Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json)
Hash identifier: HHfC3LM9wn9Gwge6pCvCwE/mukehRrYl4+crEvpM4Sw=
Subject key identifier: 8C:30:6E:CE:A3:09:4A:35:FE:CC:B7:25:A7:61:07:92:8D:B6:8F:32
Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142
Certificate serial: 019D265F83714AF039343632E95AF0811220
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
Manifest number: 0BCF
Signing time: Wed 25 Mar 2026 19:01:26 +0000
Manifest this update: Wed 25 Mar 2026 19:01:26 +0000
Manifest next update: Thu 26 Mar 2026 19:01:26 +0000
Files and hashes: 1: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: IpWjlit/zvrs9DPplZW1Cf8GGQ0fz9J3rxLnxzBU8lA=)
2: M7AsOPJRuDvyqpdVNAPIyt4dy4E.roa (hash: VA2KwTkb4NGqo/O9WoJ31YAHnrH27JkWDC9odiYJKyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:83:71:4a:f0:39:34:36:32:e9:5a:f0:81:12:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142
Validity
Not Before: Mar 25 19:01:26 2026 GMT
Not After : Mar 26 19:01:26 2026 GMT
Subject: CN=8c306ecea3094a35feccb725a76107928db68f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:b7:6e:f8:49:a0:98:20:bb:e5:98:b0:71:
57:c3:8b:cb:10:22:ac:48:6a:e1:11:c7:da:a9:f1:
0b:ac:db:f9:b2:21:da:6b:1d:4b:40:ce:a0:4a:69:
42:21:76:fe:9e:ec:ca:39:07:14:ed:a1:bd:ed:f2:
22:69:49:6c:5c:b8:2c:bf:49:25:0b:4f:41:89:ea:
8d:68:29:c1:c5:26:11:8c:2b:16:64:db:4d:5d:e7:
11:67:c6:15:8d:78:b3:3b:86:fb:59:bd:ff:52:d1:
20:f6:88:7e:61:33:b7:9d:e0:31:f3:6d:6a:2c:7c:
4f:99:5f:9d:59:56:b1:eb:29:30:90:8a:74:ac:cc:
59:5a:b7:e4:20:d5:45:68:1b:fd:58:8b:e2:aa:e1:
2b:66:8b:7c:8d:bf:3c:b5:48:c3:3d:cd:ca:2c:d4:
fc:43:ee:8a:04:39:7c:a6:52:bb:6a:46:15:a1:7b:
83:fe:63:57:36:b6:cb:54:04:58:0d:17:c2:46:a9:
b8:12:8e:d4:7d:d3:8c:12:ad:ac:b0:3e:eb:90:96:
e7:27:4d:e4:f9:4e:f5:64:fd:13:6f:ba:a7:13:20:
91:05:63:54:20:f4:85:c4:d4:f4:36:f7:0d:ac:e9:
77:5c:81:f5:7b:49:25:65:49:ad:b0:74:75:8d:f7:
a8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:30:6E:CE:A3:09:4A:35:FE:CC:B7:25:A7:61:07:92:8D:B6:8F:32
X509v3 Authority Key Identifier:
keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:3b:b8:43:b5:26:92:eb:36:31:ac:72:2a:81:14:11:b1:57:
d7:e6:91:f7:5c:83:29:b5:44:8f:30:27:0c:8f:f0:f0:d4:7a:
20:90:42:3f:52:dc:4b:ec:ab:a5:32:08:b2:c7:4d:ea:c7:3c:
d1:0a:61:97:cc:7f:d7:9c:24:32:32:d9:a3:29:0d:b5:c1:51:
5b:10:59:bb:ba:be:49:82:f1:5c:0f:bd:d7:b4:77:c2:11:51:
f0:da:2c:75:e9:52:0f:b6:32:c6:6d:56:19:8d:86:c1:fb:fc:
b3:31:e0:da:3d:a5:1b:70:f0:d7:8e:c3:f1:09:fd:82:41:53:
c5:bf:fe:e3:91:59:ea:f0:11:87:8a:82:43:ba:75:76:cc:41:
13:72:4a:44:26:1c:fd:e8:1d:a6:01:04:00:33:fc:20:29:55:
e3:5a:a7:17:36:85:22:49:e4:42:39:4f:87:06:21:f6:5f:9a:
30:cf:31:40:7f:c8:b6:57:86:28:f7:21:48:b3:72:f0:73:60:
0e:bb:39:b6:6b:c6:fb:eb:88:34:09:fa:66:42:dc:b0:c4:ce:
e0:da:48:13:f9:00:e5:4e:80:38:71:44:7e:15:a5:35:25:75:
16:7f:48:2c:51:4c:c7:4b:19:4a:58:0c:08:57:9a:06:3e:1c:
5a:0b:94:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:45 2026 by rpki-client