Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
File: IBBUhPGH8gh9Egytlx1oLbMVmWU.mft (raw, json)
Hash identifier: pVdwJ6n55nMNyQZiI8EyBcp+Ct64jSuUNEWd28Dn45w=
Subject key identifier: 1A:2A:AB:DF:C9:2E:64:8B:35:96:69:65:F5:34:1F:58:1A:D7:DC:FE
Authority key identifier: 20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
Certificate issuer: /CN=20105484f187f2087d120cad971d682db3159965
Certificate serial: 019E322A0A5666271186C5C2F3E4650C7D74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
Manifest number: 04B3
Signing time: Sat 16 May 2026 19:01:16 +0000
Manifest this update: Sat 16 May 2026 19:01:16 +0000
Manifest next update: Sun 17 May 2026 19:01:16 +0000
Files and hashes: 1: 90vvtkrkAMGYzz8QxxavAe6DrCY.roa (hash: TG20gZKtR2MxO/jwaweSu/ZIE48KIk206vldUHECSqQ=)
2: IBBUhPGH8gh9Egytlx1oLbMVmWU.crl (hash: av8SPGAdcmlubvBfGUHH5UZNjPqHQuM3YQIeiffBRiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:2a:0a:56:66:27:11:86:c5:c2:f3:e4:65:0c:7d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20105484f187f2087d120cad971d682db3159965
Validity
Not Before: May 16 19:01:16 2026 GMT
Not After : May 17 19:01:16 2026 GMT
Subject: CN=1a2aabdfc92e648b35966965f5341f581ad7dcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:57:7f:d1:45:86:65:57:c0:e0:e9:0a:4a:66:
8d:13:0a:75:51:57:cd:5d:82:07:69:1c:8c:80:a0:
e9:bd:4c:66:76:8b:25:52:30:81:37:45:fd:72:71:
41:ae:38:3e:32:06:e1:f7:58:88:17:3c:e0:02:05:
ad:a3:08:74:df:66:8e:c1:25:a3:30:ae:de:34:89:
92:08:62:54:c1:6a:b2:13:c1:7b:46:ce:7b:dc:da:
1d:da:30:c4:94:f0:b0:3a:62:a7:a6:56:f2:7e:f7:
83:14:ef:38:0e:16:65:25:c6:09:d1:31:e3:52:02:
4c:c0:c2:2e:fe:8a:43:e2:65:bc:ec:1d:1d:b9:f5:
28:29:5a:12:06:99:c7:9f:e2:72:96:ec:82:f2:ac:
ea:c0:ed:57:8e:cc:eb:b9:ff:d8:ba:f7:c7:fe:4b:
ca:19:16:12:17:79:21:7e:5d:ce:2e:57:4d:20:52:
70:1e:3d:93:05:dc:a2:b7:18:fa:95:78:b8:85:ec:
c4:ed:3e:41:64:2d:8e:b0:b5:6b:f9:18:0b:c7:4f:
b1:37:bc:ca:bf:7c:48:05:d5:6f:f5:fc:5c:65:c3:
4d:1a:31:06:96:3f:c9:0d:81:60:13:0e:a8:52:d5:
a0:93:83:4d:0a:7e:36:27:46:5e:46:ff:0c:1b:fb:
38:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:2A:AB:DF:C9:2E:64:8B:35:96:69:65:F5:34:1F:58:1A:D7:DC:FE
X509v3 Authority Key Identifier:
keyid:20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:37:47:1a:bc:f3:c4:d5:e8:48:2f:62:40:6c:c4:f0:41:7a:
a6:66:96:e4:08:75:5b:34:2d:ae:49:0c:c8:a8:14:dd:4c:ab:
21:6b:8a:21:8d:f7:b9:ec:7d:42:4a:ca:30:e3:9c:20:8c:f8:
24:c2:eb:e3:7b:3e:a7:8d:d3:51:99:d2:d6:a7:73:7f:3d:54:
cc:91:6a:de:c0:96:df:d6:dc:a1:72:67:ab:81:95:a8:54:25:
5f:da:ff:82:45:dc:b6:e8:36:dd:f5:a7:74:98:c0:af:c4:74:
68:30:81:4e:7e:25:99:f2:0f:70:87:97:cb:90:5e:0c:5d:81:
06:26:ff:43:a3:8f:1c:62:35:0b:f4:a0:0d:eb:d8:18:ff:f2:
d2:e2:ac:b0:bc:91:d6:e5:e1:d8:29:f4:1d:97:ea:47:f0:b1:
bd:c4:6c:34:ee:ea:2a:75:bb:6a:ef:3d:af:bb:f3:fe:ed:8c:
48:0c:f2:bc:7c:9e:3e:c2:dd:33:40:6e:f6:b6:d3:9a:96:fd:
e1:46:a8:10:6e:74:95:4a:f4:71:f3:78:a3:e6:7c:be:f4:ee:
69:f1:1c:93:b6:30:5d:7a:1d:3e:53:bc:5b:3d:69:71:93:30:
0b:5f:a0:a8:f7:b2:44:6b:2a:35:d9:87:0a:f0:6e:a7:1e:06:
61:42:2d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:14:38 2026 by rpki-client