Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File: Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier: DXJA4lP+Iu/mfm/JI076fsKOZgwz+V/QXBnIy8lyYoY=
Subject key identifier: 00:29:12:39:CE:EC:76:AF:8A:A3:E2:AE:49:35:80:ED:4A:19:8C:08
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer: /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial: 019D262878C68C48473E5CFAAFE786D64DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number: 046B
Signing time: Wed 25 Mar 2026 18:01:19 +0000
Manifest this update: Wed 25 Mar 2026 18:01:19 +0000
Manifest next update: Thu 26 Mar 2026 18:01:19 +0000
Files and hashes: 1: 25oZjtsXGt-n2WY2ltVfz0hHWzE.asa (hash: cAJ1A4GbTa/DjrR5J7Hx50xOdea/6PB89hhjqA5MTnI=)
2: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: mNeKhGDr5OIwX48gz+/DRhUerI2kb4WMdwSP8qCilUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:78:c6:8c:48:47:3e:5c:fa:af:e7:86:d6:4d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Validity
Not Before: Mar 25 18:01:19 2026 GMT
Not After : Mar 26 18:01:19 2026 GMT
Subject: CN=00291239ceec76af8aa3e2ae493580ed4a198c08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:45:f3:1b:21:4c:a5:05:fe:2e:0a:8d:51:
c1:25:98:30:18:0e:4e:5b:89:67:77:4a:e0:d9:ca:
c0:de:3e:5c:46:da:c7:f6:56:dd:38:8c:1e:e6:d0:
f9:d9:95:47:21:8f:05:c9:c5:37:96:dd:63:99:ed:
b2:be:91:60:d1:c4:b5:64:fd:d4:1d:04:44:c3:97:
b8:56:2f:f5:fe:a2:bc:3e:18:9f:3b:ec:62:7a:b5:
ca:17:18:c3:e0:5a:45:be:91:b6:f6:f3:11:d0:cc:
0a:57:8d:8c:b9:61:41:97:13:64:dd:e8:42:a3:0c:
7c:8c:a0:e3:2d:38:ff:d6:04:36:af:5e:cf:be:e3:
d5:35:7f:75:47:22:03:68:61:cc:f6:16:d9:9a:3e:
f4:5e:46:d0:c4:b5:60:67:5c:4a:e6:f3:d1:09:a8:
b7:77:5e:8f:64:0d:d8:74:09:7b:37:37:d0:cd:5b:
ce:2d:36:8d:84:12:a9:32:9c:da:6f:5b:4b:97:55:
c3:33:a7:3a:53:4e:c1:ab:2e:9f:16:49:4b:07:5a:
c5:46:61:0c:c9:72:c5:c4:cf:14:84:95:d3:9c:5b:
ee:e0:96:87:a6:83:ca:7e:17:ea:e0:77:50:ac:ce:
70:ec:c8:25:b3:ef:c7:84:ae:83:cf:3c:d3:8f:18:
60:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:29:12:39:CE:EC:76:AF:8A:A3:E2:AE:49:35:80:ED:4A:19:8C:08
X509v3 Authority Key Identifier:
keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:2d:2e:75:e2:2d:e1:2b:a3:96:33:2d:19:9b:ea:2c:6e:22:
6a:92:1a:08:e0:0e:ef:76:d3:43:cd:3f:d2:3e:9e:70:ea:6f:
91:64:a5:2c:e0:23:39:6d:05:c7:71:61:ad:71:92:ef:ce:ad:
a1:43:7d:6b:98:f5:ee:6e:3a:0c:95:9e:47:84:21:33:50:4c:
3e:b0:d1:20:19:0f:ef:2c:f9:04:e9:5d:d3:88:05:70:69:96:
a4:c3:ab:1e:51:d0:fd:d3:ff:e8:92:24:53:f6:ac:27:69:54:
88:88:3d:01:25:76:0c:8f:44:79:2d:7b:84:34:09:27:4b:a9:
06:e8:52:59:62:b7:02:31:7a:8a:35:81:18:9c:6b:e1:38:4c:
39:bf:c2:9d:a6:9c:4c:2b:8f:35:93:44:c4:b0:ee:82:f8:84:
64:30:02:ef:04:14:56:0c:b7:bb:81:86:d6:c5:22:6c:fb:92:
7a:29:66:da:be:86:98:1e:47:08:c3:8a:8d:68:58:f6:82:e3:
4b:78:47:e0:6e:59:59:ab:8c:cb:ac:24:29:91:0b:d8:c8:bf:
db:d3:79:63:4b:d0:63:ed:69:e4:40:3f:fa:b9:c4:58:69:34:
65:06:50:48:36:78:5b:9a:cb:d6:49:f5:a8:c6:35:2e:62:00:
56:db:06:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:48 2026 by rpki-client