Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: s6oaN/ZTvYUQNVLkWSypjQIKE3AbmTTmtkPpJfzrtnA=
Subject key identifier: 96:0A:6B:90:63:D4:DC:BC:9E:91:70:7F:A4:EF:16:5D:B0:60:82:15
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 019D2704A65C59277904A7892CAEAAC48059
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 0922
Signing time: Wed 25 Mar 2026 22:01:49 +0000
Manifest this update: Wed 25 Mar 2026 22:01:49 +0000
Manifest next update: Thu 26 Mar 2026 22:01:49 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: 9TM/VVSL2qh1y3Fr7mQNe5hoCEQ0UHKEsiiAjAAO+Ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:a6:5c:59:27:79:04:a7:89:2c:ae:aa:c4:80:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Mar 25 22:01:49 2026 GMT
Not After : Mar 26 22:01:49 2026 GMT
Subject: CN=960a6b9063d4dcbc9e91707fa4ef165db0608215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:28:97:a9:1e:d5:04:cf:77:74:40:b7:46:
cc:ca:c4:76:66:90:6a:03:44:6b:fb:67:4d:b1:68:
f1:e2:cc:0b:97:f0:fc:7a:29:45:4e:1a:92:b6:fc:
d1:b8:b3:54:50:6d:d7:99:e9:8c:4c:e1:f1:d2:5c:
50:14:f8:9b:ce:5f:08:29:92:7f:68:02:10:51:9c:
89:50:1d:0f:91:7b:b4:ee:28:22:f8:a8:f6:23:dc:
a9:d2:d7:42:c1:46:0d:4b:6b:6d:8c:ab:d4:aa:79:
46:69:77:eb:cf:e9:47:8c:58:78:9d:b9:63:6b:00:
71:c6:51:2c:1a:68:e7:3a:74:76:a7:78:75:d1:3c:
9a:ed:92:47:4b:31:78:98:4d:17:53:61:ef:c4:0c:
0d:2c:78:56:2f:62:dd:70:40:a8:e6:1b:b0:89:83:
bd:f9:62:ed:c5:ba:b7:80:76:0b:ca:ea:0d:44:55:
8f:64:6a:f0:57:69:ce:96:7e:b4:c9:09:74:9f:62:
bb:e2:b0:38:98:27:f4:03:22:f7:27:53:0e:41:7d:
06:f0:c5:3d:c8:36:f3:16:0e:5e:41:6f:a9:68:06:
8a:9f:8c:4f:63:8a:89:60:0e:7e:c6:16:fc:08:f7:
98:2b:cf:db:52:ed:e7:14:14:c4:50:72:10:ec:17:
9b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0A:6B:90:63:D4:DC:BC:9E:91:70:7F:A4:EF:16:5D:B0:60:82:15
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:e1:c7:d2:ad:e1:40:4f:81:cf:03:ea:e5:4d:ce:0e:5c:e0:
23:16:13:f9:6d:b0:45:a7:97:ae:95:03:43:a1:f5:1d:6c:26:
b4:67:9c:25:4f:d5:9b:b4:93:43:13:4d:af:ef:b3:d1:01:fd:
f8:87:bc:46:60:b9:3a:ee:fb:6f:eb:c7:ce:51:5a:91:ba:5f:
0c:53:48:86:e7:01:d6:dd:36:f3:04:94:4a:6c:04:53:a4:67:
ac:4f:74:d7:58:d5:e8:8f:7f:9f:b0:09:6b:17:d3:03:4b:9b:
f5:11:24:71:01:19:94:81:3a:f1:a1:83:f6:b5:e4:b8:c4:83:
6d:00:46:14:6e:cc:34:f0:3d:bd:c8:08:44:52:af:22:17:4b:
63:66:2f:ca:78:99:ff:90:0b:2e:ca:a3:9e:7b:d4:70:76:01:
4c:ef:3c:8c:7c:a3:3f:b5:b2:d7:5e:2a:0f:70:d4:89:14:10:
e2:ec:22:d3:b8:d2:92:95:64:a9:8a:33:74:fc:5a:0a:c5:bf:
45:ce:cc:af:76:c0:60:56:41:9f:c9:86:f7:e5:9f:74:62:d6:
1f:d7:1b:ed:22:f1:62:d8:6a:03:f8:95:cd:34:d8:ef:da:9c:
96:86:0a:13:05:02:2a:c7:da:dc:b1:28:0f:bd:64:90:51:2a:
2d:69:61:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:21 2026 by rpki-client