Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json)
Hash identifier: rbf7zHIYWdt4dF6kYG+r7BzOA4X5K9aAKDbZH++Z4MQ=
Subject key identifier: 1C:52:CA:6C:D3:B3:49:F2:FA:7F:96:C7:AF:B5:DF:8A:F0:AE:C4:A5
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 019D382E7BF746F900E4E94C7959AA27DB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 06:01:03 +0000
Manifest this update: Sun 29 Mar 2026 06:01:03 +0000
Manifest next update: Mon 30 Mar 2026 06:01:03 +0000
Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: ffUw11fCjOj65dsZThiboyIK5MdQcYxvLVbNsUIgzOI=)
2: MkZDnhBWSDVFNPdTIbLySY13AZo.roa (hash: G0tZaVek6hHuGJJA8eubBZEIhMXdNUS6nfdqgnLslHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:7b:f7:46:f9:00:e4:e9:4c:79:59:aa:27:db:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Mar 29 06:01:03 2026 GMT
Not After : Mar 30 06:01:03 2026 GMT
Subject: CN=1c52ca6cd3b349f2fa7f96c7afb5df8af0aec4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:06:20:c0:6b:03:1b:d3:85:77:31:1a:e4:8c:
2e:16:9a:9b:3e:56:7f:50:12:8c:46:30:b9:5b:fd:
05:4b:8e:fb:db:c0:21:49:d6:06:02:17:05:b1:46:
48:83:41:8f:66:b1:c9:c1:c1:48:2c:3b:93:df:3b:
08:76:3e:47:6d:d7:3a:f2:fd:7b:4c:22:1a:1b:4b:
f1:3a:cb:49:e1:0c:c6:bb:ce:87:f9:f3:26:9e:47:
91:84:a2:d6:91:d2:75:41:5c:d7:d0:7e:fc:9e:a7:
78:b5:4e:20:60:1a:a6:91:fc:61:34:c0:85:cb:a7:
4a:77:58:80:7e:d4:46:e9:62:5d:ed:fe:1e:f6:73:
0f:b3:5e:be:4e:47:7a:87:d2:60:05:3b:0f:de:81:
9c:98:72:19:ca:0f:8e:e2:bf:a8:c4:0b:11:d9:56:
df:0f:97:23:c2:08:8f:23:db:32:d2:c0:e8:fe:6d:
b2:d7:4f:9b:d1:03:d9:d6:38:f2:6d:5f:67:c2:04:
63:9d:e3:4b:da:12:22:e3:34:46:00:db:70:1e:3d:
fb:ed:79:a8:af:94:49:a1:bd:24:f7:c6:37:03:e3:
f4:05:2d:26:9f:82:d9:13:28:b2:70:53:db:0b:24:
04:71:ec:2e:89:f1:9c:e3:6d:64:84:d7:4f:60:01:
77:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:52:CA:6C:D3:B3:49:F2:FA:7F:96:C7:AF:B5:DF:8A:F0:AE:C4:A5
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:1d:6d:a2:0c:42:bf:f5:b2:a3:17:b7:a3:61:cf:a9:1b:22:
f3:d8:f0:73:82:0a:b9:31:f0:d6:65:08:c2:3a:22:79:b3:f3:
96:40:76:71:cf:a6:52:8c:31:12:7c:5e:33:06:26:53:38:c6:
1b:52:c0:d7:da:63:1c:36:3c:01:e9:b6:79:d7:90:a4:ff:b1:
d4:75:3d:20:8e:c5:6a:84:2a:07:52:b2:52:5e:4c:05:19:ee:
8a:2a:78:21:a1:28:6c:11:23:97:5e:38:55:6f:a9:c5:fd:a5:
29:74:e1:40:db:eb:b7:29:97:b4:bf:d5:8c:8e:24:86:48:b7:
5e:ec:6b:e1:10:7c:00:3a:4b:c6:9c:6e:ce:a0:ac:38:a7:13:
10:de:9b:a8:d1:8c:7f:6f:d3:bb:f8:3e:43:fb:c1:54:a5:62:
c2:78:a1:8c:d0:96:14:41:8e:e1:b8:30:59:13:cf:27:a9:ab:
7f:8f:ea:59:5e:86:40:e0:3f:de:2b:7a:a9:92:dc:c1:a2:b8:
78:cd:03:e3:71:cc:4e:3e:6a:33:ea:57:c1:8c:76:1c:80:b9:
bf:f8:1d:3a:ef:6b:a5:3b:53:4d:e6:6b:e6:da:83:e7:bc:20:
10:e2:6e:f0:76:b2:a6:03:fa:89:42:75:cf:b6:a3:76:d2:1a:
7f:d0:43:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:12 2026 by rpki-client