Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
File: I9NN09IR5cLqe9L1J6E-HploIOw.mft (raw, json)
Hash identifier: Ypfdb/05KaGIZXKSUJavPU4UlLFW3VyLS3u8TQcqj80=
Subject key identifier: BD:0F:6B:A7:FD:B1:B6:7B:42:94:51:37:3B:C4:80:0B:C8:DD:94:73
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 019D389BB47EBF11ADBD8C5E046B24181089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
Manifest number: 128A
Signing time: Sun 29 Mar 2026 08:00:21 +0000
Manifest this update: Sun 29 Mar 2026 08:00:21 +0000
Manifest next update: Mon 30 Mar 2026 08:00:21 +0000
Files and hashes: 1: I9NN09IR5cLqe9L1J6E-HploIOw.crl (hash: EpfnF/HJBEgiBWR1RDnwnf4agpsbCzygdVu+yrq6txE=)
2: l4SU9ie-aQFv3GaUgFkeH-xOaF8.roa (hash: PgarAlr827N/WHoU/7cGPWG2WCkz6pZoVQE96jRVrBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b4:7e:bf:11:ad:bd:8c:5e:04:6b:24:18:10:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Mar 29 08:00:21 2026 GMT
Not After : Mar 30 08:00:21 2026 GMT
Subject: CN=bd0f6ba7fdb1b67b429451373bc4800bc8dd9473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:59:4e:ad:d4:e0:8c:ea:8e:d4:d9:6c:44:b7:
c9:58:b4:21:b4:c9:60:ba:6a:97:d7:f6:5f:aa:02:
e4:9f:db:cd:98:f1:e6:b0:42:51:3c:96:ed:70:ef:
f3:29:fc:f3:b8:81:53:22:cf:cc:8c:5d:57:1d:51:
11:3b:f8:e4:79:1b:e4:2e:f5:c9:0b:02:f9:c1:dc:
7e:7a:67:c7:66:a2:41:2c:be:40:02:cb:b4:82:7c:
ff:83:ef:09:7d:7b:2d:c2:60:18:d6:7f:eb:73:22:
27:74:b3:4c:0c:33:0a:7a:7e:38:86:f8:45:9a:bf:
4e:bf:bf:a5:91:6d:e9:f8:8b:5e:42:9d:d8:11:20:
27:60:80:10:b5:1c:3e:2e:46:4e:fc:1f:93:7c:56:
ed:5e:f7:c1:53:0e:f9:e8:9c:55:9b:02:44:b7:91:
6d:0d:47:06:a1:35:ce:8a:84:36:13:97:e8:71:15:
12:33:e4:b1:c3:14:f2:c7:b2:25:60:36:b5:1a:c9:
ed:89:be:36:fe:b6:15:27:51:05:a1:e8:8f:c6:7b:
89:8d:90:02:0d:5d:93:d8:50:c8:55:f3:bc:9e:4e:
0f:fd:c5:f8:36:b6:68:5c:9c:0c:73:17:b8:37:3e:
86:31:73:5b:93:06:67:01:ae:44:69:11:63:7f:6c:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0F:6B:A7:FD:B1:B6:7B:42:94:51:37:3B:C4:80:0B:C8:DD:94:73
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:b1:ba:45:36:da:cf:47:d4:f1:61:7d:48:be:46:98:19:a9:
27:7c:d6:fe:b7:e6:18:37:8b:24:ee:69:aa:12:5a:f3:cf:e4:
74:33:e1:99:d7:5b:fe:fb:fd:96:0e:bc:1b:da:a3:4f:88:6c:
f6:f5:c6:7d:80:e2:dc:e4:87:e9:d0:ee:72:e5:8e:cb:02:0e:
dd:1e:54:51:c2:a6:12:d4:b4:cb:d0:bf:f3:12:aa:fa:8c:c3:
4b:f5:2a:5e:9a:cb:c7:ea:08:ef:8a:b2:15:ed:db:86:0d:52:
69:f3:c5:dd:a8:6f:3f:a1:69:ce:34:c8:9f:6f:71:df:41:1d:
55:c9:35:78:e6:9b:41:65:ff:3b:c9:dd:a6:65:1a:84:70:d9:
71:02:cc:c5:30:d6:da:c4:9e:81:6d:5f:7a:8e:f0:5b:c8:7b:
11:67:64:f9:44:a0:cc:5f:4d:9e:fd:fd:2a:cc:33:85:69:58:
9c:cc:bc:d7:23:26:b2:1d:53:a5:0f:8f:06:76:7a:d9:46:e1:
85:aa:64:4b:fc:b0:11:22:43:7f:cd:1f:ee:73:48:a5:a9:cb:
5c:50:89:c4:6e:fc:aa:2b:e7:59:b7:8c:37:17:3b:f5:a5:bf:
b5:67:16:d7:41:9d:6f:30:46:03:00:98:9d:63:c8:a3:ed:e0:
b8:d8:f7:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m7R+vxGtvYxeBGskGBCJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZDM0ZGQzZDIxMWU1YzJlYTdiZDJmNTI3YTEzZTFlOTk2
ODIwZWMwHhcNMjYwMzI5MDgwMDIxWhcNMjYwMzMwMDgwMDIxWjAzMTEwLwYDVQQD
EyhiZDBmNmJhN2ZkYjFiNjdiNDI5NDUxMzczYmM0ODAwYmM4ZGQ5NDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtllOrdTgjOqO1NlsRLfJWLQhtMlg
umqX1/ZfqgLkn9vNmPHmsEJRPJbtcO/zKfzzuIFTIs/MjF1XHVERO/jkeRvkLvXJ
CwL5wdx+emfHZqJBLL5AAsu0gnz/g+8JfXstwmAY1n/rcyIndLNMDDMKen44hvhF
mr9Ov7+lkW3p+IteQp3YESAnYIAQtRw+LkZO/B+TfFbtXvfBUw756JxVmwJEt5Ft
DUcGoTXOioQ2E5focRUSM+SxwxTyx7IlYDa1Gsntib42/rYVJ1EFoeiPxnuJjZAC
DV2T2FDIVfO8nk4P/cX4NrZoXJwMcxe4Nz6GMXNbkwZnAa5EaRFjf2w1dwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0Pa6f9sbZ7QpRRNzvEgAvI3ZRzMB8GA1UdIwQY
MBaAFCPTTdPSEeXC6nvS9SehPh6ZaCDsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTlOTjA5SVI1Y0xxZTlMMUo2RS1IcGxvSU93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kYzJjMDQtNTlmNi00ZjIyLWI3YmQt
ZmU2NzFjMWQ1MTUwLzEvSTlOTjA5SVI1Y0xxZTlMMUo2RS1IcGxvSU93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9kYzJjMDQtNTlmNi00ZjIyLWI3YmQtZmU2NzFjMWQ1MTUw
LzEvSTlOTjA5SVI1Y0xxZTlMMUo2RS1IcGxvSU93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu7G6RTba
z0fU8WF9SL5GmBmpJ3zW/rfmGDeLJO5pqhJa88/kdDPhmddb/vv9lg68G9qjT4hs
9vXGfYDi3OSH6dDucuWOywIO3R5UUcKmEtS0y9C/8xKq+ozDS/UqXprLx+oI74qy
Fe3bhg1SafPF3ahvP6FpzjTIn29x30EdVck1eOabQWX/O8ndpmUahHDZcQLMxTDW
2sSegW1feo7wW8h7EWdk+USgzF9Nnv39KswzhWlYnMy81yMmsh1TpQ+PBnZ62Ubh
hapkS/ywESJDf80f7nNIpanLXFCJxG78qivnWbeMNxc79aW/tWcW10GdbzBGAwCY
nWPIo+3guNj3aQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:45 2026 by rpki-client