Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json)
Hash identifier: Xg0bk2OO30JJ3k7/6YHxVM7ryoLF+6GxcRzGddeQVVo=
Subject key identifier: 6A:9F:FB:F4:3E:2E:3F:59:DE:5D:35:02:8D:07:33:47:A0:7E:51:07
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 019CE89309DDFCC7FAC874D6A873BBA63DC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
Manifest number: 1866
Signing time: Fri 13 Mar 2026 19:01:16 +0000
Manifest this update: Fri 13 Mar 2026 19:01:16 +0000
Manifest next update: Sat 14 Mar 2026 19:01:16 +0000
Files and hashes: 1: 1-Ks480-iPBy-Vm_4dlD2KLww4y8.roa (hash: +0tlrIhz57IHGfgs8oqzQyrPKsieu75TXgBbupvdSQo=)
2: 19q6g12AmjkGcmyGxKaaVzALCeA.roa (hash: iBTDfCJQ7QsiUqJhoY25FarZtvdsyDb2KrTGMVJdhAM=)
3: VlaHlKRWDcOcGuVgnteAb200G78.roa (hash: 0o9r3pak+CL/qWrBSr2iB7II/28BBOkaW9ePbk7/cdQ=)
4: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: CfsNXBfURZDVGw6CvRKX11DJyGPlixCvZ9kkH/p6F3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:93:09:dd:fc:c7:fa:c8:74:d6:a8:73:bb:a6:3d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Mar 13 19:01:16 2026 GMT
Not After : Mar 14 19:01:16 2026 GMT
Subject: CN=6a9ffbf43e2e3f59de5d35028d073347a07e5107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:62:44:5e:8d:41:4e:2d:da:86:cf:fd:de:16:
93:23:29:7b:cf:ca:62:b7:07:92:c8:80:fb:de:03:
ed:97:53:fe:a6:df:22:dc:3b:e0:42:5c:5c:7e:4b:
44:1b:e1:f3:51:95:be:f3:99:77:c6:9e:c4:e0:47:
0f:2d:77:bb:9a:c9:a8:55:f9:39:41:0f:44:27:5d:
86:3b:b8:77:de:ba:0f:4c:49:4d:54:04:f9:ed:a9:
b4:28:62:7f:22:2d:c2:5f:ab:49:33:5c:99:e6:e1:
5a:ff:dc:f5:d6:68:75:d5:c6:be:21:ef:63:31:42:
76:f5:36:a1:36:de:02:02:ab:6c:92:c3:07:97:e8:
c8:33:db:8b:17:7c:e8:ad:9b:4d:cb:05:68:e9:8d:
fa:a4:3a:35:fe:b2:bc:af:3a:10:38:14:50:77:db:
17:0f:43:a6:e3:ff:81:b9:2d:1f:10:58:a5:5a:4b:
4b:31:bb:5c:39:fb:41:a5:e4:4d:8b:d9:0c:b2:43:
23:29:a9:b4:f4:b0:ab:46:9d:10:de:e0:9b:11:e2:
98:ee:2a:b6:43:29:bb:10:ce:e4:12:89:8e:9d:ae:
f6:67:b1:ca:fa:15:e7:64:3f:44:01:43:09:af:0c:
2e:52:86:5f:ce:73:68:29:14:0e:25:84:76:39:95:
17:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9F:FB:F4:3E:2E:3F:59:DE:5D:35:02:8D:07:33:47:A0:7E:51:07
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:90:dc:27:2b:d1:38:fe:de:89:eb:7e:45:4b:e2:ff:cd:dd:
7d:a2:74:a6:8b:9f:ca:cf:c9:bc:05:38:a0:fe:67:86:ae:0c:
f4:1c:be:05:18:c6:da:4a:4a:29:27:66:7a:56:ef:92:68:2a:
22:2f:07:ea:4a:57:85:05:a8:74:00:4d:33:6b:f4:32:52:52:
b8:f5:7d:23:53:cc:34:32:b2:b8:77:94:af:80:14:33:be:44:
29:a9:8d:a1:12:18:21:e6:cd:36:12:20:16:9d:ce:4a:fe:c0:
30:04:0d:2b:5e:a8:4d:01:67:18:51:82:20:f0:5a:3f:6d:ec:
04:e0:92:ad:e2:97:b5:f0:6b:36:86:e0:63:89:fc:d0:61:a3:
33:7f:7b:56:98:f9:5e:d6:4c:22:5d:a5:62:2c:79:aa:db:9b:
70:9c:51:eb:2d:3b:7d:32:0c:67:ed:a1:a3:49:7e:47:2e:83:
a0:b0:8f:96:f1:63:8b:fb:7a:af:15:cf:b6:20:f8:e3:03:0e:
b9:cd:95:5a:be:25:23:25:b4:a6:8e:85:62:8a:6f:46:4d:8b:
30:04:c2:9f:6c:58:98:3f:ce:26:98:4d:a7:c2:4c:34:cb:b8:
82:fa:a9:01:dd:93:c2:80:d5:fe:5f:2e:31:13:b5:c4:c4:41:
da:29:e7:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 05:19:18 2026 by rpki-client