Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
File: 1-ItEPpksZlZYlC5okNKY1ozeZCU.mft (raw, json)
Hash identifier: P2NwrKu2iYPT9/A1AVlHaVlNPaMPB9m/dk//Fx9ZPyw=
Subject key identifier: 4C:D1:38:8A:08:76:17:3B:1F:5C:33:4B:A2:53:7C:C8:2A:14:09:45
Authority key identifier: F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
Certificate issuer: /CN=f88b443e992c665658942e6890d298d68cde6425
Certificate serial: 019E28B96AA0B91B5200F21C1B32CCB22DC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
Manifest number: B7
Signing time: Thu 14 May 2026 23:01:40 +0000
Manifest this update: Thu 14 May 2026 23:01:40 +0000
Manifest next update: Fri 15 May 2026 23:01:40 +0000
Files and hashes: 1: 1-ItEPpksZlZYlC5okNKY1ozeZCU.crl (hash: eOYUu9rrGVin0/8nUIH4HgbWE5KdUNBCbl7rLs9oSdE=)
2: 560UvqVud9DEuhQPr1x60Rz_4no.asa (hash: R22iZnCp/y6i8IZet00/Fkh5m7KFKy8c2ikVMY1ramc=)
3: Kf9QvVgVrtl0XM8frEpJ_fd4yfM.roa (hash: fg4f8lm5urIblTtWM6P0oF5ZkLFnBYAOFc4g9paZJZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 23:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b9:6a:a0:b9:1b:52:00:f2:1c:1b:32:cc:b2:2d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f88b443e992c665658942e6890d298d68cde6425
Validity
Not Before: May 14 23:01:40 2026 GMT
Not After : May 15 23:01:40 2026 GMT
Subject: CN=4cd1388a0876173b1f5c334ba2537cc82a140945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:97:ed:07:6e:c7:b4:ec:47:0e:15:d1:1b:5e:
b4:75:c2:07:cc:cc:2e:af:c8:1a:fc:1f:55:06:1a:
f6:bd:f4:a2:33:9b:97:3e:02:e8:f8:78:5d:53:07:
2c:76:de:17:85:c4:d1:8d:aa:69:96:fc:e5:76:ca:
f2:85:f7:77:7a:08:53:b1:90:56:13:53:3e:2b:f6:
13:8b:c8:54:21:e1:ca:c4:5f:86:7a:d7:8a:5a:b7:
24:c4:6b:69:03:27:11:45:44:2c:3e:08:be:0a:0b:
8e:e3:fc:52:54:ca:62:b8:35:2b:d4:87:da:a6:07:
9e:e9:2d:47:a9:60:5b:2a:3c:fd:2a:2f:eb:9c:ca:
73:fa:80:18:2f:ac:20:81:36:04:8f:78:cb:a5:5c:
31:e0:ed:f6:b5:3d:26:1a:29:b3:04:12:8d:c5:0e:
96:c8:03:02:e6:1f:8c:fd:fb:ac:72:89:d9:38:9f:
e8:47:d5:a2:bf:d9:7d:0b:ab:e3:ed:a0:b2:92:ac:
d5:51:71:65:33:48:be:1c:80:80:ca:4d:ba:1f:9f:
4c:e0:08:f7:5b:2f:8f:68:3b:90:0c:9e:61:94:b5:
8a:8d:38:c1:27:a8:4b:d9:a3:9b:8f:f5:7a:12:24:
5e:d5:13:52:c6:3c:c9:e2:b2:65:cb:50:59:eb:79:
9a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D1:38:8A:08:76:17:3B:1F:5C:33:4B:A2:53:7C:C8:2A:14:09:45
X509v3 Authority Key Identifier:
keyid:F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:0f:24:b5:e1:c5:c5:89:c0:b0:f3:af:35:c0:1b:91:a9:0d:
3e:98:83:38:e2:9a:5b:57:eb:b9:8e:da:9e:2f:4d:1e:d6:c7:
00:e0:f4:f7:87:95:4b:f8:8a:a3:19:8c:04:90:fb:97:6d:bb:
ce:8f:2b:9e:eb:aa:ab:bf:b5:ee:8a:28:e7:5a:61:cf:3a:5c:
44:26:0f:76:af:6f:db:07:32:a0:6f:47:a9:8d:2e:0d:11:6d:
e3:b0:f1:dd:f9:de:36:21:9d:fe:43:34:16:16:8b:6b:36:10:
50:3b:07:1e:89:e5:34:0a:58:03:29:b9:a0:29:20:96:6c:ed:
c5:69:51:36:40:bd:38:12:6b:ab:6f:5e:61:13:55:2e:ef:48:
3d:af:0f:cf:43:b0:d9:af:a2:f6:9a:d1:4d:3e:cd:e7:1f:6a:
dc:d7:07:05:e0:a3:fd:ca:fd:0f:1b:09:9c:61:fe:d3:69:aa:
fd:af:0f:2c:a8:ef:34:20:c4:86:4c:d9:02:33:20:f3:71:93:
82:18:5f:71:6c:11:f3:d1:63:81:67:be:28:f5:49:c8:21:2d:
0c:20:dc:02:3b:d6:10:8a:a6:81:b0:46:bc:95:a1:c5:1f:35:
f7:4f:ea:45:58:43:34:d2:4b:8a:73:5f:c0:9d:b2:d2:d2:fa:
d5:b8:e8:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:57:11 2026 by rpki-client