Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft
File: IMnySVGbH_R5NQ8xclT0Bei_yr0.mft (raw, json)
Hash identifier: AaHavugGHRuI0ivtovyjTIOLEWMovX5OzMXRu+Xw2v0=
Subject key identifier: BA:CA:77:72:1B:4E:01:E2:0C:F5:6C:D6:6F:8B:31:17:B1:DA:D5:77
Authority key identifier: 20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD
Certificate issuer: /CN=20c9f249519b1ff479350f317254f405e8bfcabd
Certificate serial: 019D27DFBC5FF81171646ADB8A935B2E322A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft
Manifest number: 127C
Signing time: Thu 26 Mar 2026 02:01:07 +0000
Manifest this update: Thu 26 Mar 2026 02:01:07 +0000
Manifest next update: Fri 27 Mar 2026 02:01:07 +0000
Files and hashes: 1: IMnySVGbH_R5NQ8xclT0Bei_yr0.crl (hash: ZwvoKawJgo3+F0tx1T7x8BYzzYG6Kz1UUyUV6AOYTMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:bc:5f:f8:11:71:64:6a:db:8a:93:5b:2e:32:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c9f249519b1ff479350f317254f405e8bfcabd
Validity
Not Before: Mar 26 02:01:07 2026 GMT
Not After : Mar 27 02:01:07 2026 GMT
Subject: CN=baca77721b4e01e20cf56cd66f8b3117b1dad577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d6:7e:f0:e1:83:26:44:1d:ce:a8:25:7d:4c:
19:ee:4a:9d:ad:64:3d:89:a7:0f:65:9f:d4:e3:29:
17:d5:a0:fd:a6:51:1d:f7:dc:10:2c:b2:d8:7b:93:
6c:82:2b:a1:a4:67:57:5e:32:45:fd:19:9a:b0:15:
ca:b7:ac:85:23:44:52:15:45:97:4e:23:2f:51:45:
65:46:3c:a6:6b:43:88:e3:6a:f8:2d:f8:d0:b2:81:
cd:1b:67:42:26:7d:c2:ee:05:11:8f:99:ef:6c:6d:
f6:84:bd:c9:cc:5b:35:db:6b:1b:a1:fa:5f:8f:55:
40:cc:b1:6f:13:e3:d0:4f:91:b6:f8:4f:c5:cc:ff:
bf:a0:a1:ad:4a:15:26:20:5e:96:58:78:1f:3e:56:
04:fd:b3:7f:7d:db:68:ec:78:69:64:98:cc:e4:d5:
b3:c1:e1:0b:e8:32:07:a7:8a:fe:f2:75:dd:0b:54:
c2:4c:cc:65:11:80:37:0a:72:2b:ab:55:63:37:60:
a1:53:c4:36:e1:5f:fc:2e:68:79:a8:a5:cd:0b:92:
7f:95:82:6a:0a:81:3f:71:9a:fc:f9:65:ca:a9:5b:
53:5c:82:10:0a:df:68:f8:41:3a:c9:52:ad:d3:50:
40:01:4d:2f:f7:2d:29:92:44:cc:58:21:8f:5c:32:
b3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CA:77:72:1B:4E:01:E2:0C:F5:6C:D6:6F:8B:31:17:B1:DA:D5:77
X509v3 Authority Key Identifier:
keyid:20:C9:F2:49:51:9B:1F:F4:79:35:0F:31:72:54:F4:05:E8:BF:CA:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMnySVGbH_R5NQ8xclT0Bei_yr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/38c26f-25a2-4b20-9ecd-0e6bced00463/1/IMnySVGbH_R5NQ8xclT0Bei_yr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ad:71:2a:29:e9:e0:f1:3c:a4:87:95:12:50:c7:ae:08:45:
3c:ae:32:ef:22:24:9b:00:17:c4:e4:9d:94:66:1f:fb:18:04:
5f:ab:33:61:51:bb:25:7f:3d:e4:83:41:8a:ae:38:12:b3:fe:
71:d4:fb:f1:92:35:b3:c7:90:4e:65:20:dc:28:26:af:5d:5d:
41:56:54:86:4b:ba:76:5c:fd:42:bf:12:51:a5:1b:97:5d:14:
18:48:e7:0c:42:27:be:5a:64:94:38:3a:0b:49:79:90:61:fb:
c7:8b:68:7e:3e:cb:11:d0:99:5a:09:08:7c:e3:d2:d2:b0:1b:
88:37:44:16:ae:9d:ff:76:c0:5f:51:cb:d0:c1:8a:17:f0:14:
eb:d2:41:d0:1a:4e:21:ef:32:fa:12:b6:fd:50:53:f4:14:ef:
56:c3:83:1e:2d:09:88:0e:fd:64:87:65:0c:db:bd:5d:14:d7:
5e:c9:c8:ad:6a:85:91:9f:a0:1d:d5:16:96:e3:05:3e:59:00:
bc:a4:88:e8:9c:61:fa:d9:60:7c:ce:c4:58:88:00:5a:e3:44:
fd:8e:57:e8:e3:63:b4:b4:89:a6:51:b7:3c:fd:a2:49:32:26:
cd:bb:0f:d0:65:e1:3d:5d:9d:40:0b:e9:9d:fc:55:20:11:f0:
71:3c:37:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:31 2026 by rpki-client