Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
File: iDa9j605PlExoCNykxWzVgFOZjc.mft (raw, json)
Hash identifier: 5TNduDEm75GUDqh7D9h/IilmsF7cvgm0spwu7Vaabjk=
Subject key identifier: A7:E3:FD:B1:44:BB:06:D3:35:F5:05:16:46:27:0B:BA:E6:F3:67:33
Authority key identifier: 88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
Certificate issuer: /CN=8836bd8fad393e5131a023729315b356014e6637
Certificate serial: 019D3789203611706CE7A589FB22A3E263D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 03:00:26 +0000
Manifest this update: Sun 29 Mar 2026 03:00:26 +0000
Manifest next update: Mon 30 Mar 2026 03:00:26 +0000
Files and hashes: 1: iDa9j605PlExoCNykxWzVgFOZjc.crl (hash: kNscZjs3GvZXXu95HCyAgQAe7H7Z+fqIUfZlNs+Hecg=)
2: mY4Ps2ODyoJOR0xKvF6KJHBSMik.roa (hash: UmvKuUUkINXoOW+jyUXuOgnlOY9eMq6JudtGUkNm/Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:20:36:11:70:6c:e7:a5:89:fb:22:a3:e2:63:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8836bd8fad393e5131a023729315b356014e6637
Validity
Not Before: Mar 29 03:00:26 2026 GMT
Not After : Mar 30 03:00:26 2026 GMT
Subject: CN=a7e3fdb144bb06d335f5051646270bbae6f36733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7d:cc:c7:bf:c2:15:4b:b3:26:5c:79:37:2c:
28:83:a2:74:78:24:d5:6a:60:76:c2:e4:5d:c9:8a:
0e:3d:7b:2a:38:a1:d2:fa:8f:64:ef:e8:4b:b6:67:
c4:e8:18:85:22:f4:96:3d:80:7e:46:20:eb:e4:ce:
74:28:54:92:38:d2:9b:44:54:0e:d3:a4:68:c1:87:
0f:cd:12:fa:d6:21:e6:f2:49:a5:7d:bf:a0:3b:a4:
2b:38:12:96:ab:a2:48:b8:03:ba:5f:68:d5:c0:de:
70:3b:7c:f9:fb:49:6b:1a:e3:11:96:03:d7:b2:0b:
df:1e:d2:20:99:be:0c:5a:36:54:bc:3c:2a:08:18:
98:10:c0:53:d1:46:a1:33:2f:a8:3f:bd:50:43:e8:
05:64:70:cd:2c:72:53:cc:d0:29:7f:db:dd:40:74:
42:77:c9:95:41:49:d5:18:ce:df:d2:39:d7:a2:a8:
9d:64:07:b9:0b:c5:1a:55:e0:c4:25:44:03:70:c6:
ea:39:e2:c4:8e:93:36:d1:0e:7d:62:7e:fc:8f:31:
3b:76:25:b4:30:62:91:28:d5:41:aa:d4:25:51:0d:
f4:d4:28:56:94:72:fb:f6:31:57:d6:67:cb:d9:9b:
08:b7:33:32:a5:d5:94:41:24:6f:f1:2b:d7:89:c9:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E3:FD:B1:44:BB:06:D3:35:F5:05:16:46:27:0B:BA:E6:F3:67:33
X509v3 Authority Key Identifier:
keyid:88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:20:2f:6a:44:d3:07:bf:ad:fa:b9:22:4a:72:5c:fc:09:5d:
c8:b8:d0:2e:d7:59:f1:b8:08:82:9f:81:a7:3c:d0:ae:51:e0:
b5:8d:de:a2:8a:a0:eb:c8:83:e5:a6:89:e1:9c:6c:9e:e0:a8:
34:e2:38:51:e5:2d:4b:02:48:cf:89:cf:e8:10:4f:4d:7d:87:
a9:82:26:e6:fc:5a:b6:67:ea:7d:0f:19:53:e8:40:5d:50:e2:
27:1a:5d:98:2c:ff:e4:17:c6:6f:d2:22:f1:04:0a:ac:49:3a:
18:a7:0c:ba:2a:b8:af:b4:44:e5:b7:07:bc:30:8b:e1:e7:43:
86:44:07:43:1a:d0:5c:49:cd:0f:d0:d2:96:10:f8:47:96:ba:
a8:81:d8:8f:f9:f1:0a:6a:cb:58:a7:ce:3f:d2:ad:02:b6:1b:
52:73:c5:dd:cd:0c:52:c8:8a:88:71:ad:e5:9c:6d:49:fc:c3:
b1:7c:b5:b8:6b:de:58:dc:4a:2c:23:a8:a4:6f:73:1f:89:4c:
bf:01:e4:4d:58:51:12:93:18:ed:61:0e:5f:8f:ca:33:f3:cd:
0a:f7:10:2f:ae:4e:3b:09:3f:d8:ff:6d:4c:ba:1e:cc:a7:26:
65:cb:8b:d6:08:30:d3:44:62:d9:31:1a:25:52:f3:14:96:eb:
ee:1b:68:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:21 2026 by rpki-client