Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
File: I6lUuSO6IAjpheuiQdG3AHF_iEM.mft (raw, json)
Hash identifier: cFEg3ILbmNmCPjO8W5+afBVGn7DinHRwNtPVY6SeDUI=
Subject key identifier: B9:22:75:8B:FF:D5:FB:AE:2A:FF:CD:97:F7:E8:87:0D:AF:2C:FC:C7
Authority key identifier: 23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
Certificate issuer: /CN=23a954b923ba2008e985eba241d1b700717f8843
Certificate serial: 019D2703E3CE9EB58DCD697121527437135A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
Manifest number: 16CE
Signing time: Wed 25 Mar 2026 22:00:59 +0000
Manifest this update: Wed 25 Mar 2026 22:00:59 +0000
Manifest next update: Thu 26 Mar 2026 22:00:59 +0000
Files and hashes: 1: I6lUuSO6IAjpheuiQdG3AHF_iEM.crl (hash: GFSTibABkQ+m4XgEk/wqVOs4W7L3LumdvTqZe9z1pYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:e3:ce:9e:b5:8d:cd:69:71:21:52:74:37:13:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a954b923ba2008e985eba241d1b700717f8843
Validity
Not Before: Mar 25 22:00:59 2026 GMT
Not After : Mar 26 22:00:59 2026 GMT
Subject: CN=b922758bffd5fbae2affcd97f7e8870daf2cfcc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:98:1b:ae:6c:ce:97:c5:46:6b:74:cc:6c:08:
40:08:1c:97:0f:42:f1:69:3a:2d:91:92:f0:ba:5e:
98:9c:c6:f9:11:10:61:d1:aa:7b:b3:f2:14:1c:97:
31:7e:e2:45:be:6e:29:94:f0:78:55:44:6c:d4:97:
72:30:1e:c5:a7:a6:7b:e6:8f:da:af:bb:ef:cb:bd:
5d:71:46:e7:1d:ae:51:b1:f5:d3:e3:98:79:84:6f:
4c:73:d0:53:08:2e:d7:50:c3:c4:b6:48:fe:f5:dd:
3b:db:13:04:04:18:ba:8a:8a:62:53:f6:1a:00:e2:
89:96:5b:2d:c0:18:a7:ab:29:66:6c:24:a6:34:3b:
78:3f:8b:bc:ec:8e:3c:2d:e6:d4:5f:c3:e8:73:c6:
89:78:84:83:6d:53:dc:50:4f:6f:3a:34:3f:10:dd:
66:5d:76:29:9c:b1:a5:17:6e:78:c4:52:c8:c7:3a:
ed:b2:77:74:90:93:99:36:c4:84:1f:d5:07:ee:a5:
f6:fe:4f:c6:a0:7a:a9:bb:9d:2b:90:79:00:2e:12:
67:5d:a4:15:d8:37:c9:5d:75:2e:be:72:74:32:3e:
16:ca:f1:b1:f3:64:b3:74:95:0c:ca:e2:43:e1:23:
66:12:72:e2:d1:e1:89:7a:63:99:0d:d8:fc:ef:3f:
b6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:22:75:8B:FF:D5:FB:AE:2A:FF:CD:97:F7:E8:87:0D:AF:2C:FC:C7
X509v3 Authority Key Identifier:
keyid:23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:a3:9c:ae:fe:d6:3c:9f:7d:87:9a:ad:5f:4e:7d:b0:2d:1c:
c3:da:66:a7:f0:97:13:b1:11:b5:15:18:a5:45:4c:90:48:8b:
6a:4e:3c:72:16:e9:86:82:79:92:b3:45:b9:43:c7:7b:8e:89:
59:aa:ff:b9:46:b3:ad:d3:77:7f:39:cc:e3:bf:1c:87:c1:e6:
71:bc:31:a4:f8:e5:4e:74:01:68:7a:65:6d:31:e2:1e:c5:f1:
34:b1:7a:3e:52:be:ad:ff:a1:d1:c4:76:16:11:c0:ac:d0:17:
da:24:67:fe:ab:3f:ab:8a:f8:79:b4:00:ba:5a:d7:20:e2:b7:
98:1f:f5:65:34:ed:97:8b:a4:14:98:9a:01:71:92:5b:53:16:
28:41:b6:3d:c4:a5:25:53:15:f2:dc:83:df:ab:2d:a9:d8:dc:
76:3c:95:b2:9b:c8:98:3f:7d:48:cd:49:a4:a1:c8:d3:8e:02:
21:82:bf:7e:87:6f:2f:cd:d2:bf:43:77:d6:3a:08:02:65:51:
22:2a:e7:1b:f9:8d:bc:11:8e:28:a6:22:34:ce:4e:71:69:7b:
7f:63:3a:af:08:c5:16:64:b6:3c:70:3c:4a:92:94:3e:98:dc:
35:30:76:31:ba:9a:77:fd:e6:be:91:c4:bf:d8:36:f3:8d:32:
15:9c:3e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:06 2026 by rpki-client