Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
File: IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft (raw, json)
Hash identifier: LxDvrlJoFMsWM9tKn5pAZ+BDMbiI7xc5CTsyznsggrw=
Subject key identifier: 25:90:DB:6C:AD:83:0E:61:6D:05:F1:61:99:39:24:F5:2D:B8:0C:66
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 019D2584584A4C33938183A7A3A6840B14D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
Manifest number: 13DA
Signing time: Wed 25 Mar 2026 15:02:03 +0000
Manifest this update: Wed 25 Mar 2026 15:02:03 +0000
Manifest next update: Thu 26 Mar 2026 15:02:03 +0000
Files and hashes: 1: IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl (hash: 5QXKwQeJ9H65kUnIirkMb+gn625/YmVb1+WvghfSPTE=)
2: Ry13RGPYJVvtpvhKEOm6pAfriNc.roa (hash: oTL00T36xjABiLlLnyyxwdABnaFfTiLLRpEKK+wxv9o=)
3: TYPr3RJ5yO-DDveN9UKe3IFvuiY.asa (hash: QAM+8Y7IXNl8McE2u38ceOVi6OQTLcaAjr7T4vt1spg=)
4: XmK83eJDzPMsOo6NG4b7hC8Q6ik.roa (hash: LiOPt6WyR9nnxeKYrKkKUN50OOD6CsvfUFylT6hefd4=)
5: lMyPvW5droFVn6Tk385-cqRx17c.roa (hash: gpoTflIdMdUsvV/coCFUIU3cd1nO0X3/iYdUbk7d574=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:84:58:4a:4c:33:93:81:83:a7:a3:a6:84:0b:14:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Mar 25 15:02:03 2026 GMT
Not After : Mar 26 15:02:03 2026 GMT
Subject: CN=2590db6cad830e616d05f161993924f52db80c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:af:ad:cd:d9:48:26:a5:c3:d7:58:df:ef:6e:
94:b1:0f:2e:aa:2e:50:1a:6e:1e:b1:11:d8:11:00:
c8:76:aa:01:86:c2:fe:dd:f5:4c:e0:33:34:13:f4:
88:75:00:70:1c:8e:00:d1:37:10:e8:42:ba:83:6f:
a0:dc:8b:33:e8:d7:0c:7f:b5:a8:90:70:39:21:c6:
52:fe:7e:a9:55:f8:db:50:9b:73:0a:7a:d9:cb:e8:
f9:13:da:be:ee:49:91:b5:67:6d:06:e1:ad:b4:8d:
30:27:55:a7:d4:b5:70:23:55:0e:a6:b8:10:10:dc:
32:f3:ef:0c:b0:25:fe:ff:73:07:ea:af:f0:ff:5a:
fc:c7:dd:eb:49:c1:f9:da:3a:fe:89:8a:18:aa:ee:
f7:0c:b9:23:27:8d:17:f9:bf:39:40:d4:d2:3a:93:
0e:18:99:49:99:e5:79:99:7e:27:36:c8:3e:6a:ce:
98:4b:54:c8:9f:b4:9c:c1:cb:8e:a9:09:75:cf:ef:
0c:54:74:04:f8:5b:6f:2a:a7:f2:ee:54:d9:a7:b8:
60:9f:19:56:64:df:59:2e:b9:85:cc:b1:bb:a8:3a:
a8:cf:a5:a2:a9:1e:27:d0:ef:46:1f:55:2b:a8:d2:
ec:03:99:c7:fb:8a:9e:d3:6e:56:4f:a6:b6:14:23:
4c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:90:DB:6C:AD:83:0E:61:6D:05:F1:61:99:39:24:F5:2D:B8:0C:66
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:08:31:93:8b:3f:6e:e9:40:d8:5d:6d:6e:63:4e:60:65:93:
00:62:38:81:74:bf:a1:03:d2:8b:00:e5:4a:fc:5d:c6:a5:73:
66:3e:c6:67:b5:85:e2:90:d2:b9:19:96:69:60:2a:44:53:1e:
99:7b:41:bd:87:e8:10:8b:e8:23:e7:97:d5:a6:e6:ef:2a:25:
36:cb:97:d1:16:48:5d:b6:08:53:2c:1f:7c:b5:5d:e8:bf:f5:
98:a1:77:ec:c3:5d:6d:03:2e:d4:4e:7c:d9:79:1b:91:55:a3:
f3:60:fc:68:44:07:58:f1:b8:81:a8:41:a7:ec:ac:d0:25:1d:
a5:1a:fd:7c:c0:d4:a6:4d:68:5a:4d:28:dd:7f:fe:79:cc:c0:
13:42:24:e8:10:08:33:78:bd:6d:61:39:2a:5a:08:94:bc:14:
1d:b5:3a:c1:f9:85:5c:da:46:29:ab:7b:c0:6a:43:eb:da:5a:
bb:b1:65:a4:18:ea:2a:e4:42:7c:99:96:5a:48:3c:7d:6a:59:
29:ce:b5:64:ed:cb:2c:a9:c6:91:8d:a6:24:83:e5:4f:c8:1c:
c3:61:88:6b:2c:64:bb:f7:67:44:d0:7b:e6:29:e0:a1:86:77:
f3:2c:ed:9f:cc:0d:3b:39:db:2b:b2:cb:a9:84:6f:5d:bc:63:
53:85:8b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:24:40 2026 by rpki-client