Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft (raw, json)
Hash identifier: jwYvGE1ifqxCP0NVrFAbLIVL33WiGb1RSsKJxrh1O3I=
Subject key identifier: DA:28:98:C7:7E:7D:B8:4F:78:C2:DA:EA:34:33:1F:D1:4E:13:FD:04
Authority key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
Certificate issuer: /CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Certificate serial: 019D3753081227F30E172F0995D7BD109FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
Manifest number: 0BD7
Signing time: Sun 29 Mar 2026 02:01:21 +0000
Manifest this update: Sun 29 Mar 2026 02:01:21 +0000
Manifest next update: Mon 30 Mar 2026 02:01:21 +0000
Files and hashes: 1: I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl (hash: uhCr16jiFWdGk0z3jk8sPWbT0mVqbjMVaOr0EuRYcHk=)
2: vvIw8F-IOEioMYu93B5YO0Hq9vk.roa (hash: WtTZswHjYBJIgKk4bHAyXKnVfNJT2/jg2Qz9ZX4kuRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:08:12:27:f3:0e:17:2f:09:95:d7:bd:10:9f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Validity
Not Before: Mar 29 02:01:21 2026 GMT
Not After : Mar 30 02:01:21 2026 GMT
Subject: CN=da2898c77e7db84f78c2daea34331fd14e13fd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cb:7c:e9:b5:ba:ff:f3:64:42:ac:9b:2d:3a:
bd:70:6b:95:d6:0d:42:5d:74:51:fd:74:c9:33:1d:
c2:25:04:55:78:04:d6:34:b6:16:2a:55:70:f5:1e:
79:1a:f9:64:13:bc:57:a0:8e:80:a8:dd:cf:87:d8:
a8:da:9f:e7:75:d3:d1:8d:66:26:69:b0:18:3b:eb:
c8:6a:8d:71:62:94:8b:6b:32:98:83:c9:52:1b:d4:
f2:b7:f0:46:eb:4f:4f:75:b4:a5:60:89:5c:27:6b:
35:af:3d:1b:24:eb:85:d2:71:31:fd:43:0c:60:6a:
19:53:73:58:8a:5b:fa:1c:5b:d1:c6:f3:7d:0b:40:
33:bf:89:39:1d:7f:26:c7:07:a6:ba:38:5e:9b:8c:
9a:e1:a3:cc:1d:aa:36:ae:d4:d0:e3:82:cb:a5:ad:
67:03:a6:34:59:95:99:53:2d:3f:69:f5:68:3a:3f:
b3:a2:f5:51:3d:79:db:51:77:b1:05:dc:e8:4b:7a:
be:d7:5c:d4:55:0f:ad:43:24:68:31:05:ef:54:9f:
0c:d4:22:0b:f5:54:31:10:66:47:a7:60:6c:b3:72:
2e:11:8f:51:8b:04:54:89:b4:68:dd:fb:79:7b:e8:
6a:5c:86:f3:bc:3f:17:d5:b2:d4:5b:b8:ee:33:34:
d2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:28:98:C7:7E:7D:B8:4F:78:C2:DA:EA:34:33:1F:D1:4E:13:FD:04
X509v3 Authority Key Identifier:
keyid:23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:01:45:b8:e5:6f:84:a2:55:69:df:8e:0c:7a:c9:a2:69:96:
f7:73:f6:18:b9:48:ea:c7:22:53:13:ef:72:ea:39:67:15:42:
cd:f3:48:c6:f0:d8:1f:de:3d:a9:ab:9b:ae:b0:5a:c2:22:c2:
fa:bb:e1:52:4e:9f:77:2e:0c:f0:89:18:b8:33:60:a5:9f:b0:
cf:d6:58:30:67:35:13:f9:61:a1:ec:fc:7b:57:22:c4:de:b9:
c5:2c:0b:fe:60:a6:13:e9:66:5c:d6:72:b6:06:52:ac:65:af:
32:8d:83:78:39:92:57:47:ec:d9:a9:61:e3:6d:53:ff:d7:a3:
2b:e7:ec:4f:51:eb:83:ea:88:10:8d:3c:cd:f2:5d:10:34:a8:
4a:2c:c8:47:94:c6:27:02:e7:36:d0:ec:10:4f:4e:80:48:9c:
62:1a:14:3e:0a:c4:90:a0:84:8a:a2:0c:a9:a4:32:fe:76:8b:
cd:b6:a0:45:1c:9e:56:f9:5a:d2:3f:a5:f0:01:9e:08:3b:3b:
61:2a:10:a8:fd:c5:c5:0c:74:c4:73:5c:7a:3e:c7:1c:f1:65:
d1:b9:bf:50:a7:f5:5e:e0:80:97:9e:29:7d:f5:e6:96:17:2d:
d5:d2:67:10:c8:1c:62:b3:99:d5:4c:46:a9:a9:b3:e2:86:96:
2b:80:76:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:42 2026 by rpki-client