Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
File: IsX-stJfrE3YuqT3HY3CJoGGoDk.mft (raw, json)
Hash identifier: +o/69kCZxsJCAyABygkga8dNui39EfVUgNJP2hZY60k=
Subject key identifier: 5A:40:25:86:CD:98:0E:DA:80:8E:81:2B:80:BC:B9:06:AF:DE:8F:44
Authority key identifier: 22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
Certificate issuer: /CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Certificate serial: 019D3A1C3AC72511F3A93F6A6272E4C3CBEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 15:00:21 +0000
Manifest this update: Sun 29 Mar 2026 15:00:21 +0000
Manifest next update: Mon 30 Mar 2026 15:00:21 +0000
Files and hashes: 1: 1AKA9ICtH2sefFDvLoJsK9ePE54.roa (hash: 4v9nHWweB0nvxv/LfJiO5A7Jex4IvVHgN7szjLpSCK4=)
2: IsX-stJfrE3YuqT3HY3CJoGGoDk.crl (hash: ZZAWkQtF/cITPTGHeT5Z40RFQp5kfaQj5gc3cbvqkY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:3a:c7:25:11:f3:a9:3f:6a:62:72:e4:c3:cb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Validity
Not Before: Mar 29 15:00:21 2026 GMT
Not After : Mar 30 15:00:21 2026 GMT
Subject: CN=5a402586cd980eda808e812b80bcb906afde8f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:ef:f0:2e:41:55:b1:30:b9:32:69:2b:af:
db:03:f2:a8:87:7e:eb:3b:a8:7c:53:b6:04:87:49:
46:89:e5:9e:c3:95:8f:ef:b1:0a:5f:c4:90:46:e4:
62:6a:07:03:c4:81:e5:5c:9e:75:4a:4b:38:6b:48:
1a:0e:44:f5:09:98:0c:09:4a:91:b4:1d:d0:54:55:
1e:5d:6e:d5:24:d2:1c:9a:af:a6:19:73:63:58:dc:
10:a2:3c:13:f9:93:38:89:75:d7:6a:e7:10:c6:8a:
10:5a:5c:bd:85:b3:07:ec:71:24:5d:bb:7e:c6:e2:
8f:c8:ad:88:f4:f1:d2:bd:b6:85:34:aa:09:2b:6e:
e3:25:7a:72:53:1b:67:c1:08:15:42:46:70:1c:99:
33:1e:49:3d:b6:98:49:fd:ca:5b:98:2b:e6:fa:f0:
7a:aa:a3:97:f3:b4:74:3c:c5:41:55:af:b8:c6:f4:
2f:4b:26:a5:e0:aa:67:82:f8:52:68:d5:7d:55:7c:
21:ab:f0:42:b1:bb:d3:43:92:5d:4a:64:69:45:7d:
4c:8e:fb:73:b7:f8:1c:39:b6:e2:1a:42:fa:8d:41:
4b:67:bb:6a:f3:00:f0:91:18:3c:c5:15:1e:b8:26:
dc:40:06:6f:9b:c9:f1:7b:90:25:00:14:83:6e:ab:
0d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:40:25:86:CD:98:0E:DA:80:8E:81:2B:80:BC:B9:06:AF:DE:8F:44
X509v3 Authority Key Identifier:
keyid:22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:3c:d6:09:89:ad:1f:98:f8:ed:23:d1:aa:dc:c8:d1:9f:07:
ef:fd:0b:18:a0:5d:42:1b:23:11:ff:e9:81:f1:93:81:3b:24:
9b:81:02:06:ee:3f:48:7b:bb:9d:ee:f7:24:bd:ad:be:36:30:
66:8f:df:7d:42:8c:07:e3:49:13:74:50:17:ce:fe:7c:81:b3:
9a:8f:74:5c:f2:53:bf:3a:c9:89:a9:33:06:b0:a2:ea:d4:31:
76:fb:89:bc:8b:71:24:89:16:61:2f:a7:fc:ef:32:4d:2a:3b:
79:c5:c9:54:2f:9b:96:82:95:b8:8b:b5:9c:d3:1e:7a:8e:14:
61:da:9a:1e:c8:f5:eb:d2:7a:10:02:17:6e:52:b9:38:2c:cc:
9b:5d:bd:3f:55:4f:c5:e9:1e:0a:93:eb:ea:59:d6:74:70:3b:
45:48:ed:52:ef:fb:f2:b7:a5:c6:32:0c:ac:86:a1:1b:87:3f:
1c:0e:76:de:d0:9f:58:81:fc:1d:a5:b6:cb:a1:4a:62:69:ef:
89:98:25:82:f3:11:04:38:33:e3:7c:3c:7a:3e:20:17:7c:7a:
e1:52:5b:b2:97:76:c5:76:fe:54:27:c7:dc:ae:3d:78:1c:2a:
9f:da:ea:0d:b7:8e:93:56:65:ad:17:6c:29:a6:31:c5:10:db:
5e:e5:d0:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06HDrHJRHzqT9qYnLkw8vuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzVmZWIyZDI1ZmFjNGRkOGJhYTRmNzFkOGRjMjI2ODE4
NmEwMzkwHhcNMjYwMzI5MTUwMDIxWhcNMjYwMzMwMTUwMDIxWjAzMTEwLwYDVQQD
Eyg1YTQwMjU4NmNkOTgwZWRhODA4ZTgxMmI4MGJjYjkwNmFmZGU4ZjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW3v8C5BVbEwuTJpK6/bA/Koh37r
O6h8U7YEh0lGieWew5WP77EKX8SQRuRiagcDxIHlXJ51Sks4a0gaDkT1CZgMCUqR
tB3QVFUeXW7VJNIcmq+mGXNjWNwQojwT+ZM4iXXXaucQxooQWly9hbMH7HEkXbt+
xuKPyK2I9PHSvbaFNKoJK27jJXpyUxtnwQgVQkZwHJkzHkk9tphJ/cpbmCvm+vB6
qqOX87R0PMVBVa+4xvQvSyal4KpngvhSaNV9VXwhq/BCsbvTQ5JdSmRpRX1Mjvtz
t/gcObbiGkL6jUFLZ7tq8wDwkRg8xRUeuCbcQAZvm8nxe5AlABSDbqsN+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpAJYbNmA7agI6BK4C8uQav3o9EMB8GA1UdIwQY
MBaAFCLF/rLSX6xN2Lqk9x2NwiaBhqA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kMjE2ZWQtOWE3Ni00YTkzLWI2YTkt
NDY4ZjQ5OGZhZjFjLzEvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kMjE2ZWQtOWE3Ni00YTkzLWI2YTktNDY4ZjQ5OGZhZjFj
LzEvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxTzWCYmt
H5j47SPRqtzI0Z8H7/0LGKBdQhsjEf/pgfGTgTskm4ECBu4/SHu7ne73JL2tvjYw
Zo/ffUKMB+NJE3RQF87+fIGzmo90XPJTvzrJiakzBrCi6tQxdvuJvItxJIkWYS+n
/O8yTSo7ecXJVC+bloKVuIu1nNMeeo4UYdqaHsj169J6EAIXblK5OCzMm129P1VP
xekeCpPr6lnWdHA7RUjtUu/78relxjIMrIahG4c/HA523tCfWIH8HaW2y6FKYmnv
iZglgvMRBDgz43w8ej4gF3x64VJbspd2xXb+VCfH3K49eBwqn9rqDbeOk1ZlrRds
KaYxxRDbXuXQSQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:49:37 2026 by rpki-client