Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: nAVUootTzbnWrNmhl0bh/jzbrNQMwCo1oNVZ1igaU4c=
Subject key identifier: BD:44:5A:08:EF:03:B8:F1:D3:05:7B:3D:98:06:C3:22:36:6D:65:FC
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019D27DF85068E42C5618FA929E71B766B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 136B
Signing time: Thu 26 Mar 2026 02:00:53 +0000
Manifest this update: Thu 26 Mar 2026 02:00:53 +0000
Manifest next update: Fri 27 Mar 2026 02:00:53 +0000
Files and hashes: 1: V4V1l39T5s1HWbLvpZ_dNNrQqrE.roa (hash: 2VhJQ/68VuS0vWM3hQGdKSnDSrR+nJHlsrGkam4iQlg=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: QXY3e+jC3WkNuPUn7Om1iDMed0fxbAiFiy6I07XIed4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:85:06:8e:42:c5:61:8f:a9:29:e7:1b:76:6b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Mar 26 02:00:53 2026 GMT
Not After : Mar 27 02:00:53 2026 GMT
Subject: CN=bd445a08ef03b8f1d3057b3d9806c322366d65fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5c:a0:be:28:33:e8:a1:8b:98:61:14:61:b9:
0a:80:b1:24:11:ba:a3:ae:31:23:14:ac:6b:a4:97:
97:85:c0:07:e0:30:7e:2f:4c:34:a0:69:26:77:54:
50:ef:e6:d2:e5:80:b6:68:65:00:4f:b2:f1:cb:19:
1d:0c:ad:fc:37:b0:99:b9:30:bf:6f:40:30:89:b5:
28:eb:0e:39:dd:d8:e0:fb:3e:b3:e2:67:96:af:d8:
df:58:84:82:67:f4:45:57:4a:59:a7:72:cd:a1:b2:
3e:ad:dd:43:98:fc:c5:1b:6e:cb:7b:c1:f6:c2:67:
f2:56:0d:ba:5d:f7:39:88:a7:17:25:6c:2d:af:6e:
6c:0e:53:2d:0a:87:eb:4c:d6:d2:be:a8:68:d1:38:
43:42:42:b6:e7:55:cd:90:95:13:89:c2:25:41:d8:
df:a8:dc:94:6a:4f:68:e8:54:cf:f3:11:25:1a:3c:
0e:5f:7e:3c:92:2c:b0:b0:89:eb:9f:91:77:f3:48:
87:52:bf:1a:c1:9d:67:a0:29:1c:36:a6:50:57:e1:
eb:23:38:9d:7d:70:a6:39:a8:b0:1b:e9:49:ad:b6:
70:37:6a:91:f9:87:d1:23:b1:2b:79:91:e1:3d:70:
b8:26:50:14:0a:48:50:48:ee:85:df:fb:0e:b8:29:
c4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:44:5A:08:EF:03:B8:F1:D3:05:7B:3D:98:06:C3:22:36:6D:65:FC
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:28:70:2d:a3:29:92:b0:ef:05:98:b4:f4:87:7e:1f:20:0f:
22:48:b9:f4:ee:c0:bf:ed:f9:95:0f:ff:a5:45:40:1b:22:4f:
03:fd:50:34:48:48:2e:0e:a9:0b:4d:39:59:fe:de:50:5e:1e:
e6:12:69:3d:8c:08:11:a1:42:ad:8d:e1:f6:ca:6c:b8:3c:c6:
04:f5:89:55:29:1d:bc:1e:87:79:ee:72:b1:3b:46:6c:f0:35:
80:1f:b9:d4:ae:80:4c:72:dc:2d:d1:c2:6e:ff:7a:a7:94:43:
0a:a7:de:01:86:b4:4b:c1:d4:67:6b:a0:89:50:fc:7b:39:c5:
5f:83:ac:bd:57:0b:51:6d:a1:e1:dd:b7:c9:28:2a:d7:c4:72:
03:4d:16:f5:72:fc:c7:ef:2c:06:95:47:58:28:da:2d:60:48:
58:59:e7:5b:df:e7:da:8f:ae:10:37:70:e6:93:54:4a:31:1e:
fc:70:7a:3c:fd:16:a1:ce:d7:3f:a4:d5:d9:16:a4:bf:90:c2:
d2:70:94:83:85:c3:f2:c2:03:bf:b5:7f:2a:23:51:7f:7a:6e:
de:58:db:9a:98:f2:82:6c:d2:eb:4f:fc:91:fc:5f:d5:94:66:
4c:b7:f1:00:28:77:a5:07:e2:fe:b2:86:80:8d:0e:2c:1d:3b:
c9:fb:d8:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:38:23 2026 by rpki-client