Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft
File: I6IOrOflZNlFaAhkd3q-nCu41NY.mft (raw, json)
Hash identifier: YKsfN0OwA0+Z/okiwV5bu4Ufzo1waO13yYE8GeIm7nA=
Subject key identifier: 73:28:51:EA:8C:04:8C:51:CE:AE:39:66:A1:D3:B9:D1:98:B4:BD:6B
Authority key identifier: 23:A2:0E:AC:E7:E5:64:D9:45:68:08:64:77:7A:BE:9C:2B:B8:D4:D6
Certificate issuer: /CN=23a20eace7e564d945680864777abe9c2bb8d4d6
Certificate serial: 019D2772098A3F8DD497816672D2387A4B18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft
Manifest number: 02D4
Signing time: Thu 26 Mar 2026 00:01:17 +0000
Manifest this update: Thu 26 Mar 2026 00:01:17 +0000
Manifest next update: Fri 27 Mar 2026 00:01:17 +0000
Files and hashes: 1: I6IOrOflZNlFaAhkd3q-nCu41NY.crl (hash: 4S5CX68D+RmZske8kFGTZT89kxrWxmp3n2f8i/+0vlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:09:8a:3f:8d:d4:97:81:66:72:d2:38:7a:4b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a20eace7e564d945680864777abe9c2bb8d4d6
Validity
Not Before: Mar 26 00:01:17 2026 GMT
Not After : Mar 27 00:01:17 2026 GMT
Subject: CN=732851ea8c048c51ceae3966a1d3b9d198b4bd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:aa:46:12:e4:3e:41:36:83:aa:6d:a2:9a:a1:
55:47:a1:69:5a:95:1d:fb:7f:e3:38:b3:bc:20:02:
1c:82:63:16:1b:58:49:22:5d:6c:4d:bd:cb:57:81:
e0:52:f2:79:c2:7d:44:a0:48:fd:a4:34:87:f9:fc:
ed:6f:14:d2:7f:34:d6:97:e6:a1:b9:db:02:3b:c6:
6e:f4:c6:73:ab:74:9c:d1:58:1c:37:e8:75:0a:a1:
ca:b3:7d:0b:22:7e:3e:0d:70:64:fe:88:41:9b:86:
67:58:10:c1:de:fe:1a:bd:00:f2:5f:50:14:d3:b9:
18:06:cd:3d:84:9c:aa:e9:48:53:9a:1c:19:14:32:
f6:6c:d0:36:88:cd:44:8f:96:29:59:d5:5d:2d:1a:
1a:99:d7:fc:88:3c:78:bc:2f:b5:22:05:3a:6e:4d:
61:bb:bb:ab:2e:c5:cf:72:c6:53:6f:a7:43:3c:3d:
08:c2:13:5e:5d:2b:34:7f:a6:58:cf:64:83:c1:ef:
f2:a4:b8:e7:5c:35:bd:fe:70:e1:41:8f:ae:b3:c6:
ef:3d:96:27:de:30:85:2d:68:27:e5:af:1d:e6:d3:
1d:cf:e6:5d:8a:92:7d:63:e8:bb:76:15:29:f3:b8:
11:13:04:8e:7a:d3:54:55:8c:65:db:ec:c0:6e:40:
65:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:28:51:EA:8C:04:8C:51:CE:AE:39:66:A1:D3:B9:D1:98:B4:BD:6B
X509v3 Authority Key Identifier:
keyid:23:A2:0E:AC:E7:E5:64:D9:45:68:08:64:77:7A:BE:9C:2B:B8:D4:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:3c:6e:29:de:6c:c5:a7:2e:45:22:7b:de:9c:8c:c2:97:f4:
30:8d:6a:20:3d:d8:0c:95:2c:39:f9:a1:0c:9d:4d:ce:7a:e3:
50:b9:75:4b:71:2d:52:66:64:36:fa:e0:96:01:be:b9:ff:ed:
2a:a8:91:9d:96:89:5b:bd:af:27:f1:37:1f:95:a9:9a:d0:17:
19:b5:11:1b:8e:0c:28:f3:61:c1:a6:7d:ab:21:11:d8:38:9f:
28:44:18:36:6a:d2:08:80:1c:64:2b:4e:3b:22:56:f4:be:4e:
f8:44:2e:92:b1:87:ce:99:60:80:aa:55:83:7a:31:33:26:52:
e0:f9:53:98:95:3f:51:9c:e2:bd:5d:cb:49:4d:37:59:2a:eb:
10:d9:0a:08:90:51:bd:63:17:b5:95:35:33:33:d4:3f:52:7c:
29:32:75:a9:25:9f:e9:6e:d1:07:a6:97:e7:c4:eb:7f:08:7a:
b6:3f:8a:71:c5:3e:2a:5b:6d:dc:07:4c:df:2d:0b:fc:92:d7:
80:cf:3e:62:39:2e:a0:2b:74:07:10:14:8b:02:ca:a7:38:0a:
82:12:d4:dc:8e:75:f0:01:eb:ba:46:fc:c4:9c:a0:73:47:81:
df:4b:36:22:70:71:13:82:b5:48:0f:52:12:01:2a:74:60:56:
58:7c:ee:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:30:51 2026 by rpki-client