Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: GOkm8uLI7fLG6b3/Tym8aqCn5hclsoABkLJNbNxEBKc=
Subject key identifier: 3A:60:40:75:90:C1:5C:BB:0F:38:2B:5F:82:FE:2A:15:2E:27:FA:A9
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 019D394085C855409548DFA587E7AA193113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 11:00:22 +0000
Manifest this update: Sun 29 Mar 2026 11:00:22 +0000
Manifest next update: Mon 30 Mar 2026 11:00:22 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: byAGZ4sEKoUglnueQ+E7FEv0x3GzQhCqhx8/ziAvMAE=)
2: zYkjl96qhuSKPjhR9FJ_SMLo0wo.roa (hash: 6MFml2JMis3B7T1zy1tlmB3r3uzT/y8AN0S/oyRhlxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:85:c8:55:40:95:48:df:a5:87:e7:aa:19:31:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Mar 29 11:00:22 2026 GMT
Not After : Mar 30 11:00:22 2026 GMT
Subject: CN=3a60407590c15cbb0f382b5f82fe2a152e27faa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:fb:f4:0a:9b:e5:c1:58:c7:56:61:93:2b:
55:77:00:b1:36:47:74:18:32:de:42:84:0a:c9:6b:
86:ad:96:7c:37:95:81:2a:4d:e2:f5:1f:3a:b9:dc:
29:22:01:af:17:2a:a4:02:3d:e7:3c:75:c6:2a:f0:
be:d7:a1:6e:85:48:13:75:0d:04:15:23:9e:25:ce:
f8:76:08:32:c1:66:9f:cc:91:28:b2:d2:b1:06:3d:
4f:8c:00:2d:ab:3b:24:e6:a7:e0:2d:e0:fe:18:f2:
01:72:0a:a0:29:e7:42:19:96:60:0a:c8:80:1f:e4:
d5:eb:2f:9d:05:c4:4d:11:67:f4:88:be:db:27:be:
8b:35:c7:80:19:61:58:07:fc:43:12:1a:fd:e0:75:
88:5f:df:ff:47:9d:c5:3d:4d:1a:6b:31:25:02:df:
20:f7:f9:33:d0:34:48:bd:2b:35:29:66:11:88:87:
86:af:6c:9e:06:ed:1e:df:35:29:ff:77:9d:65:76:
b1:d8:3a:e6:59:46:b6:7d:68:d6:18:d0:c1:34:73:
b4:1d:76:55:5f:47:24:f5:d4:52:ea:d6:6b:3a:07:
b3:a4:d4:aa:92:45:a2:fb:4f:db:d0:c8:ac:8f:8c:
0c:0e:c3:fe:13:80:63:34:f9:8b:b8:49:4c:fd:e6:
d5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:60:40:75:90:C1:5C:BB:0F:38:2B:5F:82:FE:2A:15:2E:27:FA:A9
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:2f:19:03:c9:66:16:34:05:bd:4e:32:c0:da:03:7e:8a:2a:
5c:57:c9:00:23:00:4f:37:73:cb:12:c3:22:ae:f1:48:83:61:
c6:bf:91:dc:12:09:b2:92:44:63:d8:49:7b:ee:fa:45:ff:bd:
d9:3e:50:48:df:6d:f3:cf:e0:48:34:21:6d:3b:76:b7:f1:c4:
92:c1:c1:67:28:66:04:27:6c:73:c9:04:27:e0:77:f5:6f:fa:
17:0a:de:9d:dc:a0:fb:0e:32:cf:36:7e:c2:eb:f9:d6:de:98:
0e:76:71:5e:b1:f0:29:61:aa:d2:75:06:f8:5f:d7:62:06:2d:
9a:4a:2c:a4:ed:bb:1f:6a:44:21:80:f2:a5:f2:d5:66:6f:61:
ea:7c:b2:1f:97:bf:e7:cf:53:9d:79:c3:e8:b1:cd:ca:9e:98:
9f:41:7e:e8:87:53:fa:d1:e4:f0:12:c1:2c:15:7d:15:a7:e2:
90:b7:47:c9:2e:68:31:00:ac:7c:10:d9:50:42:30:58:eb:be:
9d:05:d4:c2:11:89:3f:0b:c8:b1:8c:c1:8f:01:1d:40:46:35:
84:40:88:d9:28:09:99:9f:05:8f:43:a2:00:71:f2:9e:13:2e:
78:07:f9:c6:3e:d5:b7:2e:ef:8c:0e:18:39:04:16:ad:43:d3:
96:b8:d7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:10 2026 by rpki-client