Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
File: iGbk-cPITtuUl18HHNhwfDgzqIY.mft (raw, json)
Hash identifier: DIp5vL/MvSevUKXgAEe4P+AavnULUzTHLlKtyMLDHYQ=
Subject key identifier: C1:45:6F:D0:C0:08:76:1F:64:68:93:40:B6:A6:7A:49:3B:EB:5A:12
Authority key identifier: 88:66:E4:F9:C3:C8:4E:DB:94:97:5F:07:1C:D8:70:7C:38:33:A8:86
Certificate issuer: /CN=8866e4f9c3c84edb94975f071cd8707c3833a886
Certificate serial: 019D3375888964EA8517DD33162F8195FEEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
Manifest number: 0156
Signing time: Sat 28 Mar 2026 08:00:33 +0000
Manifest this update: Sat 28 Mar 2026 08:00:33 +0000
Manifest next update: Sun 29 Mar 2026 08:00:33 +0000
Files and hashes: 1: iGbk-cPITtuUl18HHNhwfDgzqIY.crl (hash: Mxedk29Go2oKzPSw0dAHjnLy9JWKXYSmXMhV3AgVUYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:75:88:89:64:ea:85:17:dd:33:16:2f:81:95:fe:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8866e4f9c3c84edb94975f071cd8707c3833a886
Validity
Not Before: Mar 28 08:00:33 2026 GMT
Not After : Mar 29 08:00:33 2026 GMT
Subject: CN=c1456fd0c008761f64689340b6a67a493beb5a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e5:6c:46:22:4a:fa:18:91:20:98:5b:d4:20:
34:e7:db:7f:95:1e:db:b3:d9:6c:1a:6d:7f:0a:c2:
e1:37:52:3f:7d:94:a0:0f:02:fc:8b:7c:e6:ec:8e:
ad:50:57:06:d5:d9:02:92:e8:8c:61:34:d6:2a:d1:
6c:78:61:64:25:e0:19:06:bd:96:f4:e4:0c:de:27:
f5:75:04:ae:2b:36:1c:87:b5:9d:19:34:f9:35:15:
80:8e:52:27:0a:40:d8:0a:33:eb:30:f6:1b:e6:82:
d8:19:3c:42:18:da:97:60:1c:0c:b6:dd:09:4d:7b:
67:91:3f:b5:7c:f5:16:ba:5e:6b:4e:68:d4:3b:e1:
4c:d8:65:ef:1f:e2:ef:41:d7:37:05:48:61:10:80:
89:09:c4:28:ce:c4:ee:b7:13:5e:7c:13:12:32:b7:
74:b2:b7:db:4f:f5:b8:12:b3:97:02:97:dc:7a:96:
d0:09:c4:cc:ed:a3:f5:7e:89:57:d5:50:28:2b:80:
f0:1e:e8:10:0a:ba:b0:1c:67:cb:07:fd:aa:dd:1b:
58:a1:bd:2d:ed:05:d0:01:65:37:22:cb:f4:1c:53:
2e:76:b9:c0:23:d1:4b:03:ef:88:19:64:ff:57:ec:
a5:21:c6:72:bd:56:98:4e:27:08:6c:9b:5f:e4:cb:
bd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:45:6F:D0:C0:08:76:1F:64:68:93:40:B6:A6:7A:49:3B:EB:5A:12
X509v3 Authority Key Identifier:
keyid:88:66:E4:F9:C3:C8:4E:DB:94:97:5F:07:1C:D8:70:7C:38:33:A8:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iGbk-cPITtuUl18HHNhwfDgzqIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b0b71c-6f38-4588-b4ea-3dff55deebb9/1/iGbk-cPITtuUl18HHNhwfDgzqIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:aa:33:cc:0d:2e:cb:7d:fa:37:33:4e:6d:b4:4a:eb:70:d8:
5e:ea:63:f5:cc:c2:b9:df:8b:c8:e7:69:6f:7c:50:f4:5e:5a:
52:c9:25:b8:ae:bd:5a:dc:3d:ec:e4:29:0a:c8:fe:66:ee:24:
0f:8d:7f:b6:ba:cb:17:8e:23:67:d9:8b:06:96:14:5a:f6:ba:
e5:7c:0d:72:98:4c:8a:4d:e5:15:8e:f9:26:93:99:44:9a:71:
bb:2c:5c:ad:cb:89:11:5d:ec:fa:4e:15:c3:8f:f9:d3:b1:87:
b5:2a:d0:76:2e:3b:52:b5:f5:57:41:77:65:49:fc:dc:de:f1:
47:86:6f:1b:5d:c7:30:fc:c4:62:b0:32:c5:39:e6:66:d2:98:
50:f0:4b:ac:fe:06:42:13:d2:3c:27:a3:04:41:a7:7e:70:bc:
74:43:b9:5a:19:f2:75:8e:79:83:31:f0:74:e4:00:b8:ca:40:
3c:8c:2c:80:5e:5b:10:6c:5c:ab:46:ba:96:f0:eb:6f:4f:a5:
3b:97:ec:bc:07:31:25:02:71:61:b5:33:aa:60:9c:54:e0:a7:
b9:f5:5f:09:a5:c4:59:b0:98:ac:97:ef:8f:db:60:b1:ff:37:
b8:a6:d1:1b:d1:2c:4e:61:ee:b2:df:a2:b0:2d:9f:5b:0a:2b:
8c:84:7f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 11:47:29 2026 by rpki-client