Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: dszPzk5YGBg7h9TAeEimGwLmoldCxZIayu08mtyEHJI=
Subject key identifier: DE:BE:DE:9B:91:35:A9:10:B2:0A:AF:98:65:1D:EE:B9:0C:75:95:72
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 019D2884832ADE4A16D817E616D1FD3DF7EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 15AA
Signing time: Thu 26 Mar 2026 05:01:05 +0000
Manifest this update: Thu 26 Mar 2026 05:01:05 +0000
Manifest next update: Fri 27 Mar 2026 05:01:05 +0000
Files and hashes: 1: DoG1nIvAyF6Ofk7B7oBXD9fCbWY.roa (hash: 9biYSv6POYCwfleLHgkM4hjjkLE1P6h07qcPCt2vZ8Q=)
2: Ku186Y-Tu0woDCZbFinpqq7ZdFE.roa (hash: v4Tz8TXIdty6/ZjbJ1ivX2W0EU7wX33Cwf/C7mVCK74=)
3: _yFrTYVVOzem6SAvOPOzP_wE_MM.roa (hash: 5prdT05UIi7fhKfl8B0EiaHRzoodJuHLB7r7onONbos=)
4: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: hL4oi42Bjz1CtrSns1Yr7x2lXWjO8IaBciRuU6S4nG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:83:2a:de:4a:16:d8:17:e6:16:d1:fd:3d:f7:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Mar 26 05:01:05 2026 GMT
Not After : Mar 27 05:01:05 2026 GMT
Subject: CN=debede9b9135a910b20aaf98651deeb90c759572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:dd:d1:0a:b0:92:66:7a:71:7a:4b:2a:6e:13:
bb:d6:e8:86:ed:51:29:ca:d0:2e:17:40:1d:8e:0f:
12:53:70:30:32:14:a6:a9:1a:1b:64:07:90:0c:cb:
a4:4b:ec:51:5d:22:fc:7f:fc:43:e7:ff:91:df:4a:
db:79:01:3d:86:be:d5:02:81:bc:d1:48:40:00:fb:
a1:f7:3e:f5:93:dc:f8:9f:2d:e9:f8:32:32:d5:bc:
b3:7c:37:97:01:3e:91:12:6c:35:7f:10:a5:96:f3:
f9:bc:3d:2e:8d:6e:4a:08:d0:f0:03:1d:09:4e:34:
ae:11:bd:0d:c3:dd:1b:92:f5:b7:33:31:58:87:9b:
33:3f:d2:4d:3b:c0:63:56:60:2a:ce:29:d9:ea:8f:
c2:cc:c8:aa:07:c2:7d:3b:4b:4c:fc:d1:1d:86:64:
e0:00:c6:93:d8:e6:00:dd:0d:2b:69:26:f7:43:f5:
f3:9d:ea:df:3d:78:42:87:25:b7:5b:e0:b4:90:45:
46:1c:de:23:4e:c1:a5:b4:0e:76:21:8d:c1:bd:26:
c0:3f:41:2b:9d:90:94:69:bd:91:4f:27:75:c5:57:
a2:71:d3:90:6a:df:31:d4:f2:53:ec:35:c7:a9:e5:
6b:f5:57:5f:9c:1f:35:d5:dc:c2:93:90:78:72:6b:
8c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BE:DE:9B:91:35:A9:10:B2:0A:AF:98:65:1D:EE:B9:0C:75:95:72
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:7a:f7:92:e0:8b:fa:44:ab:a3:87:de:39:42:8f:aa:d3:2c:
b4:9b:25:72:3c:ad:ce:d9:3a:5e:bd:39:88:45:d1:25:7f:4e:
90:e6:ed:a7:94:27:fd:51:f5:55:44:23:71:8a:a2:ae:45:b1:
d6:bd:d7:8e:e7:db:b2:6e:ac:33:05:ea:6d:ec:de:e7:a6:27:
4b:23:e6:1b:89:22:a5:ee:1f:0f:4d:ad:12:ba:70:09:92:bc:
2d:b7:f3:49:59:95:b9:63:70:d9:95:3f:c7:e6:8f:c7:5c:11:
cb:d6:e8:a1:1c:19:9f:47:c3:44:80:99:5e:87:39:8e:e6:a0:
ac:32:26:bf:f0:04:3b:f2:a1:fe:81:69:0f:e3:07:c9:f2:53:
23:32:8d:d5:54:77:17:c2:66:80:a8:c4:b7:e1:77:02:ba:62:
fd:4e:d0:75:3f:db:cb:fb:37:1a:9d:66:fc:a4:60:e0:80:27:
bd:d6:d8:18:52:30:38:d1:f9:35:ab:e8:78:7a:58:0a:fd:19:
24:ec:6c:44:e8:ee:01:c6:32:1b:ba:54:ac:13:a9:eb:64:08:
d1:8a:2c:5a:04:bc:2d:0c:11:ea:69:29:bd:24:a1:1b:c8:5f:
e1:9a:2d:ad:22:59:a6:5b:7a:9f:2b:80:fe:eb:6c:89:1f:6d:
b2:fd:95:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:28:59 2026 by rpki-client