Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
File: IwQieKfGvGylbuevokosgfPcvvs.mft (raw, json)
Hash identifier: lnt7IVf1qypgLR45blvjEGRu8KxMQaVFcm9vwu+PXm0=
Subject key identifier: D3:FE:DD:57:69:8B:09:72:3D:D7:85:51:CF:79:8D:A1:15:5A:0E:12
Authority key identifier: 23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
Certificate issuer: /CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Certificate serial: 019D27E04111071B101E9DDBBC54019FAA2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
Manifest number: 0239
Signing time: Thu 26 Mar 2026 02:01:41 +0000
Manifest this update: Thu 26 Mar 2026 02:01:41 +0000
Manifest next update: Fri 27 Mar 2026 02:01:41 +0000
Files and hashes: 1: IwQieKfGvGylbuevokosgfPcvvs.crl (hash: 5/uZTicqE3Q8xp0T7+8jl0jnhh0dY0ZEt4coY0NmaEY=)
2: bbIN0Dzg266kgD3gaOLxYwDdIGk.roa (hash: UrKnfGvjgujZo+TnNEkx5AvYr9F7seRK/OurdxNlQvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:41:11:07:1b:10:1e:9d:db:bc:54:01:9f:aa:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Validity
Not Before: Mar 26 02:01:41 2026 GMT
Not After : Mar 27 02:01:41 2026 GMT
Subject: CN=d3fedd57698b09723dd78551cf798da1155a0e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:9c:37:ed:07:d6:7d:af:61:cb:48:2e:d8:
ab:9e:30:8b:c1:41:53:6e:25:5b:25:3a:25:c8:c2:
fc:a8:35:8e:a2:58:64:0a:9c:e5:68:54:88:cc:8c:
d5:7b:de:77:81:45:65:9b:6a:8a:d8:7c:83:27:71:
c5:13:5d:ce:f0:b2:4e:13:c8:40:ec:e1:ac:01:3a:
aa:8a:49:a6:3c:95:38:c5:3c:97:58:83:00:e9:06:
e0:f0:85:2f:5b:64:d3:a0:b1:22:c8:78:58:47:ae:
89:58:f1:25:3b:66:6e:26:ff:05:f6:05:85:d9:a6:
3a:53:22:e9:41:d6:ab:d5:d7:f8:04:b7:65:b8:71:
9d:d0:8f:dd:e2:c4:85:1e:7e:22:8a:6c:af:d0:3d:
59:68:48:24:ef:14:f7:c5:0f:d6:49:75:17:9b:36:
8b:7c:01:1a:cf:d3:7f:33:67:ae:ab:31:a5:4a:ea:
26:25:40:b2:54:11:3f:59:9a:a9:68:4b:a5:af:e4:
b2:e4:74:09:73:37:02:96:19:0f:dc:62:50:37:b9:
c8:c5:45:b4:c3:ed:66:82:53:0f:ca:62:c5:15:e8:
b3:d6:c7:e9:83:d0:28:00:c2:7e:7a:6d:32:89:b4:
a1:1f:af:ba:d1:6a:a9:44:9e:ec:dc:f5:f9:b4:bb:
47:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FE:DD:57:69:8B:09:72:3D:D7:85:51:CF:79:8D:A1:15:5A:0E:12
X509v3 Authority Key Identifier:
keyid:23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a3:28:37:28:2d:6c:13:b8:01:39:19:1d:cf:f1:84:3f:83:
12:bb:e0:25:0a:da:64:87:5f:b6:6d:1f:de:26:3f:fa:14:4a:
78:89:03:2e:ae:a7:6e:4c:af:e4:68:94:45:b4:e9:53:82:a9:
b1:5b:89:4e:97:02:74:18:6a:b7:29:b1:62:37:f7:c1:0e:d0:
fc:6d:ca:39:f2:b4:bf:cb:00:d6:db:8b:e3:01:63:f5:56:df:
a5:ef:90:cf:a7:c8:d2:f4:97:c1:d8:e6:d3:67:5b:8d:10:dc:
92:1e:8d:3a:1d:84:61:97:15:6f:79:e3:2c:9a:04:b8:07:45:
5c:3b:1a:33:e5:45:ea:35:79:3f:08:d1:25:b8:d4:01:0d:10:
ee:1c:2a:de:9f:54:d6:70:7f:b8:89:53:d5:e3:2e:f9:2b:66:
e5:f8:0c:74:5a:36:12:92:2a:3b:80:47:9a:cc:bb:5a:e4:81:
70:e0:59:38:73:fb:a2:b8:d1:78:fc:ac:22:a1:b0:7e:92:84:
b6:56:ae:39:c2:24:35:78:9b:bd:da:f2:98:e9:b1:51:13:86:
8a:55:09:fc:ae:5f:4d:cf:03:9c:83:95:2f:74:45:3c:e6:0a:
c4:a4:57:e2:a6:54:39:f9:e5:4e:f9:c0:67:e3:5b:f9:f0:73:
91:30:9a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:55 2026 by rpki-client