Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
File: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft (raw, json)
Hash identifier: M/93kUEEA5Nufsrb4x3KPxePx4j8bfCsf4V3mey0wSk=
Subject key identifier: 2B:AE:0E:DA:23:C8:FF:7A:05:8B:BA:B5:B0:22:FD:46:4A:9E:37:AC
Authority key identifier: 23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2
Certificate issuer: /CN=23f5c2585382084792f13ad197205efdd2752df2
Certificate serial: 019E1DFDE458CBF5A51CD96A7CE931430299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
Manifest number: 02B4
Signing time: Tue 12 May 2026 21:00:38 +0000
Manifest this update: Tue 12 May 2026 21:00:38 +0000
Manifest next update: Wed 13 May 2026 21:00:38 +0000
Files and hashes: 1: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl (hash: IvaEW8NWHorwORwE995Lxet9UkEvLJ8PIF2nfm7dWxU=)
2: ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa (hash: 7P+K2VYLnbm0w74/RJLkFBdqeqXQaGd7I3w+dIasZpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:e4:58:cb:f5:a5:1c:d9:6a:7c:e9:31:43:02:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f5c2585382084792f13ad197205efdd2752df2
Validity
Not Before: May 12 21:00:38 2026 GMT
Not After : May 13 21:00:38 2026 GMT
Subject: CN=2bae0eda23c8ff7a058bbab5b022fd464a9e37ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:f7:ab:b3:3a:7e:82:85:41:ba:d3:5b:10:
2f:33:de:f0:8b:28:b1:a7:72:7e:51:a4:8a:08:09:
28:28:a5:6d:56:8d:bf:0b:e2:c5:f3:95:b6:4d:bb:
35:6b:2b:fb:06:3e:09:c1:01:65:89:12:db:8f:b0:
6c:89:af:60:bc:bb:96:7e:ca:a3:ef:f2:59:30:89:
b0:b8:1f:1a:86:87:6e:86:2d:4c:80:e3:ca:da:81:
ef:95:cf:f3:be:9d:ac:34:b4:ea:50:7b:f7:3e:ae:
54:fb:3f:0a:8a:0d:fd:f0:36:79:62:49:34:a4:70:
28:4d:6e:fa:62:49:0a:b7:67:e7:2e:1a:86:11:93:
8a:fa:ba:dc:a5:ff:d3:1c:37:0f:b2:3a:8c:3f:07:
bc:6c:03:00:e0:74:03:bd:10:0e:15:c0:cf:f9:b9:
6c:26:8b:e2:1f:ad:4b:4e:d5:dd:83:02:22:b8:e4:
63:f5:89:48:c7:e1:ee:8e:00:40:ba:38:64:09:a7:
a6:f3:b7:a7:88:1c:c8:49:84:73:06:4f:31:54:40:
6a:77:99:4d:fe:af:12:53:14:17:c4:00:e4:86:6c:
c7:bf:02:58:71:3f:83:61:10:37:1e:44:ea:bc:4f:
c0:4e:dc:54:f1:74:63:b2:f6:20:00:0a:d3:4c:96:
d6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AE:0E:DA:23:C8:FF:7A:05:8B:BA:B5:B0:22:FD:46:4A:9E:37:AC
X509v3 Authority Key Identifier:
keyid:23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e7:c8:cf:f3:96:4e:27:8c:06:ce:6b:c8:aa:59:c7:ad:bb:
16:18:09:74:58:a6:05:17:ba:1e:be:99:c4:a3:8c:b7:15:3e:
a2:8b:0e:95:b3:8c:a8:4f:c6:56:b7:0c:06:1f:b0:95:db:8f:
46:fd:3d:95:5b:b2:de:45:30:62:87:31:9b:57:0d:6b:e0:b3:
ef:a4:b8:8f:0f:ba:92:c8:12:27:5a:81:22:e0:0b:c4:be:0b:
38:aa:6f:77:d0:41:bd:e2:6c:7d:3f:15:36:b3:a6:bb:e7:93:
8a:b0:49:c6:85:63:31:77:16:2b:7b:20:15:21:61:71:ba:84:
01:01:df:5e:f9:2b:37:68:6f:ba:13:1b:c8:aa:7f:02:d3:81:
f5:c7:6c:09:18:4f:4e:fd:08:f2:24:e8:38:2b:04:53:19:14:
28:15:4a:54:12:95:73:07:b4:d0:52:be:2f:b8:6b:01:10:3e:
e8:7a:a1:d3:fd:18:29:bd:6e:27:5c:db:94:69:13:fc:46:15:
f4:63:7b:2d:72:86:88:5c:69:2d:d2:72:18:5a:12:c6:3b:8b:
e9:ac:20:f7:b4:83:58:90:ee:1a:2f:3b:a0:a0:1d:2e:5c:88:
32:42:e8:de:e7:e0:b4:40:49:b5:c4:a3:a1:c7:b2:4f:a7:e5:
93:a5:a7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:46:17 2026 by rpki-client