Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
File: I5xF5DYlUiCArsU5UpiaE6KKvQA.mft (raw, json)
Hash identifier: v0RjKIIN9sBdJFbQ0GtWQAcrPgZ/9cpIzYudPaYiU3k=
Subject key identifier: 91:A9:4B:D8:90:C8:B6:ED:01:99:F7:6E:56:36:5F:07:0C:2B:36:0C
Authority key identifier: 23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
Certificate issuer: /CN=239c45e43625522080aec53952989a13a28abd00
Certificate serial: 019D37F788D7AB2438459D495B31D652459B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
Manifest number: 1895
Signing time: Sun 29 Mar 2026 05:01:02 +0000
Manifest this update: Sun 29 Mar 2026 05:01:02 +0000
Manifest next update: Mon 30 Mar 2026 05:01:02 +0000
Files and hashes: 1: 8b9lZJQie7cjCoccTw9o5N6jdX0.roa (hash: gCAc7Riwd4/zgCRPf+ESh5/KqUCw3rdRTwl6RhutkM8=)
2: I5xF5DYlUiCArsU5UpiaE6KKvQA.crl (hash: 12A9OWAw7QxDVnpIfKlno6VxsQLXoWCfI8jZHnoAYT4=)
3: OnKBtwyvSQXenD2TFYRv7-EZThE.asa (hash: BYl5J46d6e9LW3J6fkLa75ROxvNZoL/fmWrmEBx/+H8=)
4: VQ0mrMZBE8RvHwNIrTvKcr3Rhmo.asa (hash: gcfGHwtvHajEvWt/0Z+o+2PlemMysXfRKyTAuFU715U=)
5: nMAcs66LO6TjEu1sWF2MJ23tCPU.roa (hash: qDwWTIaJBe4gCFHzWktg1n8lhqYY0YQHvsLVhHqIB1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:88:d7:ab:24:38:45:9d:49:5b:31:d6:52:45:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239c45e43625522080aec53952989a13a28abd00
Validity
Not Before: Mar 29 05:01:02 2026 GMT
Not After : Mar 30 05:01:02 2026 GMT
Subject: CN=91a94bd890c8b6ed0199f76e56365f070c2b360c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:e7:59:da:d4:3c:6d:c7:93:5b:d2:59:bd:
3f:49:9d:a8:ce:84:1c:0f:e5:be:04:2b:d2:75:00:
87:62:74:a9:4a:47:6c:f8:c7:eb:6f:67:f1:77:e0:
04:32:3a:48:6e:fc:22:67:8f:03:5f:c7:0b:27:c5:
0b:a2:c2:43:23:12:ce:dc:1d:59:fb:9e:5b:89:b3:
a3:13:35:f5:a6:39:20:76:35:0b:dc:0a:e5:3a:e2:
2c:1e:52:fe:dc:45:ec:2c:6e:88:bc:5f:81:59:61:
ff:0e:6e:59:82:d1:ea:f8:21:f3:72:49:a8:73:5d:
f5:ba:c2:f4:be:75:36:f8:c1:68:8c:ae:f8:2c:8f:
67:96:1c:5b:f5:ee:54:0b:e9:de:b7:00:93:4b:30:
0c:1a:c0:87:2a:09:68:39:83:be:68:0d:de:18:75:
fa:cf:93:fe:7b:74:29:eb:71:bc:ec:44:ee:79:20:
a7:9a:ca:8b:f6:bc:e9:bb:5d:64:ca:50:c3:d8:7a:
3b:d0:77:45:f9:18:c5:b8:de:a5:37:5c:57:a3:aa:
0e:bb:a9:24:c0:22:b7:1e:38:fd:85:06:79:c6:1b:
81:1a:d6:c7:8e:6e:0b:7d:0c:2e:a2:a5:41:b8:37:
2c:64:eb:6e:e3:0e:10:23:f9:0c:9c:12:61:d1:01:
4a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A9:4B:D8:90:C8:B6:ED:01:99:F7:6E:56:36:5F:07:0C:2B:36:0C
X509v3 Authority Key Identifier:
keyid:23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:85:21:d5:fb:d0:e9:bc:f5:29:88:95:3b:7e:81:32:be:b1:
6f:4b:9e:42:04:ca:94:68:0d:f0:f3:6b:51:a5:c7:d8:21:c9:
b3:30:37:fc:a2:2c:3b:ab:63:1d:f7:ad:18:a9:10:43:18:f3:
b0:9c:8f:6b:3e:35:f5:72:79:72:80:c5:f4:3d:94:13:17:aa:
f8:b2:8d:a6:cf:41:26:b9:f6:e2:71:8a:fb:a9:56:55:72:61:
32:c6:cd:e3:51:6e:f8:49:8b:04:83:77:b1:36:01:1e:cb:31:
32:fe:4c:fe:fd:e6:3e:0f:6c:76:85:2e:f6:48:a6:c1:cb:1f:
84:c6:45:dd:2f:8c:e4:af:b7:9c:7f:39:9e:35:87:84:4b:70:
66:65:ba:55:a7:8d:62:c9:49:74:45:6a:e4:37:43:5f:b3:19:
ae:fa:c7:f4:81:3a:4a:ef:6f:32:cc:47:f4:7d:10:12:ff:45:
31:4b:29:5f:87:57:09:4a:cb:7f:0f:0a:57:bb:1e:2b:56:0b:
e4:cb:cb:06:31:6c:24:15:77:a8:0c:f4:ac:04:a1:23:63:cf:
2d:4e:aa:a9:de:0e:3b:5e:e2:f9:be:df:4f:e3:8b:7b:d5:0b:
c0:26:ef:78:85:b9:5e:f9:b5:42:6a:db:00:0d:79:df:23:2e:
c8:74:e9:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:58 2026 by rpki-client