Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
File: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft (raw, json)
Hash identifier: HU/TnorAVRNXR8cHFZfArfi8tFlmHL0EqrXrE+Cic+w=
Subject key identifier: AA:50:87:7E:F9:EF:C0:24:D2:21:87:2B:62:0E:E2:22:FB:21:32:99
Authority key identifier: 23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
Certificate issuer: /CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Certificate serial: 019D38D3777DB817D7640D09D460B4CC1C3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:01:15 +0000
Manifest this update: Sun 29 Mar 2026 09:01:15 +0000
Manifest next update: Mon 30 Mar 2026 09:01:15 +0000
Files and hashes: 1: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl (hash: h7NowvLAPlL8NDpzxo8mD9D5pJr6x0uS7AtY63BaGV8=)
2: iJzZtljWIar5Fy83XWae5YmptnU.roa (hash: J8Td44gvEJyFMk2Q3nnnz2KQYHmuhOMCV+hhX1uovQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:77:7d:b8:17:d7:64:0d:09:d4:60:b4:cc:1c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Validity
Not Before: Mar 29 09:01:15 2026 GMT
Not After : Mar 30 09:01:15 2026 GMT
Subject: CN=aa50877ef9efc024d221872b620ee222fb213299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:f7:9a:e2:36:20:26:6a:99:47:79:85:2e:
83:07:de:c9:d9:77:99:18:30:97:a7:09:83:8d:ae:
0b:2a:dc:6a:ad:85:00:bc:fc:40:4a:0b:3e:b8:f4:
7f:11:e5:1c:bf:56:cc:de:41:f7:24:12:14:ac:d9:
64:fc:91:00:6f:7a:39:cf:0c:12:be:6e:29:a7:90:
1f:e8:f8:77:16:84:f5:d1:4c:b9:61:eb:cf:00:8d:
5f:56:2a:17:f9:7a:12:07:5a:5e:ba:47:34:99:39:
b8:0a:01:fa:11:f4:66:a1:d2:7c:6c:2c:81:d5:4b:
83:ec:10:0d:4c:5a:3b:89:23:d6:64:13:8f:4e:9f:
68:10:8f:93:c2:d7:7b:9a:29:9a:ad:1a:15:af:49:
ec:a3:76:f7:44:73:13:45:e4:06:97:b6:e6:d3:e7:
cb:4a:7d:7d:28:74:4f:3d:28:06:24:52:f5:00:19:
58:c0:b6:da:c3:b4:01:2d:4c:5d:8a:d1:e9:2c:fc:
5c:e1:49:6d:75:50:dd:4c:54:ed:7e:aa:40:07:10:
c4:f4:36:96:43:6f:42:c2:e0:3d:b6:4c:d9:9f:b2:
ba:50:1b:ae:a0:a0:45:27:5b:d1:22:c6:2e:01:bc:
2b:4f:76:73:48:fb:9f:9e:fb:d2:b5:68:fc:e5:72:
74:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:50:87:7E:F9:EF:C0:24:D2:21:87:2B:62:0E:E2:22:FB:21:32:99
X509v3 Authority Key Identifier:
keyid:23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:02:3a:cf:18:74:45:4a:eb:c1:92:c0:a0:0b:8b:51:02:b4:
4a:21:90:07:35:8a:60:01:e7:e1:a5:58:af:59:15:14:8f:56:
32:57:66:db:fb:35:90:6a:30:ff:9a:ce:f7:28:21:4d:5d:f3:
96:98:06:be:f6:41:b7:8a:fe:c9:9a:69:95:f4:8d:54:d2:16:
b2:96:e8:b2:0b:d6:ef:4b:a7:48:55:df:84:25:5b:bc:71:86:
15:68:4d:75:ed:f0:ce:ea:ff:3d:eb:86:b9:6b:5b:68:c3:16:
00:91:7d:0e:43:e6:33:21:98:64:a9:d6:be:f0:fb:25:b3:0c:
c8:37:9b:99:d3:60:83:89:b3:39:00:77:62:cd:4c:ba:2a:eb:
0f:86:98:8e:21:16:d0:ba:44:b3:f1:6a:d7:ee:48:34:ab:ee:
03:87:4c:c4:c3:07:9c:69:59:24:1f:ec:61:31:5d:1c:42:8a:
88:5f:3c:a6:50:67:31:29:5b:7e:7d:ce:74:27:b1:2c:f9:bb:
8e:13:da:86:40:db:92:08:a0:b1:3d:dd:b0:1b:7a:26:9d:56:
cc:00:ef:d1:a6:01:b7:7f:cf:8a:44:64:e7:7c:ac:cb:61:96:
b4:18:36:e9:35:0f:c9:98:d4:97:cd:0f:8f:3b:af:cb:5b:a7:
d0:b3:5f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:07 2026 by rpki-client