Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
File: IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft (raw, json)
Hash identifier: 84KzHWu4Pwp/1aUgy+2Qw9ClFmLp2U3raRZr36NdAa4=
Subject key identifier: C1:EF:C8:BD:74:14:F9:CF:22:97:70:E6:CC:63:7B:91:EA:E7:DE:8D
Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Certificate serial: 019D38D323B18A44AF6DFF74F445573F7057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
Manifest number: 0F0C
Signing time: Sun 29 Mar 2026 09:00:54 +0000
Manifest this update: Sun 29 Mar 2026 09:00:54 +0000
Manifest next update: Mon 30 Mar 2026 09:00:54 +0000
Files and hashes: 1: 9gPhrTVXXrWCqCjsm71By0RzzoI.roa (hash: 7vmmrUGhqUOQFhjNyWVb6vw1/SSr/8CDWs1hZa2ebfU=)
2: IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl (hash: ft+hi09BY4Jt82Iaa423s1R2iCj/3KjAnojrMSjXVmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:23:b1:8a:44:af:6d:ff:74:f4:45:57:3f:70:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Validity
Not Before: Mar 29 09:00:54 2026 GMT
Not After : Mar 30 09:00:54 2026 GMT
Subject: CN=c1efc8bd7414f9cf229770e6cc637b91eae7de8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:75:f5:5c:b5:04:c3:98:1a:f4:8e:b6:bf:40:
03:ae:79:2c:40:35:c6:1d:92:3c:82:40:e7:00:71:
e9:69:4f:87:8b:47:07:32:cf:70:91:cf:7c:d8:03:
22:ae:3f:84:74:98:3e:8b:2c:00:b3:ea:50:28:a4:
2f:de:42:f1:f7:2e:cb:aa:16:c9:80:d1:9e:de:e2:
9d:82:a8:c1:74:22:7c:d3:3c:c9:25:dd:6e:5b:d2:
10:80:a8:13:7d:9f:89:8b:37:6e:51:27:77:98:f3:
f9:e5:0a:ce:7f:62:7f:6d:0c:26:7a:bc:85:a6:8e:
c5:ec:f6:5d:ea:1a:83:2a:14:cf:12:9c:a5:ae:f4:
de:82:44:c0:4c:49:47:2c:cc:1a:4d:5d:43:03:de:
3c:27:5a:d2:53:cc:d6:fe:26:48:38:2f:57:a0:68:
85:a9:ca:b9:2d:04:8e:11:48:12:78:72:6c:6d:a3:
bb:db:ae:db:89:d9:90:e0:13:0f:72:46:e1:ea:e1:
3e:7b:5f:84:8d:24:e4:53:83:59:96:74:26:24:d4:
5b:05:f8:9e:f6:2f:7f:a4:1a:8a:51:6c:83:1d:45:
49:fb:5d:b9:fc:ef:38:c8:ac:d7:bc:cd:c5:6f:13:
70:14:43:d7:80:f5:93:25:3f:27:3d:81:be:eb:85:
78:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:EF:C8:BD:74:14:F9:CF:22:97:70:E6:CC:63:7B:91:EA:E7:DE:8D
X509v3 Authority Key Identifier:
keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:75:7e:60:9d:67:34:a4:94:de:d7:ee:9c:96:e1:48:c7:f9:
b8:f3:ee:00:c3:37:1b:fe:bd:ab:9c:31:45:52:3b:d6:16:78:
8a:b2:41:0b:33:35:2f:57:63:23:97:af:f3:6a:25:af:4c:f0:
c2:c7:eb:47:3a:22:15:40:14:dd:63:ca:5d:98:89:75:d5:b6:
05:7d:ba:48:f0:65:bd:73:21:61:bf:38:b2:b9:2b:68:ba:fa:
82:71:57:b9:18:ba:cc:cb:d1:a9:31:53:4f:b3:ed:5a:06:16:
88:6e:f6:d4:53:bc:36:92:be:44:59:a7:10:23:35:d4:90:62:
7a:98:68:9d:59:3c:a8:86:bf:3e:95:12:82:2f:06:68:8e:80:
44:89:b1:97:34:d9:ab:b0:4b:1a:d0:29:38:62:e1:64:be:0b:
63:31:d5:6a:be:bb:0b:f8:35:44:c1:21:e8:5f:c8:dd:b1:56:
f6:04:b8:60:ff:89:33:da:a5:b8:6e:dc:d7:0a:29:1e:f0:6e:
00:13:e4:5b:ae:26:ad:0a:8b:f5:17:6f:49:68:ba:a0:b0:eb:
47:93:57:c7:e1:45:f1:18:6c:7f:48:eb:2d:ab:3f:bb:43:a7:
af:d4:9e:e2:0c:b5:eb:14:6f:82:9a:bf:70:e8:a0:92:c7:76:
b0:0c:19:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:57 2026 by rpki-client