Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
File: IwQieKfGvGylbuevokosgfPcvvs.mft (raw, json)
Hash identifier: om+A/ndPgCXPnu7JWxRmaRYaRoa3vlhaCmuMPMXd16A=
Subject key identifier: B7:32:78:E9:DA:DF:4B:A7:6B:D8:DC:74:B9:F4:27:40:29:7E:FC:95
Authority key identifier: 23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
Certificate issuer: /CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Certificate serial: 019D375266AEE17344A851F3A15FF70AAA79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
Manifest number: 0241
Signing time: Sun 29 Mar 2026 02:00:40 +0000
Manifest this update: Sun 29 Mar 2026 02:00:40 +0000
Manifest next update: Mon 30 Mar 2026 02:00:40 +0000
Files and hashes: 1: IwQieKfGvGylbuevokosgfPcvvs.crl (hash: qy9dvoG8DVdMbpO2KQPYJCfYYtBhdjCNeR7Z4kZnY58=)
2: bbIN0Dzg266kgD3gaOLxYwDdIGk.roa (hash: UrKnfGvjgujZo+TnNEkx5AvYr9F7seRK/OurdxNlQvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:66:ae:e1:73:44:a8:51:f3:a1:5f:f7:0a:aa:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Validity
Not Before: Mar 29 02:00:40 2026 GMT
Not After : Mar 30 02:00:40 2026 GMT
Subject: CN=b73278e9dadf4ba76bd8dc74b9f42740297efc95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f7:75:16:cc:74:95:43:fb:57:8f:d3:6d:42:
24:81:a0:ea:e6:af:11:94:ae:4b:90:d0:36:d9:fa:
d7:7e:4b:e6:50:d3:22:9f:e8:98:a8:d1:4e:d3:d7:
d5:8c:35:e5:08:0f:57:fe:82:fa:f9:5b:38:41:c1:
d9:84:cc:c4:32:02:c5:1a:bd:bf:42:ef:df:41:d0:
d8:94:c9:11:8b:94:8c:83:43:30:06:de:c3:61:ba:
f5:aa:c1:96:8f:d6:ae:e0:18:cb:18:13:a5:e0:29:
51:6c:94:f5:88:83:5e:d1:ca:f2:cb:0b:78:b6:a2:
e8:b6:b9:56:f1:fe:da:0e:1f:9e:02:6b:89:16:5e:
38:a5:95:f8:a0:8e:46:ac:35:67:f5:66:70:2c:81:
07:4f:bb:26:b0:14:5a:4a:70:80:bb:2b:89:c8:82:
6f:92:3b:2f:1e:2f:90:4a:91:38:31:ab:a4:05:1f:
50:1c:75:0f:fa:48:a1:c0:2d:bb:db:3d:f2:eb:fb:
db:8f:59:99:d3:b7:8a:ae:ac:55:45:bd:1c:f7:9c:
d7:3a:54:78:72:7c:7b:af:ca:29:55:9f:b6:c2:de:
c9:88:27:25:41:04:9d:a7:c7:0d:28:4b:4b:6d:86:
4f:ba:52:95:22:a7:c8:2a:33:b5:bc:0b:7c:a3:37:
31:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:32:78:E9:DA:DF:4B:A7:6B:D8:DC:74:B9:F4:27:40:29:7E:FC:95
X509v3 Authority Key Identifier:
keyid:23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:af:78:10:03:d7:a8:c6:32:30:94:53:28:88:6a:b4:55:cf:
27:df:5a:5f:6a:be:6b:20:ef:a6:dc:82:79:e0:7d:fc:5a:df:
a3:ed:23:5a:84:26:cc:46:79:dd:dd:5d:28:9e:ab:53:0e:c0:
9f:80:23:2e:ff:f3:8d:fd:02:10:91:23:0d:a0:22:f0:e7:53:
6f:f1:2e:88:60:e6:25:5c:dd:23:81:22:46:ea:43:74:68:9b:
c6:12:59:b9:95:63:88:69:c5:2d:b3:7d:5d:69:10:1e:4b:ab:
09:9a:88:cb:80:8c:7a:a6:dc:ba:51:90:db:d7:1c:ab:a8:83:
b5:ed:8b:a8:05:01:46:9f:eb:64:39:ec:a3:0e:5c:f6:3e:a5:
ef:d7:22:e7:cb:7b:ed:cb:4b:07:25:05:ca:ec:27:72:9c:81:
71:1d:ae:f9:c5:23:33:25:f1:c9:c0:67:6c:36:58:fc:41:0a:
e9:b4:1c:2d:ce:48:3c:e7:45:31:41:8d:19:8f:b5:15:a1:c9:
ee:e8:38:28:a0:7c:cf:41:bf:10:2f:75:24:ad:2b:3d:7e:82:
09:ef:e4:f6:cd:dc:08:e5:b1:a7:32:61:13:d6:fe:b4:06:81:
bc:9a:bd:c1:19:ba:cd:16:05:6c:a7:33:bc:d6:55:70:b6:b3:
36:d0:75:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:51 2026 by rpki-client