Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: 4OosdjaF/PwbTPL+TO51B5KIr9vBaPjjmWYmlTPK8fk=
Subject key identifier: 89:C8:46:8E:DD:66:87:1E:3F:31:67:A5:BD:18:A0:D0:B1:76:83:B1
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 019D2816657216FC0F17460AD850E81C8FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 1013
Signing time: Thu 26 Mar 2026 03:00:49 +0000
Manifest this update: Thu 26 Mar 2026 03:00:49 +0000
Manifest next update: Fri 27 Mar 2026 03:00:49 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: bCJmFCSl6N09Uzae+0wphZfGFFwB1co9LV0mQOX5GR0=)
2: hCRU042AoO-wp1TNEdYzfOG7kyM.roa (hash: 458hq105l3Yhrg7POKX+Z5+Z9IN5XlkejgNFXz79fUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:65:72:16:fc:0f:17:46:0a:d8:50:e8:1c:8f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Mar 26 03:00:49 2026 GMT
Not After : Mar 27 03:00:49 2026 GMT
Subject: CN=89c8468edd66871e3f3167a5bd18a0d0b17683b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:de:73:91:cb:89:fd:1b:99:05:73:b1:62:05:
31:dd:ca:10:ae:99:a1:05:a6:9e:a9:0f:08:e1:0b:
92:c4:90:8f:f4:44:e1:23:61:de:a7:38:b6:65:c8:
21:3b:1f:55:70:50:c4:ff:f7:76:db:be:ff:17:7d:
8b:48:5d:b3:a8:bc:b6:2e:19:e2:b7:d1:61:13:4d:
40:f6:9f:ef:da:f4:14:87:21:9e:e2:09:b6:e0:a9:
ce:b0:29:f0:07:3f:78:d1:b1:80:bc:4f:7d:05:67:
fe:41:bf:98:b4:2e:76:3e:09:4c:23:b2:c7:52:5b:
6b:34:76:6a:7e:64:a6:f2:7a:e3:f0:ed:0e:44:74:
23:a2:70:94:32:70:0b:c7:66:65:64:bf:11:f0:f7:
1a:cd:4e:a0:23:97:57:79:d7:cb:b7:1a:3f:85:8a:
ff:16:b1:38:ff:9c:3e:a5:05:67:57:e4:e7:37:9d:
c6:ec:91:cd:61:78:1c:35:1b:80:32:8d:19:cc:c7:
5a:17:8e:55:95:dd:8f:9f:25:c3:77:9a:bb:66:e4:
67:07:cf:7b:43:7f:91:b0:12:cf:0b:49:b4:b2:3d:
69:61:a0:42:d1:b4:1b:61:35:81:de:4f:1e:d0:eb:
80:65:bd:da:7a:e1:ec:28:b6:6d:1b:ab:60:6c:c7:
e4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C8:46:8E:DD:66:87:1E:3F:31:67:A5:BD:18:A0:D0:B1:76:83:B1
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6e:21:1c:9c:54:2f:6d:af:fa:5a:89:58:7d:f6:1c:3c:a3:
77:36:fe:21:36:58:5a:ec:45:48:31:39:21:7f:67:20:bc:e9:
77:c1:36:46:9f:89:64:9c:3b:ea:d9:d7:94:81:ca:eb:22:bd:
4e:dd:42:5b:a9:a0:f0:03:ca:08:44:fc:27:03:b0:b2:63:8b:
f4:6b:1b:02:3b:a1:ba:1b:fd:4f:1f:47:f3:a5:52:c0:79:21:
fc:52:f8:05:5a:28:19:1b:7d:70:0c:f0:d9:53:ee:17:cf:83:
a8:ce:41:4d:b6:11:ae:1e:55:8b:3e:89:6b:dd:66:0a:e1:b7:
a9:bf:27:04:9f:e9:af:34:12:22:be:31:b4:a9:4d:be:c8:de:
ed:62:2c:25:0f:70:f6:c5:41:4d:eb:be:35:dc:e4:e1:1f:32:
07:45:dd:71:ac:bd:c4:37:0a:79:a7:90:61:54:64:fe:0d:51:
09:94:a6:ee:76:36:91:ea:00:6f:b3:2f:42:6c:fc:a2:a8:c5:
41:89:ed:2a:1f:eb:67:3a:15:9d:ad:d8:1b:37:9f:ab:31:44:
97:f9:b5:25:bf:ca:8f:0f:ea:40:24:1c:e7:04:5d:0c:ee:be:
7d:5d:c4:6c:3f:5e:0a:63:f7:91:3f:f9:c9:00:01:7b:b1:c5:
bd:84:c2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:25:57 2026 by rpki-client