Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
File: I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft (raw, json)
Hash identifier: 3X65UCEUtY4PYaee5ziAZxBV6k06y47eejvt+iCp8X4=
Subject key identifier: 0D:56:05:49:03:CC:C5:45:8E:8B:4E:2A:C7:21:F8:78:8D:6F:4C:7A
Authority key identifier: 23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
Certificate issuer: /CN=235163d39db88816cddc597a5db5eae707d3de39
Certificate serial: 019D39AF187A4B103066CF4C559AA60AF5AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 13:01:09 +0000
Manifest this update: Sun 29 Mar 2026 13:01:09 +0000
Manifest next update: Mon 30 Mar 2026 13:01:09 +0000
Files and hashes: 1: I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl (hash: LBaqUd4qSvzucZaJtsJaPk7U7goFl04TOUkIGtRYZ48=)
2: MTOjup8y1UXD0CJugetRyShLlFM.roa (hash: did6Im7PvxOeWT+FnqE9v3BCYzUp9wbU09/sziP8S8g=)
3: y2dvaW9BE_hgA52pK6ndrIlUQD8.roa (hash: 8aYMWWwaNFDI51SXRVa0hNzXB/57zeHnGU+/Ox3JcPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:18:7a:4b:10:30:66:cf:4c:55:9a:a6:0a:f5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=235163d39db88816cddc597a5db5eae707d3de39
Validity
Not Before: Mar 29 13:01:09 2026 GMT
Not After : Mar 30 13:01:09 2026 GMT
Subject: CN=0d56054903ccc5458e8b4e2ac721f8788d6f4c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8e:49:cf:73:f5:2e:91:67:37:01:92:0b:d5:
6e:50:49:5d:47:01:87:aa:d4:a6:96:93:6b:85:fc:
2f:7f:02:ef:cf:64:ea:9f:17:f8:64:45:d7:46:d0:
00:58:28:88:4d:aa:f8:97:3d:48:a1:53:25:88:d3:
99:03:4c:f0:22:c6:41:bc:a4:ab:15:ec:02:1b:50:
24:b3:fa:23:fa:92:fe:bc:9e:1d:5f:e2:26:51:77:
9f:13:e9:83:0a:f2:d8:c4:e5:96:ab:83:9e:41:3b:
95:8b:35:c3:f6:71:a6:76:dc:0a:9c:d6:c5:04:07:
b0:36:04:60:c6:d8:04:cd:16:67:4b:a1:31:c0:e5:
c5:1b:89:da:f7:8e:53:6e:01:02:e5:36:61:9e:30:
a6:4d:ff:53:a0:94:88:75:0b:e3:6a:c2:c1:3b:1b:
4f:78:6f:ef:c7:cc:b7:2c:8b:92:e8:2c:46:a0:84:
4e:42:d9:58:87:f2:60:8b:b9:64:7b:54:c5:3d:77:
41:29:af:29:5d:61:c8:98:8d:73:fd:30:f5:c9:00:
82:20:a5:67:4c:b1:d9:91:a7:65:ab:7f:07:b8:d7:
45:0f:b3:7e:45:58:72:c9:20:5f:aa:ee:c6:cc:ff:
b1:d0:42:d2:24:82:d6:0a:01:64:2d:25:85:64:69:
6f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:56:05:49:03:CC:C5:45:8E:8B:4E:2A:C7:21:F8:78:8D:6F:4C:7A
X509v3 Authority Key Identifier:
keyid:23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:5b:b2:76:c8:df:4f:95:28:e5:a7:46:be:79:e2:04:a7:88:
81:7c:80:e9:b5:78:e6:b6:0a:77:7b:d0:17:c8:f1:03:56:82:
99:27:40:ae:f6:7e:fa:f3:f9:10:bb:89:70:bb:a7:e6:6c:c7:
7e:9d:9d:9e:01:b7:5a:cc:64:2d:68:54:62:6b:1e:df:c5:31:
f8:07:53:87:d5:23:c7:90:4c:8e:41:7e:cb:05:92:74:f5:60:
d4:07:52:dc:7c:cb:92:c3:57:21:5c:e6:87:83:87:b8:c0:65:
43:19:12:60:50:7b:05:95:c0:f8:cb:23:cd:ce:2a:14:07:d6:
ed:f9:43:07:71:55:37:5b:d5:8a:86:29:ad:d6:44:a5:25:fd:
2b:4a:20:a9:0a:f6:3b:70:35:08:c6:36:69:7e:b6:e3:b2:6a:
aa:c5:8f:19:4f:1a:a6:df:43:08:d4:4d:27:f2:c8:44:ce:33:
8d:22:ae:94:25:b2:2f:92:60:9b:b4:ad:b2:20:ed:ec:83:17:
cf:e9:f3:e9:82:44:76:2b:8f:2b:15:e4:64:9a:2b:01:fe:d4:
cc:44:86:0d:aa:1e:f2:9b:7c:f5:97:4b:46:d7:c3:a8:72:ec:
40:25:e4:29:56:c0:70:89:11:fe:13:98:e6:09:3d:7e:f4:eb:
03:b9:96:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:58 2026 by rpki-client