Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File: IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier: scpIunHUgEzuiZCJ02SXnohEBqQ4L6jap1yChGocwPc=
Subject key identifier: ED:F6:3E:EB:8B:A3:39:2C:CF:99:B8:A5:65:BC:D5:32:33:DB:65:19
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer: /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial: 019D28F2CF1F9BFB459E06589DD35C79CA9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number: 0F94
Signing time: Thu 26 Mar 2026 07:01:34 +0000
Manifest this update: Thu 26 Mar 2026 07:01:34 +0000
Manifest next update: Fri 27 Mar 2026 07:01:34 +0000
Files and hashes: 1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: YSBEBLrB4nwVs0ZpmXD4nkmr5DSCLhXQc8gCNde+C8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:cf:1f:9b:fb:45:9e:06:58:9d:d3:5c:79:ca:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
Validity
Not Before: Mar 26 07:01:34 2026 GMT
Not After : Mar 27 07:01:34 2026 GMT
Subject: CN=edf63eeb8ba3392ccf99b8a565bcd53233db6519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:74:1f:f7:06:ef:f6:5e:a9:a7:23:76:90:b7:
70:86:1d:ee:ca:1d:fa:1c:e7:86:f3:e5:78:11:72:
31:cf:64:e6:55:39:46:22:5c:ef:94:80:78:1d:76:
06:56:46:bb:3b:bb:ab:ca:38:ab:f1:cb:a4:66:f3:
32:f8:2d:7f:6d:dc:79:ea:0c:5b:91:11:70:fd:96:
87:4b:32:bb:8a:6a:0b:b4:39:2d:e1:84:e2:88:22:
09:2c:8c:cf:85:12:9a:9a:ba:ff:a8:6a:55:1b:eb:
24:6d:3b:53:d6:fa:08:bf:c6:39:5e:99:aa:e3:bc:
32:e6:11:3b:21:5f:fa:71:6d:37:8c:12:79:08:13:
be:4a:58:ad:c5:59:6b:b7:67:01:db:0d:7f:89:9d:
9d:05:37:0b:fa:31:12:a1:d0:78:89:ba:d3:66:68:
ad:8b:19:01:6f:15:28:f5:c8:6f:24:8a:02:b2:d7:
46:28:f9:aa:8c:9b:79:fb:a6:9a:45:b8:41:14:3a:
3b:fd:dc:51:9e:e8:9c:97:f5:49:90:ae:65:52:c9:
0e:b7:90:5a:ac:ff:48:c6:e1:0a:87:03:2a:78:4d:
d3:68:9a:f5:ba:89:de:b2:db:89:7e:4e:f0:be:01:
64:60:c1:c6:57:d0:a8:e1:c6:c4:bf:cc:ce:c2:48:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F6:3E:EB:8B:A3:39:2C:CF:99:B8:A5:65:BC:D5:32:33:DB:65:19
X509v3 Authority Key Identifier:
keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:a0:56:b3:ee:23:ff:fd:39:29:19:e7:da:c3:05:f4:b6:00:
4e:be:8e:fb:68:17:76:3f:30:a6:de:65:ab:96:57:d3:ca:24:
44:2c:d8:25:06:38:76:d5:6b:db:53:e7:1d:fd:6a:54:67:93:
c8:ca:32:b4:44:06:f2:c3:79:c9:8b:b0:42:94:fa:24:53:1e:
5c:e2:ef:63:3c:f3:f1:3a:6e:77:f5:7d:31:c6:fd:6e:77:7c:
fc:21:12:8a:e0:b6:fd:b0:7b:ed:7a:d1:6b:aa:7f:f5:71:6d:
c8:29:ab:da:67:ad:e1:e9:a7:7d:1f:8f:4b:23:da:bd:6c:ae:
69:bc:9e:76:1d:c8:dd:d5:91:3f:af:fc:c3:21:8b:33:8c:bd:
0d:05:8d:be:07:1f:ac:57:80:c0:98:46:7b:ea:4f:cb:67:e0:
27:87:bb:f0:dc:f4:a0:fa:76:e0:1b:25:c7:95:02:48:8f:5a:
c0:ae:8d:27:f6:55:60:96:8f:46:d9:65:e6:34:0b:26:39:d0:
5c:43:42:ec:1a:20:0c:9a:23:32:c9:f5:66:b1:03:d8:4d:3c:
4d:99:e7:dd:fe:41:bd:b0:ff:b2:ac:ae:9b:00:17:80:c5:1f:
dd:e5:52:24:ef:a3:76:ff:e6:b9:c3:36:a2:4f:09:70:25:fe:
bc:7d:19:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:31:18 2026 by rpki-client