Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: oc6Stu1pzqGtykOWD0BPHOnmUULr1HOjFKHiF1Y9o5g=
Subject key identifier: D0:46:DB:B1:5D:5C:3D:77:67:12:DC:71:9E:33:C7:EA:6B:7E:6F:F6
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 019E205A3B8437EAE52F10CA12BBE2F3838B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 0589
Signing time: Wed 13 May 2026 08:00:44 +0000
Manifest this update: Wed 13 May 2026 08:00:44 +0000
Manifest next update: Thu 14 May 2026 08:00:44 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: 8Z9rtXhIXDPncrtqOnZ6cOpqwXrchpHBMZm2JidiwbA=)
2: RIbu27-D1A3-MonubZ_zZNoyyNM.roa (hash: /mnXw1tu71r9fbtUEEZDR8gD0rD8atHLNSZPRm849T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:3b:84:37:ea:e5:2f:10:ca:12:bb:e2:f3:83:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: May 13 08:00:44 2026 GMT
Not After : May 14 08:00:44 2026 GMT
Subject: CN=d046dbb15d5c3d776712dc719e33c7ea6b7e6ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4f:c5:ae:99:00:64:95:f1:7c:00:da:2f:98:
a0:4e:3c:25:4f:24:ec:fd:a5:3b:a0:e3:01:de:42:
f5:11:78:dd:18:7d:b3:db:23:ca:58:49:c8:2c:cb:
1b:f8:62:61:f1:c1:4e:9e:0e:ec:3a:49:3e:1f:d0:
6a:09:fc:d1:c0:4b:3b:32:79:ef:eb:9e:24:e0:4c:
8e:1b:0e:7f:70:b7:ee:cb:f8:c3:58:37:06:4f:b7:
ad:ca:26:8e:38:29:39:90:b9:4b:32:e3:06:5b:84:
e0:1c:ad:84:94:e1:9c:1c:13:a5:7e:40:86:8c:22:
f4:58:ab:48:b0:aa:50:ec:60:90:32:61:33:79:92:
e2:43:94:76:45:ec:37:04:54:81:d0:19:bf:f1:42:
5d:f5:f9:5f:25:1c:ac:41:0c:24:76:17:08:9e:02:
62:1b:ba:eb:e1:f0:34:23:10:aa:7a:aa:db:77:5f:
bb:05:ad:f2:63:0a:8c:55:95:97:9d:55:75:07:c6:
0d:19:82:03:ac:f7:ea:6e:ba:2b:65:02:51:b2:76:
a4:40:ef:6b:73:17:37:5a:b5:eb:18:31:00:2e:ba:
d5:3b:a1:53:79:3d:7e:70:41:bb:d1:5c:d4:43:3f:
58:43:33:f7:b8:20:74:82:63:c0:cf:cc:b5:a6:de:
f9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:46:DB:B1:5D:5C:3D:77:67:12:DC:71:9E:33:C7:EA:6B:7E:6F:F6
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e3:ab:dd:14:3f:a5:59:ba:98:7c:81:2f:2c:fd:d4:50:3a:
78:4d:15:8c:3b:e7:6c:82:f1:96:3c:7b:07:78:c5:9d:ab:67:
85:c9:ce:f6:dd:5a:d8:32:00:90:e1:66:28:86:b7:82:64:13:
bf:ea:de:ee:96:44:80:d6:68:ce:89:aa:b3:a9:aa:26:ad:5b:
e8:38:0f:04:68:f7:5e:a2:0d:39:7d:99:03:7a:23:e8:51:12:
3f:26:85:4f:54:b5:73:b3:e8:c0:0e:c0:46:7d:0d:81:b2:47:
5b:77:06:93:e9:45:78:77:8d:b0:4a:52:09:b7:2f:d6:a6:45:
1c:ff:a1:5c:18:8d:b7:ba:4a:85:88:4d:c3:c3:5b:74:2e:8e:
8b:87:95:fa:17:b7:fb:08:50:54:af:78:9f:17:cd:2f:16:19:
7a:d9:c4:d8:6c:0d:8b:0a:da:d9:3d:23:bf:ad:d2:83:49:ef:
36:c5:83:aa:56:3e:f8:03:1f:d2:87:de:84:2d:3d:d8:cb:15:
5b:30:79:74:71:e2:16:d1:28:6e:28:ff:da:9c:34:5e:72:c6:
6b:2c:61:b2:8f:38:57:ed:a7:a9:7d:bb:62:88:0d:95:59:9d:
5a:f3:45:4d:29:a8:c4:7d:45:54:ea:64:e9:9f:02:d6:93:ce:
a5:a6:58:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWjuEN+rlLxDKErvi84OLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZDE0YWZlODc1MDIxM2MyODBlNWI2OGJlZmIxODg2NmY3
OTQ5N2YwHhcNMjYwNTEzMDgwMDQ0WhcNMjYwNTE0MDgwMDQ0WjAzMTEwLwYDVQQD
EyhkMDQ2ZGJiMTVkNWMzZDc3NjcxMmRjNzE5ZTMzYzdlYTZiN2U2ZmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAik/FrpkAZJXxfADaL5igTjwlTyTs
/aU7oOMB3kL1EXjdGH2z2yPKWEnILMsb+GJh8cFOng7sOkk+H9BqCfzRwEs7Mnnv
654k4EyOGw5/cLfuy/jDWDcGT7etyiaOOCk5kLlLMuMGW4TgHK2ElOGcHBOlfkCG
jCL0WKtIsKpQ7GCQMmEzeZLiQ5R2Rew3BFSB0Bm/8UJd9flfJRysQQwkdhcIngJi
G7rr4fA0IxCqeqrbd1+7Ba3yYwqMVZWXnVV1B8YNGYIDrPfqbrorZQJRsnakQO9r
cxc3WrXrGDEALrrVO6FTeT1+cEG70VzUQz9YQzP3uCB0gmPAz8y1pt758wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNBG27FdXD13ZxLccZ4zx+prfm/2MB8GA1UdIwQY
MBaAFCPRSv6HUCE8KA5baL77GIZveUl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2Qt
ODQ3MmNhNDBmN2E3LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2QtODQ3MmNhNDBmN2E3
LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIeOr3RQ/
pVm6mHyBLyz91FA6eE0VjDvnbILxljx7B3jFnatnhcnO9t1a2DIAkOFmKIa3gmQT
v+re7pZEgNZozomqs6mqJq1b6DgPBGj3XqINOX2ZA3oj6FESPyaFT1S1c7PowA7A
Rn0NgbJHW3cGk+lFeHeNsEpSCbcv1qZFHP+hXBiNt7pKhYhNw8NbdC6Oi4eV+he3
+whQVK94nxfNLxYZetnE2GwNiwra2T0jv63Sg0nvNsWDqlY++AMf0ofehC092MsV
WzB5dHHiFtEobij/2pw0XnLGayxhso84V+2nqX27YogNlVmdWvNFTSmoxH1FVOpk
6Z8C1pPOpaZY6Q==
-----END CERTIFICATE-----
Generated at Wed May 13 12:31:24 2026 by rpki-client