Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: LG2E+9gxJ89eP/ZSqtgVxQfgwlrQx6XyUutYHry1Jz4=
Subject key identifier: 22:8C:F6:0D:B4:41:BE:CE:35:5A:F3:3C:87:A5:17:64:EC:9D:BA:33
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 019DCFE3EFFEC80B54D912BD721CB50DF242
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 076A
Signing time: Mon 27 Apr 2026 17:01:54 +0000
Manifest this update: Mon 27 Apr 2026 17:01:54 +0000
Manifest next update: Tue 28 Apr 2026 17:01:54 +0000
Files and hashes: 1: 2MeX37cZHGHHuxJtj1E28ddzIsI.roa (hash: LZd2fssCxVZOERqVCoqkBsBn4xYtLG5cKZGv8FiTdNw=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: bp0HPGMjjbYYJeH07grN/WRfBueWQKDr8Go2Ts2/Pc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:ef:fe:c8:0b:54:d9:12:bd:72:1c:b5:0d:f2:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Apr 27 17:01:54 2026 GMT
Not After : Apr 28 17:01:54 2026 GMT
Subject: CN=228cf60db441bece355af33c87a51764ec9dba33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:39:9d:92:24:ad:c9:8b:24:90:0b:49:d0:7f:
e0:84:97:55:68:ad:38:86:e5:0d:47:f9:99:06:35:
74:3d:1b:9d:20:ec:82:5e:26:76:c3:94:d2:2c:97:
58:09:9b:71:26:3a:35:f7:4f:79:3c:27:85:f8:5c:
09:3f:f0:7e:8e:4a:db:60:8d:fd:00:97:f3:04:88:
4e:50:26:57:56:01:44:55:ca:2a:80:05:3b:63:f1:
a8:d3:13:27:14:40:50:d2:f5:72:a9:14:d4:38:26:
c3:ce:b3:81:82:58:3f:86:bb:81:3a:dd:a7:61:08:
b5:8a:0a:31:09:2a:50:4f:da:c7:04:63:af:71:83:
6c:35:98:84:a4:0e:3f:37:df:48:16:16:31:d3:3f:
59:ae:7e:ec:d1:ea:6b:47:49:2f:66:f6:03:b5:fc:
b9:f3:6f:e7:2d:73:cc:0c:7e:98:c5:7d:58:72:7c:
5b:9a:3c:b5:21:ef:f0:35:09:55:8d:78:f0:ad:50:
c4:a3:4a:9f:3f:51:f7:d1:f7:0d:d8:bc:7f:9f:80:
33:87:de:81:29:fd:2c:92:48:74:f5:3e:ff:8f:12:
00:50:82:74:1c:e2:fb:78:02:21:42:24:38:22:3c:
0b:97:71:06:17:86:9f:77:e6:71:b2:5e:97:3f:27:
fc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8C:F6:0D:B4:41:BE:CE:35:5A:F3:3C:87:A5:17:64:EC:9D:BA:33
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:d5:b3:ca:7c:72:48:47:a5:12:82:e9:bd:eb:f4:73:ad:d4:
7d:94:2b:b2:58:f3:1b:37:10:74:e9:74:dc:cc:d6:a1:ab:51:
ff:62:66:2a:22:5d:c8:8d:c4:c7:df:7a:da:5f:48:2a:cd:ca:
c1:2a:a7:b1:a4:cb:51:24:53:26:fc:60:22:60:07:c8:2d:7c:
ba:80:44:aa:3e:4d:05:8e:5d:36:5e:72:db:ed:2b:c7:8d:c6:
a7:c8:58:b4:6d:02:08:62:71:12:c3:1c:26:77:14:0c:a6:13:
68:69:d1:cb:9f:bc:01:2f:aa:e9:63:f0:f0:fb:c1:ff:20:d7:
f4:c2:c8:bb:b2:07:1b:2f:c7:04:81:97:08:14:7b:f8:45:6c:
ba:31:69:14:5c:74:0d:44:ec:e5:3a:b2:7a:d6:91:8d:58:41:
26:31:29:2a:61:d8:cd:e2:7b:f0:b2:c6:7b:30:b8:ab:15:5a:
2a:b6:a5:d2:6a:96:46:62:92:35:20:c0:89:31:18:56:36:f9:
1f:6d:13:f2:36:e0:1c:87:3e:09:91:d6:ed:7a:1e:cd:bd:70:
25:cf:3a:68:2c:91:3f:d7:1b:b8:20:cf:e1:fb:e0:da:82:fc:
05:08:eb:44:d0:72:b0:d4:ce:7c:81:47:d0:f0:f9:5f:dc:a1:
38:f0:85:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:34:38 2026 by rpki-client