Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
File: IClZ7xuVPXmKoPVkMafxG2vhltY.mft (raw, json)
Hash identifier: 4EkGIAFa6yC7eiFLZQRNJhuYskU6JWxVk43PQietHWQ=
Subject key identifier: EB:FC:D2:69:7F:F5:53:57:F0:6A:49:9D:92:C3:3C:AD:E4:79:45:C7
Authority key identifier: 20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6
Certificate issuer: /CN=202959ef1b953d798aa0f56431a7f11b6be196d6
Certificate serial: 019D25F0F2312436B5E526427C27A79A1FEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
Manifest number: 147E
Signing time: Wed 25 Mar 2026 17:00:40 +0000
Manifest this update: Wed 25 Mar 2026 17:00:40 +0000
Manifest next update: Thu 26 Mar 2026 17:00:40 +0000
Files and hashes: 1: IClZ7xuVPXmKoPVkMafxG2vhltY.crl (hash: F7EHooQ+E5rakuKn53O3poME9/SCA/XGrU7bqBc4zqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f0:f2:31:24:36:b5:e5:26:42:7c:27:a7:9a:1f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202959ef1b953d798aa0f56431a7f11b6be196d6
Validity
Not Before: Mar 25 17:00:40 2026 GMT
Not After : Mar 26 17:00:40 2026 GMT
Subject: CN=ebfcd2697ff55357f06a499d92c33cade47945c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:79:91:7f:1d:ca:b8:e9:1d:2f:31:e0:c9:8a:
0a:e8:21:ae:df:8e:cf:a0:10:bf:51:d8:74:c7:73:
e6:14:d0:9b:b5:cb:b4:2f:82:8c:9d:d8:e3:ca:3e:
61:18:1b:4c:88:f2:28:e8:7d:a7:5b:b4:83:b0:12:
09:9b:a4:df:0d:df:4d:23:82:f5:49:c3:b1:44:e3:
7c:59:d8:32:3e:0a:97:ac:d5:77:79:f8:8c:00:c0:
cd:84:5f:0c:18:ca:3e:6a:b8:0c:54:02:c8:dc:11:
68:d5:85:81:87:b2:4c:16:d8:5d:cf:19:8a:7e:7e:
2c:d9:3d:21:cb:a2:37:88:b4:d3:db:c1:ff:fd:3b:
b1:ee:f0:b4:bf:ac:7d:90:ba:42:49:28:d6:97:5e:
54:91:13:b1:ea:a9:8f:fa:5c:ec:23:26:03:06:26:
f1:62:74:80:2a:3b:91:26:da:93:2e:0b:30:e6:5b:
53:b1:32:32:58:10:a8:be:e9:f6:6e:6d:0e:5f:4f:
e9:c5:93:7d:10:1d:3f:ed:79:49:2b:a1:5a:9b:3a:
8f:0a:92:f1:f4:b6:af:1c:fd:42:5b:8c:3a:ea:40:
73:fc:48:ee:e7:9f:06:3f:37:05:ac:5a:d1:22:c6:
f3:d7:a3:af:1f:4f:93:66:55:9d:d0:2b:74:a9:01:
61:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FC:D2:69:7F:F5:53:57:F0:6A:49:9D:92:C3:3C:AD:E4:79:45:C7
X509v3 Authority Key Identifier:
keyid:20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:58:ff:0a:ea:c1:0a:38:3a:ef:9a:81:ff:19:30:d8:db:7c:
79:10:a8:c3:1a:42:0b:97:01:2a:89:0c:7b:4d:66:da:1a:46:
e8:f8:92:bb:78:7a:1c:27:e0:41:91:66:09:20:e4:c5:3c:ec:
ae:64:40:be:62:4d:bb:bc:5f:fb:95:9d:a0:14:58:9a:54:bc:
17:02:14:01:c0:23:b2:44:5e:aa:22:91:cb:91:fa:cd:52:8c:
97:13:e4:bc:b9:5e:d9:3c:84:2a:a6:23:0f:9a:f6:c2:5d:b6:
ea:63:94:c3:a5:f0:69:c5:a4:23:b4:9b:c8:7c:76:02:ba:36:
e2:8a:e5:47:0a:e8:94:7e:b0:3d:92:fd:74:19:94:81:0a:8d:
f0:5b:b7:0d:a8:66:7e:79:6b:21:f3:a1:df:ec:ef:21:e7:8a:
20:1b:9e:c4:5a:2c:25:fc:e8:7d:d5:e2:1d:d8:f3:23:e4:bc:
48:e4:75:ff:c4:6b:91:9b:f9:b2:8e:89:fa:1c:7b:38:8a:50:
0b:02:0a:7c:f9:01:b1:5b:41:5c:af:8a:8f:41:00:12:73:89:
10:02:7f:41:af:41:97:60:49:07:42:97:f2:0d:bb:fd:9b:0c:
fa:4e:48:dd:ab:d2:0b:d4:d2:ad:01:37:7d:98:16:e7:c7:a1:
19:4d:fa:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:57:45 2026 by rpki-client