Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: 9uY9vOkFxpOwEWGyOm++EGGHgg+kk7yjh5edB8ZxAuc=
Subject key identifier: 20:FD:21:07:0D:58:84:42:C2:D9:7B:63:93:A5:12:72:3A:0F:E6:A8
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 019D292914856C1EE4879EF3F54352546A65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 0509
Signing time: Thu 26 Mar 2026 08:00:51 +0000
Manifest this update: Thu 26 Mar 2026 08:00:51 +0000
Manifest next update: Fri 27 Mar 2026 08:00:51 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: bNM5ZtEG9u3/s2JbCiELd1XvAmaCwzMwcjrsjZXV4N8=)
2: RIbu27-D1A3-MonubZ_zZNoyyNM.roa (hash: /mnXw1tu71r9fbtUEEZDR8gD0rD8atHLNSZPRm849T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:14:85:6c:1e:e4:87:9e:f3:f5:43:52:54:6a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: Mar 26 08:00:51 2026 GMT
Not After : Mar 27 08:00:51 2026 GMT
Subject: CN=20fd21070d588442c2d97b6393a512723a0fe6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:31:01:76:cf:98:7b:2f:16:b0:c1:eb:9c:dc:
b4:f9:3b:a9:e3:b8:1d:dd:7c:a3:7c:2b:e9:ea:41:
42:f7:5a:50:92:12:26:0c:12:a2:84:b5:2b:f1:aa:
c7:b5:b1:59:cf:81:cf:ec:54:85:74:e5:9d:ba:97:
89:b2:dd:fc:d8:27:30:c6:71:65:c5:8a:e1:8f:93:
a5:6a:da:44:ba:a6:c3:6c:c7:a8:97:b1:bf:45:9d:
12:28:cd:86:3b:69:0a:09:31:bf:f1:17:ab:b6:d8:
74:44:3f:fc:b8:11:9d:e8:e4:68:05:89:77:52:4c:
0a:0c:9e:3b:1b:79:84:03:c9:86:85:66:af:f5:e2:
26:f8:f8:58:60:de:64:0b:e9:7a:3f:7a:d1:28:e5:
02:90:b2:9e:32:b3:81:5e:63:13:37:77:4d:88:63:
6c:a2:0a:c8:68:cb:12:2a:5e:76:cd:02:50:51:a4:
3d:c3:f1:70:cf:5e:54:66:74:15:aa:66:de:e5:0e:
f8:7b:9f:a5:8a:2b:e4:a0:31:77:92:08:63:ee:93:
fa:63:50:0d:c1:01:c8:23:11:fe:d3:8c:16:c8:9f:
38:cd:2c:4d:77:69:c8:39:d5:2d:23:e1:82:66:27:
a3:d8:90:dd:cd:0f:c5:86:2f:dc:bf:ca:7f:db:c9:
de:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FD:21:07:0D:58:84:42:C2:D9:7B:63:93:A5:12:72:3A:0F:E6:A8
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:a1:f2:8f:0a:90:00:ef:26:61:ef:e7:ca:51:53:99:f2:19:
22:82:6f:4e:28:f6:56:f8:3c:49:aa:7e:c2:63:40:60:f1:30:
92:63:36:b4:62:33:41:8a:a7:21:85:24:44:ef:dd:e8:1c:49:
41:78:06:08:46:77:37:8f:3d:9b:b4:0a:e6:6f:ec:20:12:86:
b3:47:aa:13:c6:0a:08:24:e8:23:40:8f:2e:b8:68:59:f6:4c:
46:a1:ce:aa:a0:e1:a6:9e:3f:35:69:a8:19:fa:f8:2e:88:94:
ce:0b:d3:62:2d:5b:30:b6:65:f9:7a:f1:63:92:f9:10:f7:f3:
95:21:4a:26:1d:39:58:4a:b6:64:26:46:94:9e:53:58:44:21:
9e:28:1e:54:3e:d1:41:7d:ac:b6:3f:0b:a7:8a:36:08:eb:ac:
87:b4:ec:4c:98:cb:a1:a7:62:4f:f9:65:66:40:6d:f0:c3:8d:
dc:29:45:1d:f9:c3:a3:00:cd:83:82:ed:8b:1c:0b:2a:1d:02:
9e:57:27:6b:d8:40:d6:e7:6c:60:32:b6:f9:4a:3f:2f:c4:ff:
c7:71:bb:16:46:e7:cd:a3:96:b3:07:dd:74:c1:c9:78:4c:a7:
23:aa:f9:a4:c7:99:54:1a:1d:99:8b:20:55:7e:50:a4:c1:08:
3c:f7:44:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKRSFbB7kh57z9UNSVGplMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZDE0YWZlODc1MDIxM2MyODBlNWI2OGJlZmIxODg2NmY3
OTQ5N2YwHhcNMjYwMzI2MDgwMDUxWhcNMjYwMzI3MDgwMDUxWjAzMTEwLwYDVQQD
EygyMGZkMjEwNzBkNTg4NDQyYzJkOTdiNjM5M2E1MTI3MjNhMGZlNmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTEBds+Yey8WsMHrnNy0+Tup47gd
3XyjfCvp6kFC91pQkhImDBKihLUr8arHtbFZz4HP7FSFdOWdupeJst382CcwxnFl
xYrhj5OlatpEuqbDbMeol7G/RZ0SKM2GO2kKCTG/8Rertth0RD/8uBGd6ORoBYl3
UkwKDJ47G3mEA8mGhWav9eIm+PhYYN5kC+l6P3rRKOUCkLKeMrOBXmMTN3dNiGNs
ogrIaMsSKl52zQJQUaQ9w/Fwz15UZnQVqmbe5Q74e5+liivkoDF3kghj7pP6Y1AN
wQHIIxH+04wWyJ84zSxNd2nIOdUtI+GCZiej2JDdzQ/Fhi/cv8p/28neVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCD9IQcNWIRCwtl7Y5OlEnI6D+aoMB8GA1UdIwQY
MBaAFCPRSv6HUCE8KA5baL77GIZveUl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2Qt
ODQ3MmNhNDBmN2E3LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2QtODQ3MmNhNDBmN2E3
LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARaHyjwqQ
AO8mYe/nylFTmfIZIoJvTij2Vvg8Sap+wmNAYPEwkmM2tGIzQYqnIYUkRO/d6BxJ
QXgGCEZ3N489m7QK5m/sIBKGs0eqE8YKCCToI0CPLrhoWfZMRqHOqqDhpp4/NWmo
Gfr4LoiUzgvTYi1bMLZl+XrxY5L5EPfzlSFKJh05WEq2ZCZGlJ5TWEQhnigeVD7R
QX2stj8Lp4o2COush7TsTJjLoadiT/llZkBt8MON3ClFHfnDowDNg4LtixwLKh0C
nlcna9hA1udsYDK2+Uo/L8T/x3G7FkbnzaOWswfddMHJeEynI6r5pMeZVBodmYsg
VX5QpMEIPPdEoA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:08:58 2026 by rpki-client