Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
File: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft (raw, json)
Hash identifier: k6qe9B3gjxmLrfdHazpzoy4nH83WwhCgnGXIEjIB7mY=
Subject key identifier: CF:01:81:DE:C4:90:37:C9:15:7A:E1:E7:0D:4F:AC:A1:41:06:3D:6A
Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472
Certificate serial: 019D3865C0072CCB969F2297826E6D8BB814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
Manifest number: 1822
Signing time: Sun 29 Mar 2026 07:01:25 +0000
Manifest this update: Sun 29 Mar 2026 07:01:25 +0000
Manifest next update: Mon 30 Mar 2026 07:01:25 +0000
Files and hashes: 1: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl (hash: NPRiZNo5P4DRi7iCNC2Rw7omHtiwhHKC0F5lDk+LayU=)
2: nmpthTHAT4WUcq8Q3IMochngGiw.roa (hash: WMNeejxSLtwCCkkRDHZIffdNUGROwkauBCQwzToW+EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:c0:07:2c:cb:96:9f:22:97:82:6e:6d:8b:b8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d422367433765b541a37390a998997b737c46472
Validity
Not Before: Mar 29 07:01:25 2026 GMT
Not After : Mar 30 07:01:25 2026 GMT
Subject: CN=cf0181dec49037c9157ae1e70d4faca141063d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:5d:1f:0a:21:80:15:b3:60:66:11:02:c1:
2a:9a:47:d5:22:e7:c8:aa:de:6e:9a:3d:4e:75:a5:
cc:4a:4c:bf:f3:28:13:41:d1:da:76:04:b9:52:a0:
92:b3:ff:34:f0:9e:e1:f0:38:dd:eb:0a:0b:8b:71:
9c:37:6f:8d:e6:c4:6d:2d:ab:51:ff:f4:b2:22:6a:
43:20:69:7e:75:f2:49:5a:14:7b:91:7d:bc:38:ea:
0c:b4:e3:be:d6:ec:ee:05:d4:66:6a:e9:d1:69:84:
13:3e:6b:27:90:c9:b6:4d:2f:86:d8:b0:41:35:d1:
8a:0d:a0:05:59:b0:95:34:74:62:60:06:d0:4d:ac:
c1:af:9f:61:74:46:5c:f4:e0:a3:3e:a7:df:2e:c3:
06:a9:9a:b7:1c:93:a2:06:6a:fe:5c:e6:dd:fe:58:
df:6d:66:44:cd:27:a5:83:2f:ba:1c:e8:89:c9:6c:
dd:2f:62:f4:42:fd:45:58:96:ac:64:4a:19:60:26:
1b:b6:ad:94:03:81:89:6b:1c:98:2a:f1:18:f8:30:
40:d9:e0:8e:f3:3f:87:1d:7f:c3:51:37:3f:e6:54:
0f:fc:5e:7c:56:cd:10:a0:f3:80:fe:a0:05:af:7e:
cd:61:ba:02:a3:50:3d:13:16:06:4a:a3:6e:66:08:
c6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:01:81:DE:C4:90:37:C9:15:7A:E1:E7:0D:4F:AC:A1:41:06:3D:6A
X509v3 Authority Key Identifier:
keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:49:ee:8e:65:30:0d:ec:94:47:66:79:71:ef:c5:b9:59:3a:
6f:fd:24:1e:78:c4:a5:15:19:a6:fe:a8:72:e5:06:e1:80:87:
ab:3d:ba:2d:c1:8e:52:6a:dd:fb:17:55:4f:ea:47:82:9b:e8:
7f:1d:73:c5:de:b0:2c:f1:b9:5c:69:fa:34:3a:71:de:2e:5e:
ee:cc:cc:68:7d:91:41:c6:b7:ae:f9:27:c4:0b:ea:88:63:45:
83:09:94:49:91:46:ce:d1:e2:0e:55:ec:bb:e6:04:8e:d1:4e:
80:5a:a2:5e:e9:4b:22:95:87:ae:b8:28:77:bb:4d:fc:ee:d0:
7f:e0:11:7f:d2:b9:26:a5:c5:89:f6:61:8e:9a:01:a5:cf:cb:
d5:a6:7f:4f:1c:cf:02:4e:1b:a3:e5:bd:c3:c5:03:1e:9c:81:
f8:ca:6e:c9:71:14:26:0b:9e:98:54:3b:66:c4:a5:e2:3b:a4:
06:c0:06:97:11:70:f6:72:54:e3:d3:b3:7c:59:c8:ac:4c:e1:
e3:28:ec:c8:3c:ad:72:0a:34:87:54:1e:76:45:b1:90:18:17:
8d:12:1f:c0:f9:3c:20:9a:16:81:97:4a:c7:0a:15:28:96:76:
3a:8d:24:5d:04:3f:fb:7b:60:e5:6a:d2:63:70:65:15:c0:cf:
a9:24:19:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:07 2026 by rpki-client