Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File: I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier: 9tiGD0Y1KRaoH5BKkbVl1Fj4Xz+hlGOpNgo7RHicJbY=
Subject key identifier: 3F:4A:61:69:D9:DF:11:76:7E:13:AD:03:EA:2A:58:35:3C:EA:A8:92
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial: 019D37F7789D2835AEE81120D6E25EAF12E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 05:00:58 +0000
Manifest this update: Sun 29 Mar 2026 05:00:58 +0000
Manifest next update: Mon 30 Mar 2026 05:00:58 +0000
Files and hashes: 1: 5nqAIjs4Map_dmOK-D_BzJ5dduI.roa (hash: YmgmK05MQj5RQuP0mkk06fEYlISXZEUPrlooDAX79Gc=)
2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: RqREugxLIGXxSwY175AZ4rSBo0HEgT3QTB8Nz9r/vv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:78:9d:28:35:ae:e8:11:20:d6:e2:5e:af:12:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Validity
Not Before: Mar 29 05:00:58 2026 GMT
Not After : Mar 30 05:00:58 2026 GMT
Subject: CN=3f4a6169d9df11767e13ad03ea2a58353ceaa892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:72:25:55:90:13:7b:13:3e:cc:94:f9:c7:27:
57:f0:6c:84:60:94:fe:f2:38:8e:b9:c9:a0:26:3a:
51:ea:f1:bf:2e:12:be:87:c2:86:02:9f:76:2d:ad:
7b:ea:90:e4:be:2c:5b:e4:ba:94:1b:6b:71:79:13:
26:df:5a:25:b7:41:97:ca:84:07:8c:12:51:a3:77:
64:85:d6:72:12:30:e8:a3:3a:a5:a5:c3:94:e0:31:
7a:1b:c6:c3:65:ad:7b:2a:b8:38:75:9e:93:d0:df:
0a:32:b4:dd:77:e4:0d:3d:a6:5f:5b:8e:fb:37:3f:
8c:50:c0:9d:48:b6:9a:50:d4:6f:b4:8f:bf:46:a2:
89:f9:df:c0:94:3c:4e:d1:8c:40:b4:05:0c:ff:06:
94:43:b7:a2:fc:eb:ad:68:00:65:1a:2e:a8:30:fe:
10:16:4c:f2:07:fa:9d:4d:60:90:57:07:b7:af:bd:
92:67:ce:85:64:7b:3d:fb:69:4a:bf:b1:68:4e:69:
47:02:8f:7a:54:58:43:19:7b:2b:51:b8:5c:53:7f:
e3:e8:a3:8f:30:2b:c0:c6:b6:6b:df:9d:61:8d:b6:
63:c6:59:cc:ba:d7:5f:7e:92:13:52:eb:77:fe:a3:
8c:98:d4:00:f3:18:90:0e:83:c8:4a:93:a0:5f:85:
98:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:4A:61:69:D9:DF:11:76:7E:13:AD:03:EA:2A:58:35:3C:EA:A8:92
X509v3 Authority Key Identifier:
keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:9a:a9:f7:a4:1f:cd:8a:f1:6d:1d:76:89:62:38:d2:53:1f:
a8:ba:11:8c:74:42:6c:e0:12:c9:5e:5d:5e:42:e7:71:39:a6:
ea:fc:dd:f5:e9:d9:e9:a2:37:a9:b7:27:1c:cb:1b:ac:30:ca:
bd:99:8a:0b:f5:d1:9a:43:ed:d8:de:45:16:d8:8b:20:5b:74:
6c:f0:47:02:2d:bd:9b:af:8b:c9:05:67:7e:83:16:c1:c9:18:
bd:d0:cc:48:f0:d0:25:07:de:3b:91:25:cf:4c:4a:14:be:f7:
10:9a:8d:d0:39:eb:d3:08:5f:6a:a9:0b:6a:ef:18:88:86:ac:
5a:ca:08:f5:40:8c:35:c0:67:7b:f5:5e:6d:b8:33:f1:2c:80:
bb:fa:cc:2d:2c:8f:ac:03:dd:7b:77:3a:74:be:23:d5:6f:0c:
7e:c4:9e:c0:e8:2d:61:e1:dc:ba:b1:ee:a6:d7:e9:8b:f6:2c:
1b:9b:14:a0:0e:de:1d:d9:72:e0:14:54:d1:78:56:9b:a2:07:
69:21:c3:e1:09:a2:9b:42:e9:c5:0a:15:3f:6f:06:de:16:96:
f3:12:10:21:13:87:bc:01:4f:f9:c7:19:ab:f3:f5:a8:78:ce:
33:8a:36:1e:b7:98:56:8a:28:fe:ff:26:1b:c5:b5:ed:a3:e9:
bb:c6:a6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:11:42 2026 by rpki-client