Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json)
Hash identifier: HVDO7AYQBCxzj2f8nyfmUu5SVHVthOblZBdisUk5giE=
Subject key identifier: 7F:BC:B2:94:97:4E:EE:4B:07:21:A6:DE:3E:B8:D3:9A:E2:FF:73:5F
Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e
Certificate serial: 019D270476C106353613F8C592919BA351E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
Manifest number: 0712
Signing time: Wed 25 Mar 2026 22:01:36 +0000
Manifest this update: Wed 25 Mar 2026 22:01:36 +0000
Manifest next update: Thu 26 Mar 2026 22:01:36 +0000
Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: WxnniYCXgqcuP3XcUEUsKeLn3i9LVBUnl9+jfltP6g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:76:c1:06:35:36:13:f8:c5:92:91:9b:a3:51:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e
Validity
Not Before: Mar 25 22:01:36 2026 GMT
Not After : Mar 26 22:01:36 2026 GMT
Subject: CN=7fbcb294974eee4b0721a6de3eb8d39ae2ff735f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:37:d5:de:7a:e7:5c:73:14:2a:11:0f:c7:d3:
ea:ae:df:63:fd:7c:be:4c:b6:51:d7:c3:66:c4:c3:
2b:f9:28:3d:36:5d:56:8c:b2:77:a3:67:25:76:39:
9c:34:58:e8:92:03:56:b6:ba:e8:f1:a8:3f:a8:95:
0a:f2:46:e1:b9:ba:6a:20:ba:e0:de:71:ae:f4:67:
8d:04:ac:3a:a7:ab:9b:3e:e4:6e:ba:bd:ca:cc:d8:
8b:72:80:36:f0:76:de:d6:f7:e4:6c:a8:22:7f:8e:
cb:8b:c9:48:2d:11:dd:fc:56:fa:01:be:10:31:12:
09:8d:a3:f4:1c:af:c9:58:d4:95:2d:34:18:3d:06:
d8:d5:83:4b:b3:98:3c:ef:6e:65:92:cd:bf:2f:8c:
7b:32:21:f1:af:23:6c:22:cd:6f:3b:1e:85:0b:97:
3a:7b:cc:cf:87:9a:63:3e:0b:4d:8a:24:1c:1a:5f:
5c:c8:ea:c1:0a:c1:65:67:f7:16:49:16:41:60:42:
5e:05:f0:dc:2a:c7:11:7c:11:f0:4e:6c:ff:2f:42:
c0:30:38:95:cb:e5:bd:7c:a2:0a:d5:0d:16:9f:1f:
43:7f:7f:9b:f7:7e:9d:0c:26:45:d7:a5:12:60:fe:
4e:9b:21:ad:be:5e:d1:c7:94:ca:6f:2d:a6:01:77:
93:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BC:B2:94:97:4E:EE:4B:07:21:A6:DE:3E:B8:D3:9A:E2:FF:73:5F
X509v3 Authority Key Identifier:
keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c7:d5:e9:1e:ce:a5:9a:bd:76:91:56:01:5f:de:4a:d5:11:
a1:7d:e0:da:97:71:81:98:ba:cf:2a:86:14:5b:34:2e:c0:c3:
c1:17:07:22:9f:8b:24:30:eb:82:8d:dd:22:b4:f9:70:46:bc:
de:2a:39:e5:d9:be:ff:6c:1f:c0:42:da:90:6f:d1:76:6d:ad:
51:27:a8:11:42:21:79:63:44:26:d2:3c:b1:8b:b0:3d:ac:d8:
67:ed:cf:1d:d5:34:ff:ca:34:40:76:18:ed:ab:47:ba:66:d3:
94:db:65:af:fe:67:ba:17:a9:4a:3e:33:ad:5d:27:6e:8d:38:
d1:87:0c:d9:26:a5:15:56:ff:39:66:24:74:13:2d:45:2d:15:
f1:a8:98:ff:34:cc:fb:b0:51:50:e7:f2:3b:d7:4c:26:36:de:
2f:44:16:1c:b9:42:06:b4:ce:e3:20:ec:26:c5:c8:29:60:bb:
80:5e:d5:85:93:ae:8f:f7:65:cf:8e:a6:49:89:f3:0f:ea:47:
73:9c:7e:36:d8:e3:f2:32:a3:7b:ea:6d:1b:92:94:72:74:23:
67:31:51:82:03:37:62:41:05:49:96:12:9b:b4:f4:6a:b1:06:
cc:e4:ed:f1:ff:4a:ce:3d:14:bf:44:6a:9d:c2:9e:f6:f7:d2:
c3:96:d8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:49:11 2026 by rpki-client