Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: 14UqVNyCyZuLRkvqUDE9+JV8ZMNTGqCsQ0/tYKpog3U=
Subject key identifier: F8:01:9F:0B:31:BB:D9:B6:50:42:50:0A:9E:E4:07:06:60:6B:8A:54
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019D389C66C9B8B1768954EADC0F22CC3171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0F0A
Signing time: Sun 29 Mar 2026 08:01:07 +0000
Manifest this update: Sun 29 Mar 2026 08:01:07 +0000
Manifest next update: Mon 30 Mar 2026 08:01:07 +0000
Files and hashes: 1: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: P5idmW8OGmM77TD0eH0SxbPfflQuagA7lMefPhyzorw=)
2: wr7KLyV4ClQnnTs8IQ6sq5gv_Bs.roa (hash: FVBmo5lpUPz2mK7tntWE423EtofmHFC0fD+FAYIPFZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:66:c9:b8:b1:76:89:54:ea:dc:0f:22:cc:31:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Mar 29 08:01:07 2026 GMT
Not After : Mar 30 08:01:07 2026 GMT
Subject: CN=f8019f0b31bbd9b65042500a9ee40706606b8a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:36:20:10:23:8e:50:e4:62:40:b1:10:96:
6e:6c:4b:48:15:4d:71:b4:8c:04:bf:10:a5:63:74:
d0:09:59:e6:66:4c:18:9d:b7:da:5f:44:56:eb:e5:
50:2d:03:a6:9f:d2:b0:26:5a:c6:b5:d1:1c:22:f8:
dc:1f:5b:d0:ac:cb:87:be:c7:76:4d:e6:71:42:9c:
f9:77:3b:b3:2f:04:90:ea:0f:c4:d9:d5:0f:ea:7b:
2a:b0:d3:b4:56:e1:64:46:2f:69:b3:44:50:52:f9:
de:d6:cc:04:0f:f5:5c:71:a9:2d:12:2c:ce:f8:49:
f5:f0:77:39:f0:85:20:32:c4:fb:fa:5d:78:23:61:
bb:e5:14:69:70:0f:28:47:61:04:0e:84:2f:04:22:
8b:1e:34:80:ba:cc:f2:56:fa:c3:7a:e0:28:a0:ac:
fd:ef:86:1a:13:d8:01:48:0a:0f:6c:b8:f8:04:e1:
78:18:e3:7f:11:ae:f3:4a:6f:bb:67:df:a0:d3:90:
6e:75:92:19:68:d8:4f:96:06:e1:61:73:c8:9b:c4:
b1:b1:35:90:26:14:fe:19:81:42:79:f4:37:f1:42:
03:6d:5f:2a:38:65:07:68:c4:78:c8:c1:f4:98:ef:
e8:72:1d:01:d0:39:bc:54:d4:05:3c:29:48:2d:d1:
d0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:01:9F:0B:31:BB:D9:B6:50:42:50:0A:9E:E4:07:06:60:6B:8A:54
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:64:b3:1f:8d:7f:37:a5:a7:88:16:a9:71:6e:9d:a5:97:92:
19:d1:8b:ad:d7:84:c7:aa:71:04:bd:83:8c:ab:7b:a5:a9:ff:
98:73:ca:49:2b:1b:45:65:f4:2f:85:74:f2:2c:47:55:f0:d4:
a7:5a:98:85:8f:91:c0:20:66:05:4f:a0:28:9c:b6:63:44:f3:
07:1b:78:50:9c:20:b2:40:b9:ab:ab:81:ea:94:c3:79:5a:40:
f5:91:b2:ac:bb:57:5c:ff:4d:54:43:ac:b5:9d:7d:aa:91:88:
2a:54:53:25:d4:e6:0e:6c:1b:64:23:45:3a:13:c6:dc:5f:5d:
dd:c8:9c:4b:56:25:da:7f:b3:a5:d9:a2:ad:fc:39:c7:a3:33:
79:33:43:8e:60:16:36:0c:ae:4b:9e:3e:ac:c0:86:f1:e3:5a:
6a:8d:e0:79:00:5c:6a:03:49:2a:39:07:09:af:b1:e0:a6:22:
57:b2:a6:c2:42:f8:9a:82:b0:9e:90:b0:3f:3d:6c:ad:64:27:
22:b5:d4:20:27:7c:8d:9e:d7:9f:38:04:be:c8:85:d9:5d:8c:
72:73:27:26:90:42:d9:12:fb:2a:06:91:b3:97:d1:93:5b:05:
f0:c4:25:29:8c:b5:83:52:7d:95:6e:c7:58:15:1d:c9:87:14:
fd:52:78:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nGbJuLF2iVTq3A8izDFxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYjI5YWNjZDRjMGQ1ZjVmODM3N2VhN2Y0NjM0M2I3NjA2
YmFiN2MwHhcNMjYwMzI5MDgwMTA3WhcNMjYwMzMwMDgwMTA3WjAzMTEwLwYDVQQD
EyhmODAxOWYwYjMxYmJkOWI2NTA0MjUwMGE5ZWU0MDcwNjYwNmI4YTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVw2IBAjjlDkYkCxEJZubEtIFU1x
tIwEvxClY3TQCVnmZkwYnbfaX0RW6+VQLQOmn9KwJlrGtdEcIvjcH1vQrMuHvsd2
TeZxQpz5dzuzLwSQ6g/E2dUP6nsqsNO0VuFkRi9ps0RQUvne1swED/VccaktEizO
+En18Hc58IUgMsT7+l14I2G75RRpcA8oR2EEDoQvBCKLHjSAuszyVvrDeuAooKz9
74YaE9gBSAoPbLj4BOF4GON/Ea7zSm+7Z9+g05BudZIZaNhPlgbhYXPIm8SxsTWQ
JhT+GYFCefQ38UIDbV8qOGUHaMR4yMH0mO/och0B0Dm8VNQFPClILdHQcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPgBnwsxu9m2UEJQCp7kBwZga4pUMB8GA1UdIwQY
MBaAFCOymszUwNX1+Dd+p/RjQ7dga6t8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAt
MTE3NGE0MjgwMzZiLzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAtMTE3NGE0MjgwMzZi
LzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGSzH41/
N6WniBapcW6dpZeSGdGLrdeEx6pxBL2DjKt7pan/mHPKSSsbRWX0L4V08ixHVfDU
p1qYhY+RwCBmBU+gKJy2Y0TzBxt4UJwgskC5q6uB6pTDeVpA9ZGyrLtXXP9NVEOs
tZ19qpGIKlRTJdTmDmwbZCNFOhPG3F9d3cicS1Yl2n+zpdmirfw5x6MzeTNDjmAW
NgyuS54+rMCG8eNaao3geQBcagNJKjkHCa+x4KYiV7KmwkL4moKwnpCwPz1srWQn
IrXUICd8jZ7XnzgEvsiF2V2McnMnJpBC2RL7KgaRs5fRk1sF8MQlKYy1g1J9lW7H
WBUdyYcU/VJ4TA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:57 2026 by rpki-client