Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
File: iKlKQUDhmzIGP8bnefWTFKdKDFE.mft (raw, json)
Hash identifier: YT+AHkePwY1ikhUS7BEHovmpAzYz5bAo6c50APZi+x0=
Subject key identifier: 2F:13:C7:B5:68:EE:3A:16:D0:52:75:23:00:25:6C:09:B1:33:6B:0D
Authority key identifier: 88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
Certificate issuer: /CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Certificate serial: 019D2D3D16F67B7E8BFF1F21039D87E68970
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
Manifest number: 188B
Signing time: Fri 27 Mar 2026 03:01:11 +0000
Manifest this update: Fri 27 Mar 2026 03:01:11 +0000
Manifest next update: Sat 28 Mar 2026 03:01:11 +0000
Files and hashes: 1: JwfUROw3lqJXIl3DNT5lBc7LOxw.roa (hash: RwUUyhKUGl1YtmMqC40VRjNNfmuqLqm03MhoJovC+/I=)
2: iKlKQUDhmzIGP8bnefWTFKdKDFE.crl (hash: iXSb+76To3lvTGq/cgg7t+8sYqsinzX1jibXQ2ye7Ms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2d:3d:16:f6:7b:7e:8b:ff:1f:21:03:9d:87:e6:89:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Validity
Not Before: Mar 27 03:01:11 2026 GMT
Not After : Mar 28 03:01:11 2026 GMT
Subject: CN=2f13c7b568ee3a16d052752300256c09b1336b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b4:e1:2a:cb:d7:0c:92:32:22:64:d0:b4:41:
c1:fe:7c:f9:22:b1:0f:d9:58:95:76:27:f6:65:a6:
5e:9e:8b:5e:7e:60:25:bc:73:34:3c:d4:0a:18:de:
ff:22:ee:22:d1:3e:2f:13:5f:55:50:a5:9d:f0:6a:
77:4c:31:1a:57:38:6c:92:7e:a4:f8:c3:7d:28:5a:
07:9a:5b:ec:dd:2a:14:03:0a:f3:c1:4c:23:29:b5:
30:4d:11:09:50:33:52:e2:44:16:53:9e:96:41:75:
70:12:e5:38:63:94:6b:01:ef:6f:c0:a0:fb:70:42:
d3:bb:d0:f8:15:32:09:19:90:65:b3:d6:5b:61:54:
e3:93:b3:9c:51:21:e8:16:4e:34:3f:f1:c9:c8:64:
b7:aa:b1:fc:74:2a:55:04:9a:08:b2:b0:f9:0d:46:
6c:b0:f5:69:02:93:0a:18:fe:b3:4e:91:47:95:2a:
21:cf:b6:50:47:18:b1:f6:ff:a6:1f:8d:a7:9d:e9:
02:65:51:0c:df:cf:df:84:b5:52:29:5f:40:c4:c8:
db:3f:2f:ce:26:97:a4:40:d1:4b:b8:8b:ba:5e:f6:
29:41:da:3b:91:d5:a8:02:96:48:c7:ff:10:a4:b4:
e1:06:04:86:53:71:99:5f:d3:9c:d3:7e:35:e3:ef:
dc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:13:C7:B5:68:EE:3A:16:D0:52:75:23:00:25:6C:09:B1:33:6B:0D
X509v3 Authority Key Identifier:
keyid:88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:aa:c1:6e:d5:87:41:48:80:e9:27:b8:0f:c5:24:40:3b:dd:
e1:62:cb:60:ef:8d:94:6b:c3:90:77:ea:4c:87:5f:bd:2f:2d:
f5:49:73:e0:43:93:d1:40:28:6e:14:05:90:2f:74:ea:5a:be:
9b:ca:3a:cd:1d:d2:6c:9a:23:5c:08:9a:de:e2:72:f1:56:83:
16:a8:9d:7a:f3:07:96:8a:13:e1:a6:23:4c:95:6c:59:95:e2:
77:8b:fd:75:34:d7:1a:04:ac:46:50:3f:dd:5d:24:ac:b9:02:
1d:24:cb:d2:c0:57:e9:d2:a9:a1:e6:99:fe:77:f7:c8:49:85:
b9:ff:43:eb:ec:17:bf:9d:fb:60:3f:b6:39:c5:bb:12:51:51:
fb:f6:a1:78:84:d3:c3:20:2a:f3:82:49:2f:6a:08:9d:5e:c1:
e0:eb:48:23:8d:1a:3a:53:7e:76:6e:61:47:1c:5c:e8:7a:39:
58:10:06:3c:8f:28:4a:7a:b8:1b:a1:e1:64:83:03:58:68:35:
a2:62:f0:42:97:ac:ef:6f:06:75:42:59:20:ce:d8:5c:89:60:
a0:4e:e5:f0:8c:24:9f:9b:f6:76:24:98:ad:51:35:b0:07:35:
f3:a5:2b:5f:1f:17:e5:f3:b9:3c:1e:31:da:a4:1f:c3:a0:58:
f8:b0:25:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 07:12:04 2026 by rpki-client