Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: M/4GMOWeZvBSADEnTOah+nAmoxolYK0hbEy/Pdejr9I=
Subject key identifier: 69:A8:1C:93:92:2E:1E:F9:BC:80:46:40:9E:7D:28:2A:61:F9:90:01
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 019E32611A6342FE29F2978B6A47ED15B116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 1282
Signing time: Sat 16 May 2026 20:01:24 +0000
Manifest this update: Sat 16 May 2026 20:01:24 +0000
Manifest next update: Sun 17 May 2026 20:01:24 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: UXQ7b3G+W3own5/VDYSDO/ZN27jRQfmk7AlLVP5mc/E=)
2: NLcXQyarZMLPShqbum_K4HREfn4.roa (hash: mjratVtRdhgBM6Hy0uvO9ymB77guClAbYNO1DYJFQTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:1a:63:42:fe:29:f2:97:8b:6a:47:ed:15:b1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: May 16 20:01:24 2026 GMT
Not After : May 17 20:01:24 2026 GMT
Subject: CN=69a81c93922e1ef9bc8046409e7d282a61f99001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:41:04:c8:e4:88:e4:f7:a5:7d:5c:60:9a:ca:
a2:b9:de:e4:38:d0:ef:71:0e:0d:a9:2e:b9:ba:b2:
b4:d8:cb:ac:a8:0c:b7:2b:3d:3e:c4:6e:7e:d3:f8:
82:59:49:de:89:20:f3:30:bb:cb:52:05:3e:a4:19:
ba:15:41:0e:ec:e4:cd:a8:e5:03:44:0f:25:28:ad:
34:d4:d1:51:fb:b9:0a:80:23:eb:1e:cc:24:6c:11:
4f:d5:6e:2d:33:00:bb:8e:92:67:69:70:59:6d:5a:
ca:de:0a:05:0f:5c:63:f5:cf:6d:3f:ef:71:b2:6b:
b7:7e:4d:89:2a:b6:23:e3:cc:06:51:93:66:d0:7f:
85:07:af:37:5b:9a:9c:6a:db:dc:bb:13:53:6b:4b:
69:81:b6:61:cb:55:be:be:f1:80:91:d9:b8:e2:35:
b8:44:fb:9e:75:be:71:e5:26:ca:7a:c7:23:4b:64:
fb:eb:81:ce:90:f7:d8:3c:ef:c5:98:8b:d0:3f:08:
ac:34:75:46:4c:6b:3b:ff:60:48:54:6e:38:b4:3a:
2f:cb:e3:86:bd:eb:30:aa:ca:3a:18:eb:02:f7:1c:
43:3d:49:18:78:77:d5:a9:8e:aa:a5:c5:4f:c2:7e:
aa:66:6d:11:7f:49:b9:b6:8f:b8:86:9b:8b:4f:48:
97:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A8:1C:93:92:2E:1E:F9:BC:80:46:40:9E:7D:28:2A:61:F9:90:01
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:8a:65:18:cc:45:1d:89:5e:f7:01:cb:db:4f:fb:2e:91:98:
e8:23:13:9d:c5:a4:59:3e:25:c6:81:c1:1f:73:94:fe:7a:1e:
dc:be:92:f7:be:3d:05:ff:4e:47:b9:5d:62:93:b2:33:0f:07:
7e:7d:3e:da:58:1f:3c:18:5a:98:68:07:85:79:91:84:89:77:
8a:89:08:6e:c6:da:2e:94:c5:d7:a6:7f:97:ba:1b:0f:7e:9a:
8d:57:af:97:03:18:0a:92:61:d7:ad:71:74:cb:70:97:a5:80:
cd:b5:db:7e:18:69:bf:ff:90:91:8a:71:64:55:17:7f:cc:bd:
00:6a:bc:8f:0d:bb:1e:03:fe:c8:a1:60:ac:fa:b9:0f:e9:a2:
a9:f8:37:e4:96:5d:87:b3:f9:34:5c:e0:6a:06:1a:20:d7:b8:
ba:a3:f1:82:c4:f1:d1:c7:fd:14:0f:dd:ca:d8:17:a6:42:42:
75:bd:47:25:45:95:55:f9:68:d8:66:90:66:da:79:29:d2:dc:
ff:8f:59:fe:69:bd:ba:32:4b:be:32:3d:d7:f2:22:0f:8f:ed:
04:46:29:05:3f:93:bb:3d:96:d2:1b:d8:25:62:be:66:88:d2:
77:ea:19:e4:96:65:59:2e:b7:a0:6a:16:f4:28:f9:5d:6b:97:
82:f0:fa:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:09 2026 by rpki-client