Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json)
Hash identifier: A3pMaAskgjSM+1RAqK4KZieSmXzOsNsoNaMZ8f7NscE=
Subject key identifier: A0:61:74:9B:5F:84:78:7B:DD:7A:A7:5A:7A:49:3C:A4:73:D0:ED:65
Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Certificate serial: 019D37C10C38B21A931D0321D6399513EB58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
Manifest number: 16B8
Signing time: Sun 29 Mar 2026 04:01:31 +0000
Manifest this update: Sun 29 Mar 2026 04:01:31 +0000
Manifest next update: Mon 30 Mar 2026 04:01:31 +0000
Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: xXVCO1o/41gHnRZIoj0zxQmxH3UbZQ+5H8RBAD8TIN8=)
2: VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa (hash: P3BuUVRGKsw3eiebCq9ip9oGlC6+nCgvMNwUPBdCFVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:0c:38:b2:1a:93:1d:03:21:d6:39:95:13:eb:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Validity
Not Before: Mar 29 04:01:31 2026 GMT
Not After : Mar 30 04:01:31 2026 GMT
Subject: CN=a061749b5f84787bdd7aa75a7a493ca473d0ed65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6b:01:4a:43:27:6d:e3:39:5d:4e:6f:c9:d5:
0e:9c:bf:6b:34:65:5a:61:70:b2:be:e1:de:02:8f:
18:78:05:55:3f:ca:d2:a5:f3:94:f8:c1:57:e8:4d:
c7:ef:31:33:e5:6f:c5:c7:86:fe:32:fc:27:38:ae:
83:02:1f:b0:2c:7c:00:dc:16:11:44:b2:f3:4c:ae:
41:17:2d:bc:d7:e2:bf:78:0a:74:ac:3f:83:7d:b5:
c6:6d:84:fa:1c:be:bb:62:a9:30:6c:eb:6b:cd:fd:
65:9d:aa:51:29:05:de:36:60:da:6b:9f:19:e8:04:
0c:9b:e1:d3:0d:e0:a0:ca:0f:33:10:5d:e5:a4:40:
fd:07:a9:06:89:ef:6a:37:01:e2:70:08:19:e4:ec:
61:96:5d:05:8f:2b:cb:a0:79:98:35:d6:a8:f1:a7:
da:8f:56:d2:1e:b4:19:42:97:41:46:7e:46:a8:76:
90:99:06:27:2c:95:02:7b:70:46:f8:39:52:93:74:
2e:68:a7:34:79:cd:95:30:e7:18:6f:fb:36:79:2f:
49:4d:47:ff:2b:be:66:f7:6e:e7:9b:ec:e0:47:db:
b2:67:95:c3:c5:12:2e:4c:1f:67:bf:8d:6b:33:2a:
61:46:a2:4c:19:7b:89:e0:49:20:27:ad:68:09:c2:
9a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:61:74:9B:5F:84:78:7B:DD:7A:A7:5A:7A:49:3C:A4:73:D0:ED:65
X509v3 Authority Key Identifier:
keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:76:b4:3a:88:c9:e4:0e:a6:5d:3b:f3:3a:33:f5:da:ee:99:
a5:a4:c5:f9:ee:33:f0:b5:74:d1:9d:37:c2:c8:08:a3:07:46:
4f:72:71:6f:e3:06:df:44:fb:e7:97:4f:b0:97:ec:10:1d:0c:
22:8d:17:f0:e2:50:85:4d:58:8d:da:92:b4:0b:c4:92:d0:35:
97:ba:1f:8c:a2:a5:c6:1d:29:a7:c2:e5:56:8b:ed:2d:ae:33:
5c:66:58:ea:73:a1:4c:16:1b:8f:0c:6a:f1:31:39:75:be:3a:
7b:f3:c7:f7:d3:46:72:10:bc:f0:de:ed:81:ef:a2:59:8c:03:
fd:14:53:c5:ad:50:19:23:b8:15:99:9b:e7:80:8a:00:bf:28:
ed:d2:72:69:01:87:82:4c:a3:66:73:4e:3b:ba:96:a0:a7:c5:
79:4e:1d:5e:6a:69:f1:02:62:3d:27:47:11:80:3e:72:05:25:
96:f8:47:ad:a4:5d:e3:d0:7b:26:f2:f9:97:2b:24:aa:ac:0c:
4a:e7:c2:4f:29:36:7b:d8:dc:8f:8b:ae:49:2b:8c:39:44:db:
75:8d:73:53:76:5c:b0:bb:6f:5e:ba:44:17:85:0d:b6:09:42:
d1:51:4f:0d:1a:65:1d:01:77:07:ca:29:f3:64:eb:7a:1d:1c:
81:9d:33:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:34 2026 by rpki-client