e2:73:2d:7a:50:a4:b9:27:68:1d:b7:67:da:6a:62:a5:
7e:eb:54:3b:f7:af:4d:c5:fd:87:55:2b:71:20:12:dc:3b:7b:
37:78:aa:ea:f6:19:06:c7:ec:26:4f:a8:bc:00:1d:16:1c:b0:
56:04:e1:bc:b4:cf:3a:86:0f:71:a7:b6:fc:c0:09:2a:7e:0a:
ee:f7:1d:b6:1a:92:7e:e9:19:b1:b5:39:c5:92:4e:36:84:2f:
bc:44:a4:85:8e:64:b6:9e:fb:32:8e:18:e4:a8:0f:cd:6e:79:
d7:13:e3:ca:f8:3c:00:6f:65:a1:ea:bb:51:17:62:28:06:59:
68:16:fc:c2:a1:f8:02:77:0e:87:49:a1:8a:a7:7a:02:b9:0b:
01:71:75:c4:11:d7:9f:31:f6:65:aa:75:b2:25:65:46:32:be:
98:16:dc:f7:ee:0f:a8:e9:bf:c5:80:4e:0a:03:b2:f8:b7:cf:
a2:50:d5:2e:e4:26:35:81:21:23:49:0f:89:95:d5:2b:11:e5:
5f:7a:52:7a:79:0a:ba:92:a7:24:2f:cb:d5:64:47:38:9e:54:
4a:3b:81:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:11 2026 by rpki-client