Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
File: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft (raw, json)
Hash identifier: 2BgBKV/wqm7x3UeGXTM3Pgzl4habE7p2v+NXoHUv/2k=
Subject key identifier: D7:F8:A5:96:4B:84:B5:15:CF:DD:E4:94:44:18:00:89:56:98:E2:FB
Authority key identifier: 23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
Certificate issuer: /CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Certificate serial: 019D265FD7FD1ACAE290D8818E7166C231DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
Manifest number: 1882
Signing time: Wed 25 Mar 2026 19:01:48 +0000
Manifest this update: Wed 25 Mar 2026 19:01:48 +0000
Manifest next update: Thu 26 Mar 2026 19:01:48 +0000
Files and hashes: 1: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl (hash: b2EyR9xj4Jevypgvyn2BdLgDy+kVIKzqfjfwxnXZBdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:d7:fd:1a:ca:e2:90:d8:81:8e:71:66:c2:31:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Validity
Not Before: Mar 25 19:01:48 2026 GMT
Not After : Mar 26 19:01:48 2026 GMT
Subject: CN=d7f8a5964b84b515cfdde494441800895698e2fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6f:cf:a5:c5:42:04:54:e3:a6:e9:6e:43:0d:
57:4e:bb:15:9a:06:bd:62:24:54:07:b4:d7:85:ca:
33:a6:b1:e8:e6:d1:41:fd:db:93:1e:16:bd:40:68:
60:11:cc:3f:b5:a8:b0:3f:18:ab:f7:ef:e5:93:b6:
29:1b:e1:0b:7e:2c:9d:27:80:26:49:85:14:3f:2a:
2d:a4:62:b8:b6:ac:7c:25:c3:49:2d:8e:db:53:99:
28:41:9b:ca:73:94:29:53:1f:0b:28:8f:94:a3:f9:
51:e4:a7:5c:4f:fb:ab:89:5d:b2:3c:b1:1f:fe:07:
b4:e2:88:fe:b7:eb:a4:e1:84:a8:6f:6a:e5:a8:15:
d1:cf:f7:5e:c2:1c:b7:47:a9:e4:15:53:06:14:ff:
e0:c2:f3:10:e6:9e:8a:eb:95:69:55:c8:87:d7:5e:
fc:d0:a0:01:79:19:3c:74:dc:db:e5:25:c7:af:19:
d9:e1:7c:d6:d3:35:97:c7:f6:6a:ed:3b:6a:e1:22:
a3:0e:8c:49:9c:bc:8d:f8:08:31:3d:b2:e5:a4:58:
9e:3a:4d:2b:52:50:19:cb:1f:c6:49:85:b5:21:4d:
93:5e:a5:41:b3:8f:ee:5c:b7:cd:f2:27:99:65:0c:
c7:0f:f4:e6:3f:b2:78:de:b0:87:4d:be:48:be:30:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F8:A5:96:4B:84:B5:15:CF:DD:E4:94:44:18:00:89:56:98:E2:FB
X509v3 Authority Key Identifier:
keyid:23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3c:34:b4:74:16:9f:9c:66:e4:17:cc:3a:0c:09:93:47:e5:
95:8a:74:e1:6f:95:1b:79:78:64:12:88:ea:97:5b:82:f0:8b:
ff:61:af:7c:1c:34:8a:3d:63:0b:1a:7c:a0:5e:4e:da:d0:6d:
43:38:7d:ce:f4:fa:3f:39:23:da:00:ac:a9:2b:7a:55:11:91:
ef:44:0f:85:2d:11:ff:5f:bc:80:ae:62:48:41:d2:31:b7:cf:
90:cf:08:29:62:e9:96:f6:11:3a:98:a6:b4:39:b5:8d:d4:4b:
e7:88:a4:2d:78:b8:ff:e3:a8:7b:b8:d3:e0:fd:62:85:1e:af:
7d:de:91:7b:e8:e5:5f:4b:23:3b:1a:04:ca:b1:0b:7b:38:49:
3e:dd:83:60:1b:76:84:5d:4e:40:99:fd:41:42:2b:c3:0d:b7:
c4:7f:73:87:7d:13:de:c3:3d:6c:3a:89:b7:0d:34:c3:0c:5a:
12:a1:c9:2f:a5:62:1f:af:fa:7d:b4:10:7d:81:48:ec:c5:c4:
e0:bc:1d:3d:1e:d8:33:94:5c:02:36:4e:27:a4:4a:e7:83:8a:
64:fc:42:d2:40:9a:1a:19:4c:a9:2e:6b:b3:3e:1f:5e:5c:a5:
59:17:4e:02:3a:3e:40:66:d6:32:8b:e3:64:c5:4d:bb:dc:45:
01:56:63:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:52:47 2026 by rpki-client