Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: 1gqbNjloz3cwdX/Wceba7gqh7VrH3bFsidnk5oo8CEg=
Subject key identifier: 97:99:C7:DD:EC:D4:B5:AA:71:8A:80:44:BB:46:31:E0:47:B3:5B:32
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 019E31852CD67132D27A6BD9AB9C5C94A316
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 16:01:11 +0000
Manifest this update: Sat 16 May 2026 16:01:11 +0000
Manifest next update: Sun 17 May 2026 16:01:11 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: aI2d6UNy2aO0TmYnuIZeZ4wcWXP91jlEMjCTUjqYjuc=)
2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:2c:d6:71:32:d2:7a:6b:d9:ab:9c:5c:94:a3:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: May 16 16:01:11 2026 GMT
Not After : May 17 16:01:11 2026 GMT
Subject: CN=9799c7ddecd4b5aa718a8044bb4631e047b35b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:18:49:61:9e:29:e0:a0:3b:63:c5:c3:93:43:
a6:81:32:75:7f:cb:c3:6a:64:18:a6:db:25:d1:8a:
3e:d9:22:9b:5a:bf:51:06:40:4e:2c:35:17:11:3d:
76:55:2a:d2:48:29:f8:96:40:b2:ec:cc:15:ee:86:
f7:c1:10:60:9f:d5:56:da:9d:a7:5b:f7:de:b7:37:
23:62:1f:40:d0:09:de:e8:da:da:ad:fc:3c:ec:71:
9c:c7:ce:25:f4:26:0a:2e:c0:f1:4b:d7:52:2d:e1:
04:ca:e1:ad:ec:f8:b7:a5:68:d8:c2:d4:bb:e7:64:
ad:9f:58:1e:6d:a2:76:a8:3f:31:c2:27:83:64:c2:
08:57:37:77:0a:02:aa:16:3d:28:22:7d:91:44:63:
ad:97:25:ee:f5:19:01:3e:f2:01:ff:4a:a6:66:34:
5a:4a:fc:19:7c:fb:1a:46:36:c5:7e:26:f1:41:ad:
1b:e4:13:e1:c8:44:fb:81:28:94:a1:d6:77:53:fa:
eb:32:4f:c1:e4:a6:df:ec:e9:52:a2:c8:a0:95:bb:
df:f4:a6:d6:e7:bf:e4:07:15:1d:e9:4d:22:d0:ae:
01:01:89:91:10:7c:c8:34:64:b9:aa:5c:41:91:91:
18:7d:ee:1e:13:00:74:0b:cc:09:68:61:f1:10:91:
b5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:99:C7:DD:EC:D4:B5:AA:71:8A:80:44:BB:46:31:E0:47:B3:5B:32
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:af:2e:06:f0:6c:13:c5:45:b2:ac:f6:d6:59:4d:d0:96:b1:
63:85:1f:24:69:7c:42:bb:c9:6d:3d:a5:0a:45:07:90:db:55:
b6:9f:6b:3f:c0:7f:f1:48:72:fe:55:8a:78:18:25:5c:68:e8:
14:1d:57:70:76:71:2d:ea:fc:ea:c8:8b:18:c3:09:0a:12:76:
0d:56:5e:42:14:54:7a:cb:a0:71:8c:33:29:13:ad:45:6c:e9:
7f:61:9f:ad:2d:5f:63:b9:94:29:72:11:8e:c6:5b:5b:11:c0:
d2:91:55:66:62:a1:fb:4b:71:ac:cd:5d:63:58:52:eb:0d:dc:
c7:87:82:dd:ad:3d:87:15:d0:4e:45:e8:3a:20:eb:38:8b:23:
a4:6e:c9:b3:c1:ba:aa:01:c6:86:dc:d5:66:8d:8d:ff:ec:b9:
6f:29:97:49:ce:c9:94:9e:1b:ab:77:a8:30:cf:6d:ad:4c:3d:
84:54:f2:08:ea:7b:2f:af:f7:82:d9:4d:66:74:ea:d5:b3:a4:
56:24:54:91:7a:2b:f4:be:45:1a:8d:1a:f5:83:f6:f4:d4:bc:
63:e3:41:84:73:c0:28:fc:02:77:de:b4:bd:5a:31:b0:17:4a:
78:64:1e:a3:50:5e:46:ae:9f:cb:de:b2:7e:5d:02:f1:3e:97:
bf:6a:94:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:54:24 2026 by rpki-client