Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: w2u1ThU1mRQdh1sdXKMxgPjTQZtnEznPmE5BKNaomiA=
Subject key identifier: A5:BC:B1:7C:B0:04:57:C8:61:CC:09:3E:97:1F:D1:8E:CE:93:33:2C
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019CE4B5B59950FDE1C7156BB95E53773E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 1739
Signing time: Fri 13 Mar 2026 01:00:39 +0000
Manifest this update: Fri 13 Mar 2026 01:00:39 +0000
Manifest next update: Sat 14 Mar 2026 01:00:39 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: NLP9FHh61HDCKDOhL1e/KZP6okJEKr4Wsf7Ec01bk0Q=)
2: gDJ4Lp76yXybVk_hOXjmjT2yA0Y.roa (hash: TNUN3ffkTS+jn16rGNGRBs19tZhvUdCtK4/zEyf8nb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:b5:b5:99:50:fd:e1:c7:15:6b:b9:5e:53:77:3e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Mar 13 01:00:39 2026 GMT
Not After : Mar 14 01:00:39 2026 GMT
Subject: CN=a5bcb17cb00457c861cc093e971fd18ece93332c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:2f:df:b8:ec:69:a0:f8:ec:13:a5:70:df:
ae:a8:5e:75:10:cf:d9:e6:e6:8e:53:d7:da:d8:fc:
e0:f7:60:c8:af:b7:14:d2:ac:6c:fc:c4:7c:fa:47:
e3:00:4b:0b:02:98:cb:39:40:a2:21:e0:04:3c:5b:
79:c0:d2:90:20:16:73:84:59:e5:f7:24:ae:31:54:
b0:9b:c0:bd:88:02:c2:0e:db:e5:1c:90:71:10:6e:
e4:5a:4c:7f:b1:bc:44:94:b3:8d:d9:99:57:a3:b3:
1b:e9:07:8b:bc:fa:14:72:ae:98:40:22:78:fb:3f:
60:57:3c:3d:54:86:ca:cc:d0:42:64:8e:6c:1b:63:
88:9e:2a:b5:48:9f:46:9c:f9:c5:21:83:85:35:dd:
64:1c:f8:24:89:f7:a5:92:65:1d:26:71:5d:65:bc:
22:7f:6c:24:31:84:c9:06:8d:16:3f:e0:46:0f:0d:
eb:30:a2:af:2f:d7:a0:9a:f8:4d:50:1d:48:e5:52:
a1:6c:a8:f7:98:2f:57:56:29:4f:b6:0b:9a:8b:0b:
15:14:e2:1d:73:b7:b3:99:fe:07:f2:3e:30:f6:d4:
0c:55:c6:af:b3:96:46:a1:22:fb:e4:0f:79:51:ae:
67:50:a6:a7:81:da:78:e7:18:e1:d2:73:3d:58:78:
42:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BC:B1:7C:B0:04:57:C8:61:CC:09:3E:97:1F:D1:8E:CE:93:33:2C
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:d2:3e:07:c8:ef:66:f3:74:93:2b:f5:11:05:66:85:60:f8:
37:5e:e0:d5:d1:13:a1:20:02:cc:9c:c2:92:ce:db:15:06:9f:
dc:60:b0:cd:5a:67:e4:64:f8:39:e0:a0:c4:5d:b2:1d:e6:78:
9f:81:6f:fb:7c:dd:61:1c:8f:63:b4:99:c4:a2:14:83:cf:b4:
d1:92:a6:78:6e:19:e9:ba:a1:67:ab:ed:b9:eb:f7:1c:ee:b0:
72:03:ed:39:07:54:5b:db:0e:88:15:3b:b5:91:9e:f3:22:74:
ef:7f:5d:70:86:6e:af:76:91:39:ba:79:92:ac:ba:89:a6:13:
f4:6e:cd:4d:59:91:91:a0:6f:b4:9b:c2:ed:c3:b5:95:06:f4:
d5:a6:88:66:44:1d:c1:46:40:0e:96:02:66:70:58:8d:19:87:
6a:50:5c:12:35:65:b3:e2:46:7c:d1:53:fe:cc:df:bd:f8:c1:
ef:17:bf:0a:0a:05:9a:83:6c:a8:2c:9b:bc:f3:c0:d1:4c:04:
8a:f6:b7:74:24:03:c4:3d:a3:c4:a9:6d:37:72:a4:1e:74:69:
a5:db:95:05:b1:d8:cb:ca:6a:a9:93:0c:37:61:39:bb:2b:ce:
5f:6f:f8:67:c9:77:d0:22:79:ef:de:79:45:75:c8:6f:44:bc:
6d:db:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:51:37 2026 by rpki-client