
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
File: iKlKQUDhmzIGP8bnefWTFKdKDFE.mft (raw, json)
Hash identifier: uy/W2oh+5JCvmyWWJuuZTiow4JyecLrHX7N3yTAmjKQ=
Subject key identifier: 64:B9:BA:34:A9:9F:FD:D2:58:6D:9A:55:24:D8:E4:EC:85:63:BF:35
Authority key identifier: 88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
Certificate issuer: /CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Certificate serial: 019D2B4E15935869195916ED7119A6CAF8B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 18:00:30 +0000
Manifest this update: Thu 26 Mar 2026 18:00:30 +0000
Manifest next update: Fri 27 Mar 2026 18:00:30 +0000
Files and hashes: 1: JwfUROw3lqJXIl3DNT5lBc7LOxw.roa (hash: RwUUyhKUGl1YtmMqC40VRjNNfmuqLqm03MhoJovC+/I=)
2: iKlKQUDhmzIGP8bnefWTFKdKDFE.crl (hash: /DjwTeDWXFJ3IPx37JuUbKi+3mNoLe0+gsxYHDStyKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 18:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:15:93:58:69:19:59:16:ed:71:19:a6:ca:f8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Validity
Not Before: Mar 26 18:00:30 2026 GMT
Not After : Mar 27 18:00:30 2026 GMT
Subject: CN=64b9ba34a99ffdd2586d9a5524d8e4ec8563bf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d7:48:87:7c:a8:06:92:38:c1:97:6d:fc:d0:
c8:aa:c1:3c:a1:80:be:e5:19:61:35:bc:57:47:45:
dd:ec:c8:7e:e4:7f:e2:e8:71:2c:25:a4:5b:a4:50:
e4:04:95:16:ac:7b:3b:2d:d3:09:07:fd:2d:97:9c:
33:c2:d7:ce:03:0b:8c:14:0c:ad:9f:d6:8b:db:2e:
f0:ca:b5:dc:f9:c9:e7:f3:cf:f8:9d:0d:dc:29:d9:
5d:ee:8d:4b:7e:6e:ca:73:5c:d1:47:49:0d:8e:21:
ad:3d:02:1a:95:d5:fd:3e:fd:e3:5a:40:39:5b:8a:
9a:84:99:12:56:04:ce:d7:76:94:1d:be:fa:27:b5:
76:0b:0b:aa:ef:8d:29:ac:56:16:a6:4a:16:cf:a4:
44:6e:e1:4e:54:e9:42:b3:a2:09:68:27:dd:a2:7c:
38:f4:06:42:10:80:2d:81:f5:22:56:27:99:2c:71:
79:87:53:76:d2:35:71:7e:ee:ab:93:6f:3f:4b:bf:
e6:f1:9d:43:93:38:cb:5e:1c:6e:3a:3b:54:7f:d0:
df:c8:b2:98:05:54:8e:f2:c5:79:05:05:32:3c:73:
92:e7:2b:ce:3d:c5:9b:8a:4d:3f:48:75:78:ab:ef:
28:c7:c4:5a:44:65:0f:8a:9e:6a:91:7e:d2:a8:f1:
89:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B9:BA:34:A9:9F:FD:D2:58:6D:9A:55:24:D8:E4:EC:85:63:BF:35
X509v3 Authority Key Identifier:
keyid:88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:bd:28:4f:04:72:26:6f:d1:7d:c2:7c:8b:a9:70:90:f9:08:
7d:ac:b7:12:a0:7e:ce:a7:cb:7e:83:a0:11:db:b9:8c:4d:18:
cd:da:8b:4d:87:c3:d0:5e:e0:f6:24:03:3e:c7:66:c5:02:de:
77:09:21:f9:e8:4f:dc:06:d1:9e:1d:6c:a1:ff:39:b4:57:21:
15:42:fd:c5:ad:86:52:aa:f7:c1:1d:b8:c8:98:86:85:31:96:
52:5f:bc:6f:9d:7f:68:f0:01:a5:18:6a:5f:72:08:92:cb:51:
da:79:c7:bc:d7:30:04:be:bb:34:6b:35:48:f7:8f:fe:b5:cb:
8a:40:9a:30:57:0c:fd:ea:8a:59:0c:10:ca:63:3d:b4:a1:8f:
6b:af:41:ca:ee:8d:47:c7:da:ca:73:af:0b:46:43:b2:e4:2f:
d9:ed:73:bd:24:81:f5:48:b0:b3:7c:e1:66:d7:ac:36:30:8c:
ca:54:74:be:d9:84:0d:44:ab:fd:9c:3a:7f:7b:93:18:bf:73:
36:2b:bc:00:5f:73:42:aa:67:92:7b:c6:5b:86:45:68:82:78:
60:ea:06:81:7c:c3:0a:b0:f8:67:04:dd:05:32:d2:2e:60:0f:
3a:0e:3c:da:96:4d:75:8a:1a:7c:6d:3d:1d:50:19:06:c6:62:
52:02:95:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 04:04:10 2026 by rpki-client