Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
File: iKslD4208gR6QBWFwmTzjA4ih_4.mft (raw, json)
Hash identifier: mgdMA5zsHWi10uNmHV1yRYk2weL5VIUGrooEDt75L+E=
Subject key identifier: 95:1C:52:AE:9A:D1:EE:A0:A8:58:21:3B:E9:AC:4A:75:E2:56:D9:9D
Authority key identifier: 88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
Certificate issuer: /CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Certificate serial: 019D27DFE262A83A51646B825F8AAB2F2573
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
Manifest number: 16B3
Signing time: Thu 26 Mar 2026 02:01:17 +0000
Manifest this update: Thu 26 Mar 2026 02:01:17 +0000
Manifest next update: Fri 27 Mar 2026 02:01:17 +0000
Files and hashes: 1: iKslD4208gR6QBWFwmTzjA4ih_4.crl (hash: bcywoysZAT8jcDcc6o4Dtjfmmls7OjG0i485Qalnmhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:e2:62:a8:3a:51:64:6b:82:5f:8a:ab:2f:25:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Validity
Not Before: Mar 26 02:01:17 2026 GMT
Not After : Mar 27 02:01:17 2026 GMT
Subject: CN=951c52ae9ad1eea0a858213be9ac4a75e256d99d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b1:6e:d4:8c:b9:a9:0d:e7:48:46:5d:0b:9e:
2d:25:66:ac:6a:c4:a3:9a:19:92:0f:f2:33:61:72:
9c:d1:85:11:96:92:54:f7:26:de:16:82:b8:09:0a:
81:76:48:59:db:50:34:d8:98:7f:2b:1a:9e:8f:8c:
95:91:e2:a0:03:a5:16:22:74:84:10:58:97:51:fc:
cd:d7:35:54:70:52:68:9b:5e:84:23:23:3f:d4:a8:
c9:22:39:53:b4:d3:76:0b:8f:cf:dc:d4:2f:57:c0:
82:0a:7f:3e:69:aa:54:4b:98:ca:7d:31:cc:70:f3:
e6:5c:44:63:60:79:8e:52:58:29:b3:be:eb:a2:c7:
a9:92:b2:33:ff:e1:b8:99:f6:b7:bf:91:ec:7f:02:
fc:3b:6c:6d:a6:d7:c7:e3:ef:f7:66:22:b0:c9:21:
31:fa:37:81:e7:87:a1:c6:f2:c0:04:c3:85:63:36:
9d:70:d4:ce:b1:0b:82:97:39:b2:a2:b1:b1:b2:af:
4a:80:7d:4d:03:ed:46:49:8b:a1:13:1b:01:4b:ee:
a3:51:76:7c:44:57:4f:89:e2:2b:e1:b9:3b:6e:2b:
7e:17:d0:e2:3b:42:6d:b7:73:57:5c:b4:c1:c4:eb:
cb:3b:b7:a0:39:45:5f:b7:8e:7c:52:7e:1e:00:36:
6a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1C:52:AE:9A:D1:EE:A0:A8:58:21:3B:E9:AC:4A:75:E2:56:D9:9D
X509v3 Authority Key Identifier:
keyid:88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:c6:8c:00:af:99:8a:e3:d7:c1:b6:90:12:e9:9d:50:49:5c:
e6:1a:a7:2c:ac:81:31:a7:06:52:d6:3c:91:49:fc:c6:a2:21:
38:87:89:7c:89:e3:8a:62:ed:eb:1f:16:64:ae:84:f6:5e:2e:
5f:fb:35:f1:83:21:17:01:52:c4:2a:f6:62:8c:f3:4b:c8:1a:
ab:ea:8a:73:5b:c4:9f:aa:00:e4:60:0f:95:ce:4e:c9:c9:22:
bc:14:c2:e1:54:1f:fd:88:9d:b4:6a:ef:45:15:ed:b9:6d:5d:
93:c6:88:8a:0a:c9:96:90:82:ed:a8:17:e7:f7:ad:96:1a:a5:
12:f8:99:a7:cf:fe:32:82:c2:6d:5c:4b:97:c4:c9:b0:e8:22:
ab:79:b3:86:59:42:a6:40:6e:b6:a2:60:67:95:47:3c:a7:45:
cb:f2:99:2c:8e:a1:10:a3:41:51:8b:77:9c:85:d7:19:77:f2:
e1:df:63:bc:e5:49:43:d9:9c:13:fd:a0:f1:63:20:da:80:bd:
76:7f:60:40:c4:84:66:49:7d:cc:be:15:23:0a:c4:59:2d:c7:
8f:a4:9e:86:b1:30:c7:3c:68:6e:d2:00:f9:14:2f:3e:2e:cd:
c9:3d:a2:a2:83:41:12:da:ce:47:a3:a9:2e:a1:a0:83:c4:63:
81:b0:75:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:18:33 2026 by rpki-client