Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: LNZCWlHuFGoa7sZjlJP9a75HIYOIH4Xrlam1nQzzxG0=
Subject key identifier: 0C:42:6E:E1:7F:38:1D:A5:64:C8:5D:4F:8A:C7:F7:13:39:09:A0:7C
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 019CE636401A9346C5DD796E56A58734027D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 06F1
Signing time: Fri 13 Mar 2026 08:00:40 +0000
Manifest this update: Fri 13 Mar 2026 08:00:40 +0000
Manifest next update: Sat 14 Mar 2026 08:00:40 +0000
Files and hashes: 1: 2MeX37cZHGHHuxJtj1E28ddzIsI.roa (hash: LZd2fssCxVZOERqVCoqkBsBn4xYtLG5cKZGv8FiTdNw=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: QyQl1WGTtKvB6hx0twncAXlWy7sBbq20eXxl3STwMmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:40:1a:93:46:c5:dd:79:6e:56:a5:87:34:02:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Mar 13 08:00:40 2026 GMT
Not After : Mar 14 08:00:40 2026 GMT
Subject: CN=0c426ee17f381da564c85d4f8ac7f7133909a07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:51:29:af:e7:94:79:5f:5a:86:c3:ce:cf:
ed:06:f4:61:a8:0d:d9:b6:6b:86:3c:a2:ff:88:78:
b4:3e:b0:c0:e2:4c:ee:f4:1e:05:c3:6b:32:74:e1:
38:b9:1e:3c:58:67:9a:1d:0a:d1:e2:0b:5b:ee:9b:
77:17:99:85:ae:f1:5a:0b:46:92:a5:d7:f8:0c:0f:
72:14:9d:80:be:5b:b8:ec:97:c3:94:8b:27:da:23:
ee:cd:76:b8:47:0d:f7:28:fd:55:c7:1b:1b:01:b2:
72:78:ec:29:7a:0b:da:a6:f7:60:da:ed:4c:b9:bd:
17:0b:90:b0:7a:10:be:c4:33:c7:ba:bf:b6:39:20:
14:cf:05:ef:44:f5:9c:6c:68:91:e7:91:96:ec:53:
d0:b8:66:d3:8d:45:39:03:6b:45:d2:53:c4:83:5f:
70:35:11:ad:b5:f3:e0:02:5f:9b:50:d9:37:ce:31:
37:95:b0:e7:76:22:49:b0:3c:70:f4:ba:98:06:d7:
c5:e9:5a:9d:da:e8:1f:fc:0e:a0:30:b8:3e:e3:70:
37:ae:bc:84:41:97:67:b6:4d:87:6c:cd:25:fc:fa:
b2:6a:f5:9e:9c:57:9d:65:63:ec:8f:51:59:58:17:
0a:28:c6:2f:ad:64:0d:42:d7:b5:a1:7c:f4:19:18:
9f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:42:6E:E1:7F:38:1D:A5:64:C8:5D:4F:8A:C7:F7:13:39:09:A0:7C
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:16:a6:7f:0d:bb:8b:83:1e:54:6e:0a:d5:31:34:8f:71:c8:
aa:a0:d2:4d:9d:e3:5c:91:93:df:c5:bd:1c:d6:b9:f5:b7:ad:
f6:98:27:b4:9d:c7:e7:24:4b:3d:e7:e4:71:13:f3:f9:a5:14:
d5:45:ea:8c:9e:ca:fe:1d:43:69:f0:67:45:56:82:63:98:e7:
29:95:03:46:01:20:10:42:0e:2d:2b:66:5c:cb:f3:c4:bd:3d:
72:f4:0b:05:7b:e0:18:59:4f:21:ea:d5:fe:a2:91:43:b9:06:
49:43:22:7e:bb:8d:c9:66:32:0b:8a:c0:c5:85:5c:e9:15:cf:
51:89:8f:cf:d4:c1:31:38:67:a6:2c:a5:a1:31:48:4d:71:b2:
63:f2:39:1e:3b:4a:fa:9c:89:7f:12:64:a3:b7:12:be:8d:39:
fb:e4:d9:8f:a3:8a:06:8d:75:f2:7e:e9:8e:4d:5a:dc:e8:6a:
9d:23:68:e2:bb:30:f2:c1:89:33:99:88:d1:6f:1b:09:f9:4c:
ea:50:89:1c:92:70:9c:34:b9:39:3e:55:1c:41:bc:80:87:b1:
54:47:3f:5b:b9:09:c6:67:e4:ed:48:46:4e:e9:3a:06:58:4f:
4f:65:ec:21:d4:25:3c:55:76:99:30:98:73:71:07:c0:1d:7b:
27:db:ae:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:13:36 2026 by rpki-client