Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: 5jomhzv31NKYSmv6fOPbPhO6ij++WMAv9oyhZ4Ryhc0=
Subject key identifier: 71:B1:39:88:5A:9B:00:8D:1C:3D:0D:66:D4:E8:F1:1A:4D:CD:DC:86
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 019D2A3C0E84233AAD3507A5CB75A01CEAB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 061E
Signing time: Thu 26 Mar 2026 13:01:12 +0000
Manifest this update: Thu 26 Mar 2026 13:01:12 +0000
Manifest next update: Fri 27 Mar 2026 13:01:12 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: WreN98Tvn5aVreSMvN/0YFEoBfRLhpE/gs81iDWPbwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3c:0e:84:23:3a:ad:35:07:a5:cb:75:a0:1c:ea:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Mar 26 13:01:12 2026 GMT
Not After : Mar 27 13:01:12 2026 GMT
Subject: CN=71b139885a9b008d1c3d0d66d4e8f11a4dcddc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:42:90:d6:9f:89:d8:a2:fc:89:4f:6f:b5:ae:
84:ab:ad:ff:f0:52:2a:b2:ed:50:60:c0:db:26:af:
12:bd:d4:2a:58:91:90:c4:26:a8:0d:6f:59:f2:5e:
6e:c0:05:e8:19:96:bd:f7:4c:f5:7f:c3:15:49:3e:
af:0d:59:fc:2d:65:db:f8:c4:a8:27:35:a9:20:36:
05:58:b7:c5:85:26:1d:ee:dc:35:0f:c4:a0:e8:5c:
b5:5a:cd:14:2a:6e:7c:b2:b9:f1:91:b3:42:19:5d:
bb:7b:17:9a:17:59:fd:1d:c4:72:fc:da:8c:c1:c6:
2d:27:bf:c5:1c:9f:05:79:4e:18:c7:1e:73:c5:28:
96:85:4b:62:0e:84:48:ad:f8:9f:1c:4b:0c:74:25:
6d:0d:ea:7e:5f:55:37:97:ef:f8:f0:c2:bb:81:1c:
cb:e2:44:98:33:fe:c8:f4:38:4b:59:d6:75:d2:e7:
e5:9c:d1:34:04:16:cb:d6:f7:36:2f:95:78:9d:2c:
41:09:0b:87:74:a0:0d:b3:f3:71:bd:4a:ef:1e:1d:
b1:fe:c8:ca:88:dc:72:2d:7b:b3:e0:d3:da:79:fd:
69:f0:bd:75:8a:c7:2e:46:61:03:8a:1d:8b:24:62:
ea:e1:2d:04:3a:7d:f5:56:70:60:a5:c5:1e:27:cb:
3f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B1:39:88:5A:9B:00:8D:1C:3D:0D:66:D4:E8:F1:1A:4D:CD:DC:86
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:ed:2b:47:d0:27:22:85:8f:1d:b0:3d:3f:fb:75:5d:e9:8b:
8c:9d:fd:55:27:60:23:cd:90:35:ba:41:c2:35:a5:87:50:71:
39:35:3c:a5:de:fd:79:ec:35:4f:81:1e:1d:f1:54:90:b6:dd:
dc:dd:e2:51:29:dc:20:d0:2d:05:02:66:ff:a1:4e:65:6f:7a:
33:89:e3:fc:c7:91:38:49:be:87:f6:f1:cb:a8:d1:59:33:ae:
52:ea:93:d3:49:c0:d9:a7:2b:64:15:30:61:b3:bb:ee:0c:18:
1a:ce:fb:d6:ed:10:ac:fe:f7:76:c2:12:2f:6c:cf:56:a2:7d:
2a:d0:c6:cb:27:ff:c0:6a:01:ab:de:af:c5:8f:d0:c8:97:1d:
ac:08:a0:9c:d5:9c:5f:e8:c7:50:c9:48:3d:23:14:dc:af:f9:
44:1f:9a:02:52:a6:b6:9b:f9:40:17:3f:36:af:e6:eb:7d:24:
8a:8e:6f:0d:c9:39:15:ab:9f:bd:cd:05:c5:2f:1e:de:40:9f:
ef:c6:4f:16:c5:08:02:2e:fd:9b:36:af:dc:c6:5a:d5:34:52:
56:44:73:96:ed:ac:9e:01:8b:0e:14:57:39:f0:93:df:21:ba:
8c:f5:37:ae:db:e5:a8:78:ee:fa:90:4f:64:b1:c6:24:5c:b5:
32:33:e7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:02 2026 by rpki-client