Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File: Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier: EQ+G0QfW4GJMr4DoR9uR8y41y0DaIGEg16mQmfBYflk=
Subject key identifier: B2:3E:13:A6:01:B8:C4:BE:98:9D:17:76:88:44:BC:05:08:B0:3B:B9
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer: /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial: 019D37894F877B59DD03E30495DAFA56BB27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number: 0474
Signing time: Sun 29 Mar 2026 03:00:38 +0000
Manifest this update: Sun 29 Mar 2026 03:00:38 +0000
Manifest next update: Mon 30 Mar 2026 03:00:38 +0000
Files and hashes: 1: 25oZjtsXGt-n2WY2ltVfz0hHWzE.asa (hash: cAJ1A4GbTa/DjrR5J7Hx50xOdea/6PB89hhjqA5MTnI=)
2: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: 23IdGTdy9xDwQ3TLbMJuvSZA1eNuishrwy1dc7WXtJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:4f:87:7b:59:dd:03:e3:04:95:da:fa:56:bb:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Validity
Not Before: Mar 29 03:00:38 2026 GMT
Not After : Mar 30 03:00:38 2026 GMT
Subject: CN=b23e13a601b8c4be989d17768844bc0508b03bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:00:96:e2:4b:44:87:30:3d:24:ea:7e:7f:45:
ba:a5:ef:8c:00:65:0b:26:12:f6:a6:ab:c7:0e:d9:
d4:04:5a:c1:bd:e6:22:d2:3e:ab:1a:e9:9b:06:ea:
83:10:01:78:bb:ca:6e:e6:a6:98:a4:9d:87:c1:a6:
46:b9:01:ed:ff:91:bb:2b:df:a9:de:55:82:93:0d:
91:04:4a:fb:60:ce:cc:24:04:bb:13:cb:a3:40:d5:
c5:85:9f:9d:80:19:c5:2f:86:c8:f0:c7:72:3d:ac:
a8:39:ff:d6:bd:66:ba:10:b9:25:17:8c:01:52:9d:
67:30:31:9b:1e:4e:c7:ee:7b:ed:73:83:2e:f4:11:
27:3e:49:38:51:1c:07:65:28:0e:8c:1b:35:89:d7:
a7:3e:17:51:bf:46:36:be:00:d0:2c:a9:e2:a5:21:
35:da:c9:75:f0:a1:44:2a:03:8c:3c:72:87:b1:e0:
b6:e0:d5:c2:52:85:2e:27:fc:c5:8e:44:27:67:9f:
75:39:37:46:16:d2:60:48:a3:30:45:d2:ce:03:60:
18:3e:d6:da:38:65:15:98:de:89:59:cf:68:07:9f:
5f:39:b3:72:fe:a3:a9:49:c7:bb:48:35:ba:a3:7a:
76:0c:fb:74:f7:90:a8:1b:d3:f3:12:69:22:18:35:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:3E:13:A6:01:B8:C4:BE:98:9D:17:76:88:44:BC:05:08:B0:3B:B9
X509v3 Authority Key Identifier:
keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:15:dc:27:fa:b2:e7:db:74:b8:98:50:7b:2f:6d:68:07:2d:
ef:0b:0a:96:5d:1d:4b:7b:30:6f:fe:a8:ba:34:e4:aa:37:fd:
ad:c8:ab:b8:0f:65:ad:ad:63:52:44:e9:e3:56:08:09:04:4a:
cd:03:13:d2:2c:f8:73:5d:0d:0f:6d:c1:70:30:2f:53:d4:9f:
d7:ae:88:22:03:b5:d6:7f:a7:ea:db:7d:fd:e9:48:af:cc:02:
78:57:17:87:94:b5:59:9f:2f:57:74:20:a4:b9:3e:05:ad:27:
92:73:15:0a:66:21:db:2c:b8:5b:6a:9d:fa:05:5c:71:a7:78:
7f:a4:d8:ff:40:d1:c3:bb:a6:3c:c7:82:b7:a9:95:4b:d2:e5:
0b:25:a5:09:ef:6a:cd:0c:35:b0:4d:da:7c:1c:2e:41:12:57:
5a:ee:88:07:b2:c6:f0:82:c4:71:cd:7e:41:0b:bf:63:71:e6:
36:d9:12:b1:7b:9f:86:78:c0:c9:0c:a9:42:dc:e4:a0:aa:e3:
ff:17:99:0c:50:4c:5f:fe:93:0c:51:33:2f:da:34:2f:14:b4:
55:72:42:fa:e2:8a:1e:b5:dd:e0:30:bb:95:43:e7:84:57:4b:
50:ff:4a:ed:20:d3:85:bc:08:77:0d:90:0a:17:7e:2d:79:35:
a4:d8:7b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:20 2026 by rpki-client