Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json)
Hash identifier: hL858KQSUKl6ouGaj4pWgeHYGi19Zn/wjraecZXZkX8=
Subject key identifier: A8:2C:01:C2:44:E3:EC:BB:A1:4C:3D:C4:52:BD:79:D1:42:68:C1:AC
Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Certificate serial: 019D28F2194F810ABAAF5D2EFC79A59D9732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
Manifest number: 09F7
Signing time: Thu 26 Mar 2026 07:00:47 +0000
Manifest this update: Thu 26 Mar 2026 07:00:47 +0000
Manifest next update: Fri 27 Mar 2026 07:00:47 +0000
Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: AQMnYh2bLet0/+CzLUpS16vzi+5zQy6ObEJOXnX74ak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:19:4f:81:0a:ba:af:5d:2e:fc:79:a5:9d:97:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Validity
Not Before: Mar 26 07:00:47 2026 GMT
Not After : Mar 27 07:00:47 2026 GMT
Subject: CN=a82c01c244e3ecbba14c3dc452bd79d14268c1ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:64:13:87:84:b7:f5:c2:20:c0:09:8e:f5:
94:60:61:80:ee:b7:b0:18:e2:49:70:59:5f:73:f5:
86:d4:61:32:76:85:3d:89:75:45:48:c3:3b:9d:2e:
ed:79:31:cf:5c:0a:2d:f8:b0:bc:34:4e:4f:0c:12:
83:9d:5f:69:64:8c:6c:5d:4f:53:12:70:b9:03:e7:
4c:a3:59:df:8d:49:f8:6e:e3:77:28:26:8f:be:a1:
e9:aa:a0:fe:d2:c0:a6:81:15:39:49:8b:09:68:47:
f1:71:a7:0b:be:d7:de:33:8e:46:bb:5b:8c:5f:56:
be:fd:d3:5c:a3:5f:b4:67:84:07:ee:a7:d5:ac:97:
dd:da:65:79:fc:c0:de:c7:ac:74:29:df:0e:7d:f3:
48:9c:af:95:ed:0f:b9:d3:d9:33:9e:1a:a7:cb:dc:
d7:af:eb:11:46:f8:e6:5d:a3:de:12:6c:2c:1b:08:
b1:4a:2b:d6:66:ed:cd:5f:99:57:b6:e1:35:5b:02:
94:26:a7:6b:62:c9:96:12:3e:65:00:7b:ea:d7:64:
d7:27:87:f4:c5:81:49:b3:36:55:1e:be:46:b2:89:
82:2e:d4:5a:f8:b9:02:0a:5f:a7:70:77:7a:76:5f:
24:37:3d:18:bb:00:52:13:47:6d:f5:a6:96:a9:e1:
d3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:2C:01:C2:44:E3:EC:BB:A1:4C:3D:C4:52:BD:79:D1:42:68:C1:AC
X509v3 Authority Key Identifier:
keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:8c:6e:7e:9e:50:8c:79:22:33:76:f7:7f:c1:ea:26:5e:0d:
5d:b7:2c:e6:cd:47:57:d5:39:07:99:67:26:52:03:74:08:8e:
89:d7:87:27:8a:34:99:68:ac:6a:9d:18:14:6f:3d:60:88:ea:
09:9e:7a:6f:5c:e6:a0:62:be:8c:d5:13:43:bd:0a:68:c1:89:
79:d8:b1:5c:5d:2d:38:cc:47:f1:72:0f:76:5a:b5:d6:9f:1e:
36:cf:9e:97:64:1c:c8:92:ba:4d:18:af:bf:ad:e2:d2:d9:70:
2b:72:76:87:d2:11:6e:bf:fc:89:9e:8b:a4:ea:10:dc:66:54:
1e:c5:17:7e:15:e7:e5:0b:2e:0b:d0:f1:0b:db:5e:b6:c8:29:
7f:e1:42:73:48:4b:36:30:92:38:c1:56:06:e7:ca:8d:ed:dc:
9f:96:b9:d7:c0:aa:95:d4:1b:6a:67:7e:37:54:4c:3c:4c:93:
6f:b8:8c:a1:80:4f:80:a3:30:d8:6b:08:e9:6e:69:ca:d3:b9:
aa:87:65:16:30:ba:d7:94:47:b2:9f:f2:05:d1:50:93:41:29:
8d:fc:7e:35:fb:57:d7:e6:0b:78:28:82:ab:b4:34:3a:f9:fa:
40:c6:7b:73:be:08:4e:1b:26:2c:25:b6:5e:9d:1b:9a:a4:43:
1a:53:bf:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8hlPgQq6r10u/HmlnZcyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YzI4ODUzMmFlZmM4Njk3MWI5OGQ1YjRkMWQ5ODE5NmQ5
ZWNiODUwHhcNMjYwMzI2MDcwMDQ3WhcNMjYwMzI3MDcwMDQ3WjAzMTEwLwYDVQQD
EyhhODJjMDFjMjQ0ZTNlY2JiYTE0YzNkYzQ1MmJkNzlkMTQyNjhjMWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+lkE4eEt/XCIMAJjvWUYGGA7rew
GOJJcFlfc/WG1GEydoU9iXVFSMM7nS7teTHPXAot+LC8NE5PDBKDnV9pZIxsXU9T
EnC5A+dMo1nfjUn4buN3KCaPvqHpqqD+0sCmgRU5SYsJaEfxcacLvtfeM45Gu1uM
X1a+/dNco1+0Z4QH7qfVrJfd2mV5/MDex6x0Kd8OffNInK+V7Q+509kznhqny9zX
r+sRRvjmXaPeEmwsGwixSivWZu3NX5lXtuE1WwKUJqdrYsmWEj5lAHvq12TXJ4f0
xYFJszZVHr5GsomCLtRa+LkCCl+ncHd6dl8kNz0YuwBSE0dt9aaWqeHTXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKgsAcJE4+y7oUw9xFK9edFCaMGsMB8GA1UdIwQY
MBaAFInCiFMq78hpcbmNW00dmBltnsuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTkt
MGY4NjdkOWZmNThlLzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTktMGY4NjdkOWZmNThl
LzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeoxufp5Q
jHkiM3b3f8HqJl4NXbcs5s1HV9U5B5lnJlIDdAiOideHJ4o0mWisap0YFG89YIjq
CZ56b1zmoGK+jNUTQ70KaMGJedixXF0tOMxH8XIPdlq11p8eNs+el2QcyJK6TRiv
v63i0tlwK3J2h9IRbr/8iZ6LpOoQ3GZUHsUXfhXn5QsuC9DxC9tetsgpf+FCc0hL
NjCSOMFWBufKje3cn5a518CqldQbamd+N1RMPEyTb7iMoYBPgKMw2GsI6W5pytO5
qodlFjC615RHsp/yBdFQk0Epjfx+NftX1+YLeCiCq7Q0Ovn6QMZ7c74IThsmLCW2
Xp0bmqRDGlO/fA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:29:52 2026 by rpki-client