Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.mft
File: ikHi8tFFLnxMwH2_p4OdWN9X8hg.mft (raw, json)
Hash identifier: S5o90BWGzVhkujXHyy69YzEmb9CI3o6wYaQoLHFEKn8=
Subject key identifier: 7C:8B:70:EC:77:94:D9:C9:8C:15:B9:DE:E6:EC:0B:C1:5E:24:9E:47
Authority key identifier: 8A:41:E2:F2:D1:45:2E:7C:4C:C0:7D:BF:A7:83:9D:58:DF:57:F2:18
Certificate issuer: /CN=8a41e2f2d1452e7c4cc07dbfa7839d58df57f218
Certificate serial: 019D38661E67753A1026E2538C201C375690
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ikHi8tFFLnxMwH2_p4OdWN9X8hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:01:49 +0000
Manifest this update: Sun 29 Mar 2026 07:01:49 +0000
Manifest next update: Mon 30 Mar 2026 07:01:49 +0000
Files and hashes: 1: ikHi8tFFLnxMwH2_p4OdWN9X8hg.crl (hash: ZyF9u4/LLv10OUARQtbl64/ohVsev9tLnirj5zDnuXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ikHi8tFFLnxMwH2_p4OdWN9X8hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1e:67:75:3a:10:26:e2:53:8c:20:1c:37:56:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a41e2f2d1452e7c4cc07dbfa7839d58df57f218
Validity
Not Before: Mar 29 07:01:49 2026 GMT
Not After : Mar 30 07:01:49 2026 GMT
Subject: CN=7c8b70ec7794d9c98c15b9dee6ec0bc15e249e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:12:a4:ea:a2:ce:26:02:b7:68:ff:8c:fc:8d:
5d:f2:00:2d:3d:b0:a9:83:19:c2:d4:e2:25:ec:f1:
e1:0c:8d:73:45:4e:24:6d:df:c7:f9:b1:d8:80:fb:
29:01:80:6a:89:12:cd:49:9a:65:3c:8c:21:c8:a0:
c7:1b:73:ac:e1:0d:44:e9:59:03:bb:a6:5e:25:ac:
aa:ba:c0:38:9e:6a:a5:ab:67:9c:fb:3a:93:d1:1e:
90:a1:7c:b4:a6:17:a5:ac:67:82:a1:a3:41:b9:39:
6d:d4:2b:f8:94:cf:5b:ed:e6:32:8e:c6:2c:1f:4e:
00:6d:7f:a8:53:a8:df:f6:0b:0c:ad:16:96:79:8b:
34:b9:8f:b1:86:67:be:aa:bc:fe:be:69:e7:7b:68:
df:52:27:89:bc:6a:c5:1d:60:46:c3:6a:c7:fc:07:
65:34:09:00:32:af:6a:4f:ad:f9:25:a8:a7:9f:27:
b6:a3:ea:24:3b:6a:c1:e6:3c:1c:55:a2:47:80:25:
de:73:a2:59:e7:08:89:da:2a:5c:5a:56:6a:ea:fe:
1a:b3:5f:37:d3:9a:83:13:c2:24:1f:72:37:88:e7:
13:e8:6a:10:c8:9e:45:17:22:63:f7:9d:e3:0d:d9:
bf:70:cd:4b:f6:05:30:71:74:ed:5e:d1:69:03:27:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8B:70:EC:77:94:D9:C9:8C:15:B9:DE:E6:EC:0B:C1:5E:24:9E:47
X509v3 Authority Key Identifier:
keyid:8A:41:E2:F2:D1:45:2E:7C:4C:C0:7D:BF:A7:83:9D:58:DF:57:F2:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ikHi8tFFLnxMwH2_p4OdWN9X8hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/bf69c4-d64a-4340-9bf1-364854cbc0e8/1/ikHi8tFFLnxMwH2_p4OdWN9X8hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:5a:60:16:8f:aa:cd:8d:9a:90:21:3a:c8:ae:d0:54:f6:27:
0e:98:f1:7f:ea:a4:f3:75:12:c4:56:00:27:a2:a3:85:90:e5:
53:10:32:d5:16:5d:57:d5:16:c6:c7:0f:99:3f:4e:af:9a:01:
12:32:df:26:fd:d3:08:5e:7c:51:82:29:11:65:4f:47:32:b3:
62:4b:d9:8d:20:01:7b:18:b8:c8:e3:2a:ed:57:28:4b:1b:1a:
f7:47:5f:6f:ff:c5:ba:46:8c:83:7c:98:01:7d:2c:87:e8:d6:
c6:c8:f8:48:51:0b:3d:2e:ca:f2:ba:57:e6:2d:a4:c9:ae:02:
f7:50:35:13:74:c6:c1:ef:07:0e:b7:98:8d:5f:1b:35:48:a9:
72:d0:9f:50:fa:04:04:58:ba:3b:e9:30:89:67:34:6a:15:96:
af:05:a4:bb:ed:52:ee:fc:0a:b6:07:71:17:f6:ff:aa:93:7e:
6e:ba:7a:5c:ea:ef:68:5a:92:c2:04:a9:c6:42:98:6a:80:86:
dd:4e:04:ff:c4:20:16:dd:b2:69:21:ed:63:53:79:3b:da:ab:
19:47:c7:ec:9d:3b:e7:ee:0f:61:5e:cb:77:3f:c1:5b:0c:78:
13:e6:b8:09:2a:ba:6b:79:79:ec:27:2c:bf:8b:b4:89:e3:a7:
5c:a1:ee:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:03:10 2026 by rpki-client