Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: bLqeJeuOEm9AzXUnCc0rECCFZSAkc135JKa3M3Bwa0I=
Subject key identifier: 71:62:D9:9D:82:E7:E8:D6:79:57:23:03:D0:D4:E0:FA:C2:F3:1D:DF
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 019D2AA9F62D4ECF3F05019B43840D32BC48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 15:01:14 +0000
Manifest this update: Thu 26 Mar 2026 15:01:14 +0000
Manifest next update: Fri 27 Mar 2026 15:01:14 +0000
Files and hashes: 1: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: rBWWy1mIOlzPHRnenI1D+T27ztjg1z5OQuJGr1BIXYA=)
2: PUGn7Ab6cMVb76OjXGWaJzUV5BY.roa (hash: iJYYEN2U/S0Cca5PknTdBrcbLrfBr1O6hjipT0an39E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:f6:2d:4e:cf:3f:05:01:9b:43:84:0d:32:bc:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Mar 26 15:01:14 2026 GMT
Not After : Mar 27 15:01:14 2026 GMT
Subject: CN=7162d99d82e7e8d679572303d0d4e0fac2f31ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e2:e4:58:54:e6:3b:32:ae:ec:9f:95:22:67:
41:6b:3f:a2:dc:17:6b:df:af:05:1a:a4:b3:23:95:
c9:2d:5c:b7:09:67:f6:08:e5:ec:4d:f9:6e:3b:1c:
e8:ca:f1:84:8c:cc:30:a0:f7:1e:9e:5c:bc:61:67:
a9:49:38:a9:e9:c5:c2:9b:0e:65:65:e1:2c:be:9c:
2b:06:75:67:a0:ef:1d:bd:7f:cd:aa:f2:50:a8:7a:
94:db:46:bd:f2:47:da:66:64:cc:a3:48:48:f4:ad:
45:e7:fd:01:f8:08:d2:e2:44:29:eb:f0:c1:30:83:
92:c4:d9:fe:53:ce:47:ad:6b:75:50:b9:98:ac:ac:
8b:be:bd:c3:37:e9:7c:42:1a:b0:0e:6c:81:53:50:
55:2b:40:17:c2:88:49:bf:8c:99:94:5c:36:91:61:
f5:1a:57:43:29:4e:51:a4:60:23:58:4b:65:e3:b1:
77:18:b6:0a:6f:40:39:d9:a8:d3:30:3a:e9:73:89:
8b:cb:ff:40:b3:60:7e:41:1a:93:d3:7f:68:b8:30:
71:0b:97:54:48:20:73:af:d8:eb:27:14:1f:ea:e7:
fe:2b:f9:f1:af:db:1f:66:df:77:9f:31:c3:d7:82:
45:4a:80:94:b3:2d:c7:a1:a7:99:b4:7b:c9:47:2b:
a2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:62:D9:9D:82:E7:E8:D6:79:57:23:03:D0:D4:E0:FA:C2:F3:1D:DF
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:85:ce:54:87:06:9b:9f:71:9a:fc:bc:70:01:c0:b4:4e:fb:
b1:cb:13:7a:e0:3e:c5:9d:ad:31:61:cb:1d:28:92:8e:44:89:
e3:19:0b:ab:32:eb:18:f5:2d:a4:db:d7:bf:63:ae:a0:79:27:
c0:92:02:5e:06:cc:3b:6e:a0:7a:89:be:0d:6c:4d:2f:69:f4:
9b:6a:3e:e0:98:4a:e0:0a:76:75:e3:29:48:0e:54:42:be:05:
81:2e:88:12:65:ae:b7:dc:f7:8a:43:1d:cf:25:86:8f:d0:93:
02:c3:60:fc:cd:29:e7:06:07:4f:9b:8c:63:f4:ff:c7:4c:26:
de:92:d2:7e:5c:5d:ec:1c:c9:0f:59:04:b7:99:f3:d9:ac:4f:
3c:83:7f:b6:c2:93:cf:86:b3:76:46:b1:4d:98:71:c4:53:82:
fb:ec:2f:4e:bf:53:af:5d:2d:3b:5a:d0:01:ea:34:fa:3d:10:
1b:66:b9:f2:87:4d:56:00:50:16:8a:e3:cc:d4:b6:13:e7:b2:
a4:d6:d5:8e:a9:ec:97:3c:7f:81:31:df:d6:56:55:20:07:42:
3e:fd:ee:58:66:a1:09:e6:a8:27:12:37:7c:73:bb:e4:c3:0a:
ef:e0:2a:d8:f7:3c:64:c3:76:bb:7b:93:60:80:74:2e:f7:9d:
aa:b3:8d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:46:40 2026 by rpki-client