Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: LkaMWUF9okMMieKmlnWXn81Purfclm6R7pLV7dV0fwc=
Subject key identifier: 43:4C:A5:44:B8:F0:38:53:90:8C:7C:CA:36:EF:96:59:F9:3F:F4:DD
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 019DCFABB2AF187398189623C916296EE49C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 1912
Signing time: Mon 27 Apr 2026 16:00:29 +0000
Manifest this update: Mon 27 Apr 2026 16:00:29 +0000
Manifest next update: Tue 28 Apr 2026 16:00:29 +0000
Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: UF+nYc4I/bPPSY73+pjg6l24tHrzSM/sAKLwEfOlbvs=)
2: QiXcXG4EDIRSf-VSNpu4RHBWAV4.roa (hash: 0qXAcwhMmlvzkuMEiWShTeGZUNL6+ryDi7ehHbJ1xl8=)
3: Tar1g33LvZCdpcq_JVPYhAJSdEk.roa (hash: QMkYB+0q1+Lk5nvo2OLotb9QUYic5rNjwNkq1hEO+78=)
4: ixwpJztfYUlUnPQNZhnkMR7K_yU.roa (hash: McdR8UEnDJLQe/Y5De9k6/QzPqtdNiKRIqwLfpPLq6I=)
5: rPnkzMR46g2upeGLwnbyd0fXnb4.roa (hash: flmLV+/lWpi4M1ZIkwy5iom73MDu5dXcw9z52gR1sjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ab:b2:af:18:73:98:18:96:23:c9:16:29:6e:e4:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Apr 27 16:00:29 2026 GMT
Not After : Apr 28 16:00:29 2026 GMT
Subject: CN=434ca544b8f03853908c7cca36ef9659f93ff4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6d:05:30:5f:74:05:6d:eb:29:fd:53:3f:09:
ef:39:43:28:0f:6f:46:44:df:d2:cd:70:3d:17:4e:
5b:0c:98:34:fa:d7:d7:56:dc:32:49:04:ab:af:9f:
1c:1c:91:d1:31:a8:b8:b2:ae:94:34:af:64:36:02:
42:78:fa:1e:24:6b:81:f4:db:7a:6b:7d:d6:83:75:
18:30:59:00:3d:f9:b8:e4:de:b2:76:cf:82:14:8b:
81:8e:6e:b7:82:9a:19:27:02:04:1b:fb:d3:52:bf:
22:40:d9:8b:cf:bf:3d:6e:00:6e:79:0b:b8:ff:de:
d2:9d:49:59:a2:8d:50:80:f8:06:54:eb:d1:00:92:
9f:cc:99:39:96:91:dd:de:b4:49:73:71:9c:c7:eb:
97:22:3e:d0:d9:66:e0:30:7a:6e:16:8d:20:7b:96:
a7:df:83:ec:bf:9b:26:69:cf:44:c4:1f:f6:5e:fb:
88:f3:f0:9f:5f:c8:69:78:ad:9a:11:0e:1f:4e:14:
16:26:ce:87:67:a3:54:a7:4c:a0:40:d0:69:ab:2c:
65:92:c0:f1:4b:d2:99:89:4f:ba:b3:83:39:2c:0c:
17:28:e2:8c:2a:54:fe:f7:2d:ab:fe:98:61:92:ef:
71:be:76:6b:b7:f2:1f:15:29:33:75:13:1c:34:dd:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4C:A5:44:B8:F0:38:53:90:8C:7C:CA:36:EF:96:59:F9:3F:F4:DD
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:57:ae:4d:97:e6:74:24:e7:7c:d3:64:5c:4d:b8:f5:ab:67:
46:28:a4:59:7a:4c:37:ff:fe:cf:7c:ec:ad:99:73:4a:7a:8c:
72:5a:3d:38:88:e4:e2:99:6f:3f:a9:f9:32:fc:8c:9f:c1:0c:
77:b6:3a:71:74:b2:f2:3b:68:d1:75:3c:78:bb:03:70:68:d3:
a8:7c:8c:c2:1e:40:49:12:9b:4b:59:9f:92:61:8e:46:ff:44:
d1:86:96:7f:aa:05:97:ba:64:39:5e:79:ec:97:1d:5b:0b:7a:
4e:6e:e6:17:c5:60:85:d6:8a:a5:98:6c:a4:7d:3c:44:bb:fa:
7c:9e:43:23:5f:f0:71:93:8b:ef:27:e9:2b:3d:43:5e:45:4a:
b2:73:54:ca:6f:ee:d9:fc:87:bb:ff:38:17:d8:f6:cc:47:ee:
bc:48:bb:e9:ef:a1:b0:35:b8:65:4e:29:73:e0:fc:13:8a:cb:
ea:21:b3:dc:2f:72:ea:e3:4f:f5:5a:51:9a:16:4b:d6:52:f0:
a9:a0:b4:b6:45:a2:e8:83:68:c0:40:a5:d5:f3:63:f7:ba:07:
d0:e8:6d:5f:fa:b5:2b:18:58:e4:bd:85:9e:fd:e4:9f:4c:29:
fa:d1:13:7a:b8:3f:21:89:0a:92:ed:a9:56:ab:5c:bf:b7:5a:
ee:35:8e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:30:19 2026 by rpki-client