Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier: TdcSa7KPwZftGgZ4g8saRCV1Xit84bjwr9mptUbsdgE=
Subject key identifier: 39:1D:90:24:FD:01:22:BC:83:49:84:FB:1B:3A:99:2E:27:3E:0A:D5
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 019D390A4F24838891E248C300A2BC0F5024
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:01:09 +0000
Manifest this update: Sun 29 Mar 2026 10:01:09 +0000
Manifest next update: Mon 30 Mar 2026 10:01:09 +0000
Files and hashes: 1: XCD8aXlAzGnzxXRVOLV38VoENzs.roa (hash: nXyOSXVfXWMbU4dphXnH7dDUeGh2mNE9IwSEdv2yiZs=)
2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: VMoYxXBr6LiwzASE/10OTX+e24jv8Nd3ICllMV358H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:4f:24:83:88:91:e2:48:c3:00:a2:bc:0f:50:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Mar 29 10:01:09 2026 GMT
Not After : Mar 30 10:01:09 2026 GMT
Subject: CN=391d9024fd0122bc834984fb1b3a992e273e0ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:2d:bc:45:3f:8f:79:9b:25:ff:b4:95:57:
90:7c:c7:21:34:19:c8:1c:68:a8:19:71:93:25:9d:
cb:ad:cd:90:58:73:88:c9:76:eb:e5:bc:aa:13:91:
8e:43:ba:af:5a:fe:33:19:2b:55:c7:6e:c2:96:3b:
6a:82:c5:42:6b:f9:88:6c:e4:f5:59:7d:21:d7:11:
16:e4:78:09:b5:80:b7:d2:69:4f:64:01:12:f1:e8:
29:7c:b5:c5:5c:1c:ef:eb:7c:dd:93:93:db:64:54:
78:84:41:53:f3:14:36:55:f8:8e:f8:80:84:c3:e6:
da:5b:a7:d0:91:73:94:dc:25:c5:69:ea:26:61:76:
6a:78:09:8d:ae:c3:0d:7d:da:89:ed:47:1b:f3:39:
84:b5:e5:60:b5:0b:8d:a8:bb:5b:2d:db:9e:23:c4:
97:86:92:0e:f9:b4:1b:0e:13:f9:49:67:f7:e5:ac:
c3:a7:65:f9:45:19:79:36:47:98:e4:05:14:c8:28:
97:a6:0e:ed:1b:a0:66:14:42:43:3a:5d:2d:ae:f5:
32:41:8b:70:58:70:7c:db:98:59:4a:03:25:a5:27:
f6:a0:76:f6:bc:21:25:52:43:83:0d:5a:75:72:54:
df:a6:42:99:b5:cd:db:da:d0:89:1b:01:33:2d:fd:
d4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1D:90:24:FD:01:22:BC:83:49:84:FB:1B:3A:99:2E:27:3E:0A:D5
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:4c:b7:7b:25:2f:3c:31:28:06:61:72:15:9c:e5:4c:61:25:
14:c2:25:65:f3:99:d2:d5:7c:e2:98:68:6b:5a:a8:b9:76:a7:
8a:00:7d:41:da:e2:2a:08:99:a1:11:cc:c1:b2:1f:eb:9b:05:
89:24:cd:51:f5:3b:39:b6:8d:e1:2c:d6:02:9e:f7:6b:4d:39:
12:13:12:73:e8:2e:56:79:ba:99:54:b7:17:b5:0f:14:2f:e0:
d6:9a:02:d3:a8:bd:71:3e:a1:ad:6a:6c:82:1e:f4:66:f4:09:
0e:0f:f2:d6:ec:dc:ce:57:ad:44:f5:55:0a:ea:4e:fb:f3:3b:
26:b7:c5:41:96:0d:d6:99:17:df:a6:c0:18:8e:dc:47:d4:66:
b2:dd:5a:b4:7c:37:42:7c:52:af:17:d8:09:ff:f6:17:75:2c:
9d:77:8a:a4:22:3c:cc:c1:6b:0a:d7:ac:23:df:b2:81:e1:8f:
f9:60:af:ba:a7:4a:9b:53:78:44:13:91:16:18:fc:d1:55:54:
bd:cc:11:8c:37:f7:ca:b2:ab:79:03:11:5b:ed:ec:49:39:48:
8a:3d:9d:89:f8:1c:b1:fa:f7:e4:e8:78:86:85:ec:49:ba:3d:
0c:86:0b:2a:de:09:da:7e:d9:c2:eb:a0:3b:3f:7e:84:ca:f4:
00:5f:e2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:39 2026 by rpki-client