Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
File: IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft (raw, json)
Hash identifier: VLydp/SJb+6NhUHgxceFciwNxBriQ3ieACg/3RvxcA0=
Subject key identifier: 43:9D:F4:BF:A6:83:58:81:CE:A1:7C:E9:BF:0D:F5:4F:C6:E8:D9:E1
Authority key identifier: 21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C
Certificate issuer: /CN=219b7c145e0acf8148418d54247dfddffc19fa4c
Certificate serial: 019D389C0698716440CE46411869E256FDAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
Manifest number: 0442
Signing time: Sun 29 Mar 2026 08:00:42 +0000
Manifest this update: Sun 29 Mar 2026 08:00:42 +0000
Manifest next update: Mon 30 Mar 2026 08:00:42 +0000
Files and hashes: 1: IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl (hash: icfXHIInQYR87t+TIl/5l/D1bbwZVmzBC+Ffqh471Js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:06:98:71:64:40:ce:46:41:18:69:e2:56:fd:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219b7c145e0acf8148418d54247dfddffc19fa4c
Validity
Not Before: Mar 29 08:00:42 2026 GMT
Not After : Mar 30 08:00:42 2026 GMT
Subject: CN=439df4bfa6835881cea17ce9bf0df54fc6e8d9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:69:e1:ef:e5:96:ca:94:81:36:2c:df:1c:da:
d5:57:e8:b0:8d:6a:cc:ca:6c:f1:76:6b:61:8c:38:
53:6a:69:c6:db:73:8b:92:26:ef:2f:63:53:73:b0:
a3:b4:1a:24:7f:a3:4f:69:40:b2:4f:9a:d2:ee:03:
a4:c8:79:ca:21:36:4a:c2:2c:aa:cc:69:55:4a:ce:
4c:8a:d5:8a:17:cf:84:ec:36:15:9b:40:7e:7e:44:
13:e5:d3:44:d5:a4:66:b9:70:be:d3:76:8c:2f:ad:
76:de:63:87:39:fa:21:15:47:da:9f:c9:9d:c4:4e:
df:dd:2d:a2:3a:ec:9a:b1:2c:fa:c3:df:a0:df:97:
be:ef:23:58:9e:d4:75:9f:c6:7d:01:03:c2:2b:f9:
c5:1b:dc:0d:df:63:0f:55:83:9a:56:05:96:f5:d0:
98:d7:40:7c:a4:12:7d:35:e2:0e:67:1e:8e:af:37:
b1:46:fa:a8:e0:83:15:56:7b:e0:66:59:3c:4a:fe:
17:84:01:36:24:d6:70:30:13:c8:ea:38:b9:da:81:
df:73:e0:51:fc:e2:86:b0:ea:e0:f2:e0:af:8b:8e:
54:a2:44:8a:46:77:53:06:33:fa:fd:f4:07:a3:a8:
b9:96:40:63:bc:16:00:d0:c5:49:bb:83:01:19:a6:
c3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9D:F4:BF:A6:83:58:81:CE:A1:7C:E9:BF:0D:F5:4F:C6:E8:D9:E1
X509v3 Authority Key Identifier:
keyid:21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:38:8f:bf:fb:41:30:af:c2:69:9b:14:37:d7:bc:3a:ee:a9:
57:9c:ee:de:d4:79:75:b9:47:c5:f8:94:9c:f6:11:b1:ec:df:
81:a4:f0:db:b9:b6:11:f2:88:b3:4a:53:b9:4e:f6:f9:93:42:
0f:6d:f2:38:48:e4:c9:74:fb:03:63:e9:73:29:c6:1b:0e:6d:
2b:8e:18:d1:d2:75:ff:5a:cb:62:e8:b9:6c:38:04:89:97:fb:
7e:82:c0:f3:90:b0:18:9d:43:b9:3c:d7:a6:a2:fe:1f:19:fe:
43:77:ec:ea:5d:32:04:da:1c:16:66:71:56:a8:37:9b:0f:f7:
1c:81:79:f5:4c:43:2a:45:b9:e1:0d:4f:d5:e5:d5:1b:fd:48:
88:56:84:f7:ec:f6:05:10:d6:9c:78:7a:6d:5e:97:12:4f:3f:
1d:ed:e9:1f:8d:e3:29:23:ea:66:19:72:01:47:dd:84:30:d9:
d6:a5:26:37:09:d8:83:fb:06:e9:f7:aa:c8:6d:83:3e:9a:3d:
1c:c5:f0:5b:59:81:de:26:29:1a:d5:9a:eb:47:87:9a:1c:d2:
c9:20:70:2b:1d:8e:cb:3d:4c:9f:de:ef:d7:c6:98:b0:ff:e4:
bf:75:1f:5d:da:f5:a8:ad:67:49:ee:35:ff:79:5f:bf:6d:f0:
b9:89:01:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nAaYcWRAzkZBGGniVv2vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOWI3YzE0NWUwYWNmODE0ODQxOGQ1NDI0N2RmZGRmZmMx
OWZhNGMwHhcNMjYwMzI5MDgwMDQyWhcNMjYwMzMwMDgwMDQyWjAzMTEwLwYDVQQD
Eyg0MzlkZjRiZmE2ODM1ODgxY2VhMTdjZTliZjBkZjU0ZmM2ZThkOWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumnh7+WWypSBNizfHNrVV+iwjWrM
ymzxdmthjDhTamnG23OLkibvL2NTc7CjtBokf6NPaUCyT5rS7gOkyHnKITZKwiyq
zGlVSs5MitWKF8+E7DYVm0B+fkQT5dNE1aRmuXC+03aML6123mOHOfohFUfan8md
xE7f3S2iOuyasSz6w9+g35e+7yNYntR1n8Z9AQPCK/nFG9wN32MPVYOaVgWW9dCY
10B8pBJ9NeIOZx6OrzexRvqo4IMVVnvgZlk8Sv4XhAE2JNZwMBPI6ji52oHfc+BR
/OKGsOrg8uCvi45UokSKRndTBjP6/fQHo6i5lkBjvBYA0MVJu4MBGabDUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOd9L+mg1iBzqF86b8N9U/G6NnhMB8GA1UdIwQY
MBaAFCGbfBReCs+BSEGNVCR9/d/8GfpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9mYTEwMDQtZTQ1MC00MWVjLTlkNWUt
NGExZjdjMWJkZjc4LzEvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9mYTEwMDQtZTQ1MC00MWVjLTlkNWUtNGExZjdjMWJkZjc4
LzEvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVziPv/tB
MK/CaZsUN9e8Ou6pV5zu3tR5dblHxfiUnPYRsezfgaTw27m2EfKIs0pTuU72+ZNC
D23yOEjkyXT7A2PpcynGGw5tK44Y0dJ1/1rLYui5bDgEiZf7foLA85CwGJ1DuTzX
pqL+Hxn+Q3fs6l0yBNocFmZxVqg3mw/3HIF59UxDKkW54Q1P1eXVG/1IiFaE9+z2
BRDWnHh6bV6XEk8/He3pH43jKSPqZhlyAUfdhDDZ1qUmNwnYg/sG6feqyG2DPpo9
HMXwW1mB3iYpGtWa60eHmhzSySBwKx2Oyz1Mn97v18aYsP/kv3UfXdr1qK1nSe41
/3lfv23wuYkBaA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:49 2026 by rpki-client