Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json)
Hash identifier: ZWvnYzzZe9q4uB8kxOrii/7ntMGw2VP/lGlbw5ZRWqs=
Subject key identifier: 74:50:CB:7F:2C:5B:4C:D5:4D:3E:CE:31:65:F7:21:E5:33:D5:3A:6A
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 019D2583C8EBD1B5DB94B99AD3736C8A6689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
Manifest number: 166C
Signing time: Wed 25 Mar 2026 15:01:26 +0000
Manifest this update: Wed 25 Mar 2026 15:01:26 +0000
Manifest next update: Thu 26 Mar 2026 15:01:26 +0000
Files and hashes: 1: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: ofPK0z2+4I4cbsi4euQrNxXO83FMoyXr3O0SW0hGH+U=)
2: m7ka3GTgMeqm1ki2dDpAuEKjwdM.roa (hash: 77rePDrGBduV4VbCULV3j9BdzB+b3yDNJM//8C/mjto=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:c8:eb:d1:b5:db:94:b9:9a:d3:73:6c:8a:66:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: Mar 25 15:01:26 2026 GMT
Not After : Mar 26 15:01:26 2026 GMT
Subject: CN=7450cb7f2c5b4cd54d3ece3165f721e533d53a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8f:9d:5f:b9:12:24:44:4a:53:ab:c0:8d:23:
bb:0c:68:4f:0f:73:75:9f:78:e4:28:01:b9:8a:dd:
84:2b:ef:85:b0:ad:5a:f7:76:84:68:5a:1c:a0:7a:
2c:0e:20:e9:fb:b6:a8:09:70:38:92:0b:8c:48:92:
ad:f4:51:f0:25:0f:30:58:41:d1:91:66:5f:d0:8e:
96:b9:58:fa:53:a3:9f:88:3d:1a:0a:ec:c2:20:7f:
69:86:76:9c:d5:bb:3f:94:c1:d9:ac:5f:e5:60:0d:
d4:e0:30:80:19:7d:a1:d9:b1:72:2e:06:89:21:d5:
db:94:a7:76:e0:87:85:be:c8:e7:ef:cd:e8:b3:c9:
29:6d:0f:c2:2a:86:0c:a9:4e:7c:78:36:0c:c9:b5:
c3:fa:32:c9:96:f6:76:c7:b8:7a:f9:22:c7:76:2a:
cf:3b:67:20:68:98:7d:0e:30:e8:dc:cc:93:e4:8f:
a3:7b:e1:5c:de:2a:91:8f:c9:1e:92:19:55:88:63:
fc:ae:47:0a:d6:77:af:39:a7:0c:ad:68:04:e4:bb:
46:04:fc:4a:ca:f5:4e:99:38:92:c2:2b:88:9d:cd:
5d:27:e3:04:38:12:d7:d1:7f:f6:86:20:ee:fb:9c:
87:93:c6:ec:56:9e:43:3c:c7:14:1a:8d:d0:bf:fc:
d9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:50:CB:7F:2C:5B:4C:D5:4D:3E:CE:31:65:F7:21:E5:33:D5:3A:6A
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:36:19:ba:30:c6:6c:e5:f0:56:f0:9f:0c:ff:bc:7c:67:b5:
e8:00:04:25:19:a6:cb:e1:3e:93:15:91:65:0c:6c:c0:46:47:
a5:33:ec:b9:9b:14:3f:ee:ab:93:87:1f:77:c0:c4:8c:17:77:
f2:49:38:8e:0a:f1:16:8d:e1:f3:f1:ba:14:9f:fa:eb:d5:4a:
11:da:d7:59:1f:01:f7:9d:12:06:f7:6b:6f:bc:6b:ab:39:7f:
6a:6d:64:2b:1e:3f:29:75:a1:11:dc:9a:28:17:a5:5b:42:1e:
7e:18:2b:74:a9:ff:ab:42:5c:4e:47:2b:5d:fa:3c:72:8b:30:
6a:9d:f8:de:a0:9f:a5:29:02:c0:bf:30:a7:86:e8:6d:20:5e:
83:be:af:7d:62:da:73:31:94:dd:c7:69:a6:be:fc:91:cd:ee:
b4:da:0a:08:06:d3:82:b0:43:eb:ba:98:00:16:b1:b2:0e:07:
2c:b8:fd:46:b3:77:df:c6:19:e1:5d:e2:5e:f0:f7:14:1c:f2:
61:da:f0:38:42:c2:42:ea:5b:fa:4f:ef:1a:33:d0:bc:4d:94:
34:f9:d6:57:e0:36:a1:b2:b3:04:a2:fa:45:5c:d0:0d:b2:64:
b4:02:99:e9:ef:f6:d6:d4:17:53:8a:c7:49:0a:c2:f8:c8:b9:
cc:5b:cd:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:10 2026 by rpki-client