Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: 3B8+VYoedYJVmjOUpfvjWsrpz2oflEPrS+w3kWRQXqg=
Subject key identifier: 80:84:F5:99:93:3E:CF:C4:14:C0:CF:F6:1F:D1:F0:55:0F:F3:F4:A0
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019D3865B244F8EE27F7BCE8D6C14FFBA209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:01:21 +0000
Manifest this update: Sun 29 Mar 2026 07:01:21 +0000
Manifest next update: Mon 30 Mar 2026 07:01:21 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: uLD+x89WBIfTKY287/TbQpYVOhkCHzWBXcBg0/v4H/Y=)
2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:b2:44:f8:ee:27:f7:bc:e8:d6:c1:4f:fb:a2:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Mar 29 07:01:21 2026 GMT
Not After : Mar 30 07:01:21 2026 GMT
Subject: CN=8084f599933ecfc414c0cff61fd1f0550ff3f4a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5d:b3:c3:e5:16:6d:d5:82:d7:1c:50:96:15:
1e:a0:f1:eb:2c:0e:b2:e5:1c:2f:8c:68:a3:f9:df:
bb:ca:a0:91:a8:b9:67:b3:73:fe:34:24:cf:1c:b0:
13:f5:79:84:d5:b4:b0:02:0f:88:7f:cb:bc:03:dd:
16:0a:1f:08:d0:88:36:1e:eb:38:20:f8:25:02:6b:
3f:9d:24:77:cd:5f:d0:e9:d2:9e:d9:ba:cb:32:f0:
52:41:27:d8:26:14:68:68:74:76:12:91:82:58:a9:
42:90:62:2e:bb:f4:ee:cd:04:08:0d:7b:08:7f:25:
1e:70:98:88:db:41:bc:3d:58:77:50:c0:30:09:09:
04:c1:96:63:be:c1:d9:51:b3:2a:bc:4c:77:f7:36:
23:70:2e:ce:29:6d:1e:10:ba:5c:c7:39:c6:48:a3:
0d:82:40:44:f3:97:b6:ef:51:8b:8a:b1:7b:33:da:
6d:64:75:1c:0f:9d:ed:5d:40:c6:3a:49:6f:ec:1d:
98:fd:37:16:e4:4a:84:61:6b:e2:1d:8c:a9:63:f5:
0b:23:48:92:f8:d3:2f:76:4a:09:8e:6a:52:f8:97:
99:89:60:64:a5:a8:e2:11:6f:60:5e:3e:43:6d:c9:
fa:17:d1:7b:6d:01:dc:d4:c8:a9:72:e8:05:f6:54:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:84:F5:99:93:3E:CF:C4:14:C0:CF:F6:1F:D1:F0:55:0F:F3:F4:A0
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:4d:aa:59:ea:23:31:2d:0b:84:67:42:e7:ac:a5:67:df:e1:
fa:cc:7c:bf:ee:22:d2:7e:46:2a:f8:68:2a:b8:5d:60:33:1b:
c8:92:69:97:21:e7:0c:c8:ba:43:96:2b:c0:6c:23:a5:e4:17:
8c:94:65:02:97:61:66:98:32:6a:1d:c8:fd:41:29:6a:80:18:
f5:56:c4:33:58:98:89:be:67:40:ec:37:8f:cf:35:4e:e7:c7:
78:8b:9b:98:ef:da:91:4d:6c:52:0d:fe:d3:4b:f2:54:d7:16:
6b:7a:fd:ad:b5:e7:9b:03:ab:1f:62:dc:5e:3a:41:8c:9e:ee:
06:0d:74:6d:e9:34:e2:5a:d5:a0:84:c9:33:32:b4:d0:ae:0f:
31:78:03:b4:90:0e:41:22:0f:6b:f7:c8:4a:c5:cc:62:6f:d6:
65:b7:22:f0:74:67:b9:58:a3:5d:a3:19:6c:d6:c8:26:c8:61:
aa:21:d7:1d:b6:cf:75:fc:e2:01:fe:ea:fb:77:1e:d2:22:a7:
31:c0:69:3a:ca:7e:c6:93:38:e9:58:e4:21:ec:7c:21:e3:39:
ec:7d:71:ab:4c:f9:9a:d5:48:26:cc:f8:d8:7f:0d:88:75:8c:
b8:c2:d4:31:9b:57:a6:76:8e:72:58:49:bf:27:4f:3c:33:5b:
da:80:3c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:56 2026 by rpki-client