Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: f4X0rfYp2rwhtvCX2zrF2JD8mj2bJUFb+ii0K+JKwXw=
Subject key identifier: E5:98:4C:48:98:C5:13:E4:28:89:67:A7:DD:6C:5D:AD:02:60:0E:5E
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 019D389C0DCB5B0FEC3DA0F9AD65914DAC63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 0852
Signing time: Sun 29 Mar 2026 08:00:44 +0000
Manifest this update: Sun 29 Mar 2026 08:00:44 +0000
Manifest next update: Mon 30 Mar 2026 08:00:44 +0000
Files and hashes: 1: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: JYh0IloGuFSbr5kp5+ICSdJrfHW+H1kSFfHxgScnT8s=)
2: u4vgRPiGJN_uy7XS4Ei6ANq07Xk.roa (hash: B983HqaReMNEcqs8+hdzrl8wmUkdYz1ezJd1jwO+3yE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:0d:cb:5b:0f:ec:3d:a0:f9:ad:65:91:4d:ac:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Mar 29 08:00:44 2026 GMT
Not After : Mar 30 08:00:44 2026 GMT
Subject: CN=e5984c4898c513e4288967a7dd6c5dad02600e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bd:a3:2e:46:54:75:3a:1b:c4:78:34:1e:6f:
e6:6c:94:25:ea:c9:28:65:64:74:cf:65:9b:9e:47:
5f:59:07:4c:ca:34:f0:4b:f1:24:58:c6:29:10:f6:
bc:1e:b6:a0:45:ef:88:fa:c1:5b:b3:c1:f1:01:d5:
ab:ea:86:ad:b6:0a:42:6a:5f:9b:a3:1a:ee:43:96:
0b:2d:5e:64:bb:64:3e:74:40:be:82:16:72:46:18:
6f:8a:71:c0:c1:d8:c1:40:83:a4:7f:55:85:9e:49:
60:4b:02:23:8c:de:65:47:d0:ab:c6:6b:7d:28:a1:
42:56:05:17:7a:9b:c3:ad:d6:b0:c1:e8:4a:0e:a9:
4c:e1:57:23:27:fb:55:9f:c0:91:c5:43:b9:46:cd:
74:8e:2e:98:10:a5:d9:9b:58:b0:80:f7:58:32:59:
33:9d:40:b9:83:5f:7c:68:7e:cc:d0:e7:12:d7:dd:
3b:76:4d:f1:9c:cb:c4:f0:b9:d6:66:69:d0:2f:81:
66:23:47:2d:38:ec:ac:66:6c:a9:34:18:ea:a1:d7:
c0:b5:c8:d6:43:fe:0a:36:f1:04:ad:25:88:9d:5d:
d0:b0:95:ee:62:58:c8:cb:04:28:79:9b:cd:a7:8a:
13:b7:2c:d9:05:c9:7e:a9:af:0a:7b:9e:52:92:e4:
02:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:98:4C:48:98:C5:13:E4:28:89:67:A7:DD:6C:5D:AD:02:60:0E:5E
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:09:0e:9f:68:05:d6:32:cb:56:2c:b9:99:e9:c4:69:e4:68:
2f:29:4b:28:e1:48:4a:ff:2a:62:0f:19:b4:a0:d4:ae:6c:53:
9a:1b:b5:b6:3c:b6:10:35:fe:ac:c3:f4:68:6d:25:18:fa:96:
f8:7e:71:62:db:31:65:7a:bd:74:7c:bd:c8:4e:ab:44:85:e4:
c8:68:5a:9c:6a:f1:39:fe:bb:c4:75:cc:99:07:b3:4f:d6:f9:
74:a6:75:1e:b1:87:a2:45:58:12:c6:58:57:3c:b3:0f:4a:08:
50:3e:74:db:7e:45:22:0f:b0:9d:ff:fe:c5:32:e3:a1:cc:2d:
e2:d6:18:d5:1d:10:e7:54:9f:33:d9:b3:31:10:e8:a9:c3:e6:
ba:e0:92:7e:5e:37:6d:41:67:e5:0b:e4:bd:aa:22:23:fe:64:
55:fd:b5:36:60:50:6d:e9:ca:bb:26:7a:85:7d:d6:d8:b2:e8:
62:1f:95:6d:c9:12:ea:56:b5:c9:3e:8f:6d:3e:8e:46:34:34:
7c:76:2c:0a:52:bd:97:aa:31:0a:dc:1d:9a:16:28:02:3b:a1:
98:c5:ae:be:eb:cf:f9:a9:96:96:c2:01:f8:e9:08:97:b7:ad:
9d:35:80:ed:91:c0:02:22:e8:83:30:25:1c:7e:a5:dd:fe:a0:
2d:58:22:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:05 2026 by rpki-client