Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
File: ilUqhuMbaeXVMg7egdNLsSikXO4.mft (raw, json)
Hash identifier: SmfHCAEFzl9DOOiLuws26OQYg2RKVMxfxUYOMEItGkY=
Subject key identifier: 1D:D7:7C:E2:EE:59:29:07:47:79:1E:09:C4:52:50:CC:27:97:62:AB
Authority key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
Certificate issuer: /CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Certificate serial: 019D273AEE528779A80C13E43932D57A0084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 23:01:06 +0000
Manifest this update: Wed 25 Mar 2026 23:01:06 +0000
Manifest next update: Thu 26 Mar 2026 23:01:06 +0000
Files and hashes: 1: XxSdnjPnpzy5LyGftSstm6-fmZk.roa (hash: W+0II2qd7g6eEZycD1RXmyb9DYBIh88Zg19DWlRL1dE=)
2: ilUqhuMbaeXVMg7egdNLsSikXO4.crl (hash: RBj8PPyHz6byC0m7sR+PO2kg9kKLEIgFJ6pv54cBJS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:ee:52:87:79:a8:0c:13:e4:39:32:d5:7a:00:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Validity
Not Before: Mar 25 23:01:06 2026 GMT
Not After : Mar 26 23:01:06 2026 GMT
Subject: CN=1dd77ce2ee59290747791e09c45250cc279762ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:04:df:f5:99:bc:02:17:40:f5:86:ca:0d:b7:
d7:41:2c:bc:26:65:fc:6e:94:0e:28:0d:ac:ab:20:
b0:3b:75:c6:05:1d:85:11:ec:ae:10:5f:20:63:d3:
31:5f:a0:7f:72:16:2e:63:ee:a0:d2:98:9c:51:4f:
23:6f:f4:de:e7:86:57:25:d5:18:63:91:b9:6a:0d:
91:65:17:be:a8:06:01:ea:2b:51:a1:bb:e7:1f:ca:
9a:be:1b:c7:8b:c4:b4:62:4b:9f:f4:d0:d7:37:ba:
16:87:2b:d7:76:74:86:84:0e:42:ff:55:ae:ef:ba:
84:8a:e7:3e:a2:8f:ec:73:e4:b4:27:16:f8:70:7c:
18:3f:3b:d3:4a:f6:ec:ad:4f:49:71:42:80:1a:df:
3f:e5:7a:b2:fa:f5:cf:6f:cf:e4:11:3a:48:af:8b:
a8:93:cb:4b:bc:81:84:37:5e:4d:f0:74:32:76:0e:
29:90:af:d9:38:e4:3b:ef:5e:c2:89:3e:d9:2d:e4:
00:4a:be:d2:14:84:a8:18:ba:a5:0a:9e:c4:94:e5:
46:2b:8f:8f:37:64:ad:0b:54:b6:ce:a4:d9:81:1b:
b8:c8:c2:8b:1e:80:ac:59:54:1e:11:19:da:41:db:
b6:1a:5f:9f:1d:66:1f:de:c6:28:c5:99:fa:9e:aa:
a7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:D7:7C:E2:EE:59:29:07:47:79:1E:09:C4:52:50:CC:27:97:62:AB
X509v3 Authority Key Identifier:
keyid:8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:27:bf:8c:a6:c6:2e:06:93:99:46:a9:a5:ef:13:50:7f:64:
31:b0:ff:38:3a:90:b5:01:26:9a:ef:63:be:9a:15:91:15:1d:
5b:c6:7e:9a:8f:16:a0:1e:41:cd:17:9b:ff:f0:e4:4a:70:95:
f7:68:e2:e9:5a:9d:c5:b9:d1:f7:d5:42:73:ef:f6:63:56:de:
e7:50:53:4f:60:e4:0f:96:28:e4:95:4c:c6:7b:1b:3f:cd:40:
7e:a5:e5:5b:22:c9:be:66:fa:b8:2e:9a:e7:f8:48:fa:56:33:
d2:96:7e:df:12:81:71:62:29:1d:75:9c:ac:89:50:60:ac:2d:
12:1c:f4:34:d2:1e:f1:9a:6c:51:02:58:80:5b:e2:36:59:02:
d6:09:e6:c2:4e:08:d2:ba:bb:99:76:5c:0f:a9:74:77:86:10:
a1:07:a1:45:df:c5:ea:ba:43:b0:41:fd:31:0f:d1:c7:78:d0:
3d:b2:c2:1d:b3:8e:e7:1a:07:e5:50:be:56:7a:28:c2:10:09:
34:ad:d8:68:0d:df:7e:ac:44:6d:bf:70:11:1a:12:db:6e:52:
d5:32:c4:f8:5f:c6:9c:dd:d7:83:d3:27:f1:8a:5f:29:ed:f5:
2c:73:7b:fc:bd:08:b1:37:2b:be:c3:47:86:00:64:c6:16:e5:
6c:3e:13:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:28 2026 by rpki-client