Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json)
Hash identifier: LUeFQFToh7zraJ7xZXOrbg2XkMiqOmWDXxPp0O2aTZc=
Subject key identifier: 07:4B:17:2F:A2:2A:09:E9:F6:CE:43:A0:71:AC:CC:27:C7:DF:50:4A
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 019DD9F9802A4C9BCC1194FB79A5C35D11D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
Manifest number: 18E3
Signing time: Wed 29 Apr 2026 16:01:40 +0000
Manifest this update: Wed 29 Apr 2026 16:01:40 +0000
Manifest next update: Thu 30 Apr 2026 16:01:40 +0000
Files and hashes: 1: 1-Ks480-iPBy-Vm_4dlD2KLww4y8.roa (hash: +0tlrIhz57IHGfgs8oqzQyrPKsieu75TXgBbupvdSQo=)
2: 19q6g12AmjkGcmyGxKaaVzALCeA.roa (hash: iBTDfCJQ7QsiUqJhoY25FarZtvdsyDb2KrTGMVJdhAM=)
3: VlaHlKRWDcOcGuVgnteAb200G78.roa (hash: 0o9r3pak+CL/qWrBSr2iB7II/28BBOkaW9ePbk7/cdQ=)
4: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: h+DBqe0wmesm2O1tjSMV77B176kYKHyJiVIred16OV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Apr 2026 13:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d9:f9:80:2a:4c:9b:cc:11:94:fb:79:a5:c3:5d:11:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Apr 29 16:01:40 2026 GMT
Not After : Apr 30 16:01:40 2026 GMT
Subject: CN=074b172fa22a09e9f6ce43a071accc27c7df504a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e8:b0:78:34:97:0c:7c:1d:4b:00:81:98:3d:
3f:55:20:b4:44:73:90:36:c6:32:12:cb:9f:a3:f5:
9a:65:be:19:6b:f0:71:95:3e:5a:da:00:f1:14:bb:
e9:6f:bb:9c:22:3b:c0:ad:43:bd:c4:c0:0b:4f:6f:
74:fc:bf:59:f7:27:a2:44:6f:58:94:40:36:8d:03:
e8:8c:81:43:e8:3b:ce:ee:6e:9d:fd:d3:3b:af:3a:
3b:08:0a:55:70:0b:11:ce:28:f2:d0:89:c2:c2:c0:
55:36:ae:c0:7f:d5:16:b1:90:74:f5:bf:3a:2c:60:
58:ce:b5:4b:19:a6:40:c3:d2:73:c9:2f:e4:e4:3b:
ec:9e:fe:a9:b1:cf:5a:89:07:01:0b:26:c3:20:74:
9a:aa:94:45:4d:8b:40:cf:9d:3f:7d:85:e4:dc:c6:
0b:8e:9c:e3:9e:4e:7c:c0:5b:6c:6e:6c:61:2e:99:
ee:76:c4:68:0a:86:37:2e:e5:5e:17:c5:14:4d:39:
bd:c6:a7:df:64:12:78:ed:ae:2b:bb:12:63:21:4e:
39:04:0e:1a:b2:08:1a:dd:ce:7e:32:d3:5c:76:7e:
8a:22:a2:77:52:91:c5:06:df:f5:17:b2:a4:fa:29:
1a:1f:7b:4f:c6:5f:80:eb:c9:34:3d:1f:fe:69:91:
b7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4B:17:2F:A2:2A:09:E9:F6:CE:43:A0:71:AC:CC:27:C7:DF:50:4A
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:3a:f5:0b:aa:e7:83:fb:2f:65:a9:3f:0d:15:61:89:5a:0d:
3f:dc:f6:27:f6:f8:5c:6b:a1:69:4a:a3:6c:ab:b3:6b:4a:50:
5b:fa:ed:e4:3e:35:af:a5:4a:ea:8e:55:ec:40:37:8b:03:cd:
3e:86:8d:39:b4:b6:87:6d:45:73:9a:fa:5e:56:36:ee:99:a8:
ce:af:d1:78:66:ca:b8:d1:8c:41:8c:21:4c:f2:c4:6f:e2:8c:
29:7c:27:19:ef:c0:a6:89:2c:6d:6c:63:fc:de:ba:c4:9f:3b:
1d:ff:73:67:6e:41:55:87:6a:49:cd:6e:15:45:5e:19:c2:d3:
d9:df:6d:02:91:35:ea:5d:d0:bb:5d:c0:30:e8:6b:f0:00:f4:
8d:5a:dd:f0:40:ad:81:81:3a:c3:71:96:2a:8d:a2:e7:da:b9:
44:b7:9b:73:71:57:51:88:9c:99:74:58:d4:c5:2b:b4:7b:56:
5b:fd:b0:b8:92:bb:e4:d0:2c:eb:b1:6a:2b:58:ab:05:76:74:
72:c5:8b:9f:97:70:01:f5:52:53:29:47:53:c4:48:42:c5:c2:
a6:b1:83:5c:03:53:37:c0:9d:73:4c:4c:4b:74:04:20:e3:ee:
1a:04:82:07:d5:51:0e:84:18:0c:79:b1:4c:65:19:e6:6d:1d:
7c:29:89:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 21:15:57 2026 by rpki-client