Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: 6vEEt+K+GqlMjnHAgQ0wXVUzBMGJeRCaGyFHWLHX3Kc=
Subject key identifier: ED:3C:B5:D8:13:FC:5D:37:72:A3:59:FA:8C:C7:D9:3B:3A:A2:11:B1
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 019D37F6EAB5AA52691364E1BE6836611CBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 0750
Signing time: Sun 29 Mar 2026 05:00:21 +0000
Manifest this update: Sun 29 Mar 2026 05:00:21 +0000
Manifest next update: Mon 30 Mar 2026 05:00:21 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: GHa2T8NDb61Zmo3KeMtNAL1XKhMaTLsXfZ9Ni7+8jCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:ea:b5:aa:52:69:13:64:e1:be:68:36:61:1c:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Mar 29 05:00:21 2026 GMT
Not After : Mar 30 05:00:21 2026 GMT
Subject: CN=ed3cb5d813fc5d3772a359fa8cc7d93b3aa211b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8a:37:c9:ec:e9:90:61:b3:40:e2:75:f5:39:
62:94:a7:70:92:0d:35:86:3c:0a:ec:8b:f8:6c:9f:
6a:67:87:e5:63:83:ff:ed:56:2d:95:cc:19:8e:b2:
57:bb:ce:d5:2b:06:0a:b9:95:11:d5:2c:dc:c2:09:
b4:fd:1a:17:a6:48:3c:e6:56:6a:66:bd:7d:4c:ba:
84:ec:94:2f:38:e9:66:4d:e9:ea:85:1f:e2:6d:3d:
c6:b3:6b:ac:d8:ec:53:30:b8:0f:85:31:a3:a8:3a:
1a:08:39:a8:1c:f2:42:2a:1e:0c:17:9b:70:c0:76:
98:fa:eb:3b:7c:6a:fa:08:b9:72:97:8f:8e:c0:1d:
39:ba:28:8b:0c:b7:f6:9e:70:94:b2:62:56:ad:08:
9e:d4:80:c0:5b:b1:cb:82:b3:e6:4c:cb:2b:ce:88:
7b:02:01:8b:95:f2:90:4b:ff:38:50:f1:5b:72:7f:
2d:48:c2:c9:8b:36:74:8e:24:aa:24:da:32:12:72:
2b:f6:7a:40:99:85:e9:2b:55:0c:2f:91:98:16:cd:
59:1a:68:68:f1:2e:3f:84:5c:8e:bf:af:00:04:99:
0d:dd:4c:3c:a3:8c:97:c3:a2:1e:3d:65:21:e3:f2:
d4:f1:1d:d4:c0:45:dc:eb:52:48:29:0b:b6:51:30:
c0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3C:B5:D8:13:FC:5D:37:72:A3:59:FA:8C:C7:D9:3B:3A:A2:11:B1
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:1d:9a:ee:f1:93:a6:21:23:02:d0:a0:53:2f:5e:0e:b0:e6:
f9:65:42:c5:9d:98:1e:84:78:b7:72:ca:86:5b:e8:08:d1:e1:
94:5f:e9:11:d5:ce:2c:1b:77:c3:b8:9e:4d:b2:73:0f:43:a8:
d8:d1:d9:d0:eb:91:b9:3d:0c:90:b5:e4:ec:d7:60:e7:21:61:
57:25:e6:a1:36:a4:0e:59:b9:da:b8:66:7a:e4:fc:03:57:db:
20:d4:96:4a:2c:11:d6:02:5d:6e:33:59:09:7a:e2:ec:bb:07:
77:e3:5b:25:5c:f6:be:a6:87:6c:db:10:1f:32:db:ce:40:7d:
62:85:a1:db:81:5c:e3:c8:9c:c5:2f:24:db:0f:8e:3a:1e:56:
91:c7:a5:32:ec:ba:bd:c9:6b:d8:ef:23:71:4a:d4:a7:14:38:
5f:ce:27:70:fb:8f:3d:72:55:42:ff:a7:fe:c8:3d:0a:84:d4:
2a:a9:0b:e2:6b:25:df:38:1a:7c:23:6f:ef:4d:b2:6d:ab:49:
7a:1b:e7:5c:35:b1:86:fe:43:07:73:0a:a2:67:b7:97:1b:5e:
f3:e3:17:0f:52:c9:9c:32:5b:5f:73:0e:b5:e9:a5:d7:65:c7:
24:b2:33:a8:81:c4:e2:7c:35:ee:5a:83:ee:ab:54:e9:9a:73:
19:7e:57:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:47 2026 by rpki-client