Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
File: I8Aq9PWPETIK8xlpRuH86dBQyQY.mft (raw, json)
Hash identifier: 9jQzFfwbWtl7FFw2gWcl9990hGRjIqImphD9lLDzmY8=
Subject key identifier: B3:57:64:0F:F1:A0:40:CB:B4:AB:2A:B5:CD:A7:C2:60:68:38:9A:C8
Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906
Certificate serial: 019D37C0E9A074B54A92A39CFB2C3064529F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 04:01:22 +0000
Manifest this update: Sun 29 Mar 2026 04:01:22 +0000
Manifest next update: Mon 30 Mar 2026 04:01:22 +0000
Files and hashes: 1: 1QjvKCsvTR0ccDdXAfoDfJPSyJE.roa (hash: qPTH0R4OHCDFXj8DShsOufuFq2W68jfp5X6XHwRILiE=)
2: I8Aq9PWPETIK8xlpRuH86dBQyQY.crl (hash: 6b+ai9iTlcyyiFNDRdKrvNlPVntDILLdbHXWbsBsWlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:e9:a0:74:b5:4a:92:a3:9c:fb:2c:30:64:52:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906
Validity
Not Before: Mar 29 04:01:22 2026 GMT
Not After : Mar 30 04:01:22 2026 GMT
Subject: CN=b357640ff1a040cbb4ab2ab5cda7c26068389ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:9f:6a:4a:53:01:4d:50:6f:d1:bc:9e:51:
55:8c:5f:42:33:9d:b6:0a:c9:d2:2b:06:cb:b8:70:
85:48:af:1a:cc:0d:b1:ce:b3:8a:2d:5f:32:54:13:
00:47:42:f1:12:19:80:75:c4:fd:e8:d1:45:60:36:
3d:7a:43:43:83:b6:fe:6d:53:3b:7d:58:72:b2:d5:
6a:b2:b6:46:fa:e6:13:f2:99:92:6d:7d:b5:15:af:
60:b6:f5:c1:b5:dd:e1:23:cc:3e:e3:2d:7c:6c:d5:
94:84:89:83:bc:de:94:0c:56:76:0e:c1:f4:e8:db:
5a:a1:fc:86:d0:5d:c6:47:bc:dd:60:3b:27:c8:b7:
72:c4:e1:5b:b0:7c:3f:a9:0c:34:8b:b6:27:ec:82:
86:e7:63:20:3b:78:44:fd:e4:98:ab:12:d2:40:8a:
1e:44:40:9b:1f:4b:76:c5:d6:c7:a7:51:53:e7:6d:
bd:ac:c9:d9:5d:ae:5e:e4:a4:02:67:c8:0c:8b:5d:
5e:9d:ec:81:38:7e:d3:fb:82:7b:0f:ce:7c:23:14:
16:9f:f6:ea:bc:89:dd:c0:2e:08:3f:ab:70:8b:60:
5f:01:e6:06:f3:61:63:66:9a:0b:6e:91:2b:b0:4c:
69:0a:72:bf:02:ef:9b:4a:29:fa:64:9f:0a:0f:71:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:57:64:0F:F1:A0:40:CB:B4:AB:2A:B5:CD:A7:C2:60:68:38:9A:C8
X509v3 Authority Key Identifier:
keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ec:44:81:c2:28:23:ab:28:7b:84:82:33:1e:18:0f:fa:f1:
dd:aa:b8:b2:d3:73:d2:f4:51:57:5d:57:61:39:39:ec:1e:02:
c1:89:36:bb:40:5a:82:57:0c:ec:2a:39:9c:87:21:c4:b0:3b:
07:0a:4b:c7:1f:3b:61:be:96:bc:94:fd:8c:d2:03:19:04:70:
2d:3a:5d:c7:aa:b5:d6:f8:5d:97:f7:c5:c8:19:48:be:94:2d:
95:c5:20:05:6a:d8:26:80:61:17:b5:ad:48:77:db:7e:f0:a8:
ef:eb:b0:71:a9:f0:8a:5d:bf:17:44:25:c0:37:f8:87:0c:f2:
db:8e:87:c1:a7:38:b9:27:d3:a0:f0:75:49:dd:60:db:42:fa:
97:00:56:ea:42:43:b5:06:bf:31:d9:9b:68:67:ac:a7:07:8d:
0f:e4:ec:ff:87:e0:e5:4b:d6:ea:00:ea:a6:4e:4b:6e:39:fd:
34:f2:9b:f7:60:5b:85:95:97:9b:b0:0c:57:42:90:3b:e4:e6:
ad:4e:0f:fa:f3:7d:95:bb:1a:88:d5:26:00:53:d3:97:5e:c3:
5f:7c:68:57:17:ac:18:f3:2b:3f:16:6b:54:c6:98:64:ef:05:
4a:44:e1:6b:78:4a:42:43:0c:ec:92:7e:fa:77:e5:05:ce:76:
7f:39:47:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:23 2026 by rpki-client