Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
File: 1-ItEPpksZlZYlC5okNKY1ozeZCU.mft (raw, json)
Hash identifier: AZRAOEpOEkB1skojhMADF8TKDCy+TnLiF9655u0esII=
Subject key identifier: 95:AB:29:EB:C1:45:69:72:B2:A7:B2:EF:9E:8B:F7:72:53:3A:5C:3D
Authority key identifier: F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
Certificate issuer: /CN=f88b443e992c665658942e6890d298d68cde6425
Certificate serial: 019CF4604674EACF05019D502117C02A1159
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
Manifest number: 0D
Signing time: Mon 16 Mar 2026 02:01:15 +0000
Manifest this update: Mon 16 Mar 2026 02:01:15 +0000
Manifest next update: Tue 17 Mar 2026 02:01:15 +0000
Files and hashes: 1: 1-ItEPpksZlZYlC5okNKY1ozeZCU.crl (hash: COwGMQ2VNF3zMdnpiqojtvreONW12FTRAxZgm58BsXo=)
2: F652PL-8sPuAvdYE_JPXNVSbhdg.roa (hash: 27PSs5vNJBOwGdY5FS69zQo6RwK7gLLdbMdZzrvr0zc=)
3: MEcp7D87qw-ba-jz3jcFeNRtzWY.roa (hash: gjtAqoeqxyyX81G8o3jEnrtLFhSB+cdWCoiGrrDuC+4=)
4: UolwYZuHnM6TWMgpaeNx_kCaEpQ.roa (hash: XPYl+yBBVtJ5hxLEhg4Pv8NSksuRu+MOUr6kP5Zq3mE=)
5: zvXYFDRMBmdtrWW83QBWL5pe_xg.asa (hash: PjKpfmDVSkgo9TP/TQvIvWmCKdqKtpoJYwtUOMSdrYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f4:60:46:74:ea:cf:05:01:9d:50:21:17:c0:2a:11:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f88b443e992c665658942e6890d298d68cde6425
Validity
Not Before: Mar 16 02:01:15 2026 GMT
Not After : Mar 17 02:01:15 2026 GMT
Subject: CN=95ab29ebc1456972b2a7b2ef9e8bf772533a5c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:af:ff:81:4f:2c:d2:dc:92:32:1c:71:c5:8b:
6b:32:99:36:70:a1:f6:d2:bd:a8:3b:29:0d:30:9f:
01:32:ca:7a:28:66:96:5e:7d:9b:41:b7:b6:a5:2e:
5b:8e:98:23:86:87:65:29:13:76:c1:1f:55:a1:e7:
09:84:a7:28:16:4b:bb:68:50:cd:29:14:66:c1:3d:
6c:53:4f:36:12:fb:b4:4f:0c:af:b8:6c:a9:82:24:
4c:02:d2:76:82:86:33:c8:c7:51:bc:55:4a:84:ed:
5d:01:66:e7:24:45:84:4a:8c:05:55:b3:6f:19:c2:
7e:fb:cc:4f:41:23:c2:52:74:52:89:c1:82:66:ff:
ca:42:e2:99:76:39:df:4e:94:58:72:a5:8b:ae:96:
18:3e:75:6f:7b:82:25:94:94:21:3a:75:fa:40:fc:
85:72:99:dc:08:7f:28:33:d9:5b:87:ba:b8:ca:ae:
5f:5f:cd:a5:2d:72:76:ea:c4:14:d7:3d:a9:f9:f4:
2e:d5:af:f3:62:b9:06:e1:3d:31:e6:90:26:0b:c2:
f5:6d:a5:77:60:8e:86:d4:bd:30:7d:19:d9:39:e6:
be:28:a3:ad:32:76:4e:47:d0:ed:23:6f:58:76:ce:
5b:d0:56:33:19:be:b1:7e:ae:62:20:42:b6:4a:9c:
87:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AB:29:EB:C1:45:69:72:B2:A7:B2:EF:9E:8B:F7:72:53:3A:5C:3D
X509v3 Authority Key Identifier:
keyid:F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:62:dc:60:fd:03:1f:81:26:30:06:54:13:9c:ce:46:97:6a:
d2:4f:fc:f4:79:60:05:db:93:19:0e:58:7e:2d:27:e0:24:5a:
5b:fb:0c:92:82:3e:ec:fd:b3:81:e9:60:b0:a0:eb:a2:63:c0:
8a:03:50:92:27:6f:86:be:31:ea:24:99:ee:b3:53:f5:eb:d9:
40:8b:6a:71:fa:f8:e1:3b:2e:61:1e:84:81:61:89:2e:58:4a:
bf:cb:cc:bb:20:80:76:b5:51:a9:4a:26:5d:19:2c:32:02:6d:
6b:92:88:5b:97:b0:c6:27:b7:07:a7:a8:f6:16:70:26:a1:8f:
cb:f9:fb:cc:f5:65:ee:ae:d3:35:2f:ac:48:03:35:92:85:4c:
5a:10:90:9f:16:87:de:61:52:39:7f:09:73:0b:08:81:ad:23:
77:11:80:d6:f7:23:ce:4c:ec:2c:09:fb:47:3c:ff:e5:41:a4:
99:12:d5:4b:f7:47:40:a3:63:46:e3:9e:db:8a:01:d3:d4:c7:
d1:78:e5:8f:61:44:d3:a1:82:ff:fe:f4:73:41:bf:ff:20:e0:
9b:05:8c:77:28:ff:03:05:32:ad:ca:0a:69:03:63:63:cb:4b:
cd:2e:59:e3:66:2b:bb:32:0f:5d:63:07:2a:1c:40:67:66:38:
f5:0d:e5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 08:24:48 2026 by rpki-client