Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: Ztv6SxdL1O+RN9DuTxgoYTMZSOvyCeeQgGZ+MwRXKnc=
Subject key identifier: 1D:68:94:1F:7C:4D:EB:BD:97:2C:32:29:16:50:D4:77:63:6B:19:97
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 019D2703C3EE8AF0BE10DD98C27546012D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 101C
Signing time: Wed 25 Mar 2026 22:00:51 +0000
Manifest this update: Wed 25 Mar 2026 22:00:51 +0000
Manifest next update: Thu 26 Mar 2026 22:00:51 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: 9yAqKLh/CgxJxdlKcWKbJ4BDSATgXpHYSrDLbyMEpZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:c3:ee:8a:f0:be:10:dd:98:c2:75:46:01:2d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Mar 25 22:00:51 2026 GMT
Not After : Mar 26 22:00:51 2026 GMT
Subject: CN=1d68941f7c4debbd972c32291650d477636b1997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:27:8b:4f:9c:06:ac:1c:27:85:5e:79:47:0b:
e4:e3:c7:78:6c:34:63:e1:7d:69:14:4e:d4:59:84:
36:d0:fe:5d:bd:29:6c:bb:4a:cf:5a:34:33:65:02:
d5:53:79:0f:f8:24:f4:f1:3a:03:78:dd:c7:5b:62:
75:b0:7e:08:91:2f:92:d3:00:3a:86:94:1e:6e:1a:
b8:6b:f8:02:b9:8b:2f:79:4d:85:93:36:94:da:19:
b6:20:88:7e:48:b1:aa:b2:4f:f8:2d:bc:f1:b6:86:
67:ca:6c:17:bf:74:b3:2d:65:0c:22:f6:ff:b0:24:
62:5e:d2:24:5c:cf:34:ad:b8:fa:0e:4d:31:ce:2d:
37:3b:48:4c:90:6c:70:d0:06:54:cf:5e:86:ee:81:
72:f5:66:d4:39:f6:42:e2:d6:7d:d8:1d:f4:3c:fa:
30:d7:c2:59:41:36:7f:80:88:54:f1:02:f9:cb:ec:
4c:8f:46:dc:20:23:71:f2:b2:ad:91:87:9d:c5:40:
06:71:0b:f2:22:75:c1:13:dd:9d:e0:b7:ef:c6:84:
84:a1:03:5d:47:e8:82:f3:f7:b1:a7:5e:bf:b2:97:
d3:b0:b3:3e:60:55:3d:71:9b:15:00:5a:4d:2c:5d:
a6:46:7b:41:1e:8d:6d:fd:a7:dd:38:98:ea:ea:fa:
93:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:68:94:1F:7C:4D:EB:BD:97:2C:32:29:16:50:D4:77:63:6B:19:97
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:62:ea:5a:b8:92:d1:f6:6a:44:b9:71:f0:95:b6:ed:d2:34:
1b:5c:75:c6:12:c5:34:51:b7:93:ab:00:c3:60:e1:31:52:e0:
7d:60:db:c4:1b:12:bc:15:f0:a1:fa:4c:df:87:d9:e5:ae:c8:
1e:07:47:cd:6b:0e:b6:c4:dd:06:07:c3:c6:7e:4e:ab:f9:f4:
de:54:7a:e6:f4:ac:38:a9:54:7f:1e:59:8a:7e:e8:13:69:34:
45:dc:da:02:ef:3a:d2:a7:d9:80:31:9d:87:62:52:c0:2e:9e:
24:2b:d8:d2:15:a0:b1:6d:55:74:65:2c:43:58:4a:1f:f3:be:
49:c6:23:bb:0b:b2:b6:f7:b2:c8:2d:1e:ac:fe:e6:b5:8b:2d:
02:a1:23:4f:7b:40:5d:16:b3:b2:3b:8a:4a:e7:ad:8c:9b:58:
4b:18:ec:d2:62:38:6e:bb:b1:8a:bf:b9:00:e0:1e:85:88:46:
1d:16:e9:ea:f8:34:67:18:46:6f:13:18:c5:59:5e:39:59:c6:
42:d6:03:ae:fa:a2:5e:fe:85:e7:8c:25:e7:db:1b:dd:ae:cb:
e8:59:a6:e6:79:bb:1e:9d:d5:b5:64:8d:64:32:68:e7:0a:d3:
25:b3:13:1e:86:16:a6:32:50:dd:08:07:77:4a:85:61:e9:59:
0e:23:97:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:31:15 2026 by rpki-client