Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
File: 1-ItEPpksZlZYlC5okNKY1ozeZCU.mft (raw, json)
Hash identifier: A7MXCV4J1hnt8pQ9HmJs5O7u5BMbiHitN52Fg4sTGIo=
Subject key identifier: D9:99:D5:97:E6:64:4C:84:E6:BE:90:24:60:23:94:B6:B9:BE:C1:74
Authority key identifier: F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
Certificate issuer: /CN=f88b443e992c665658942e6890d298d68cde6425
Certificate serial: 019E21000418411FB20DC473B8B97A6B2C41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
Manifest number: B3
Signing time: Wed 13 May 2026 11:01:49 +0000
Manifest this update: Wed 13 May 2026 11:01:49 +0000
Manifest next update: Thu 14 May 2026 11:01:49 +0000
Files and hashes: 1: 1-ItEPpksZlZYlC5okNKY1ozeZCU.crl (hash: wXvIoJZy4YfWVq/KllQVhf5tpqKEHKxLfDUzKbEXu4w=)
2: 560UvqVud9DEuhQPr1x60Rz_4no.asa (hash: R22iZnCp/y6i8IZet00/Fkh5m7KFKy8c2ikVMY1ramc=)
3: Kf9QvVgVrtl0XM8frEpJ_fd4yfM.roa (hash: fg4f8lm5urIblTtWM6P0oF5ZkLFnBYAOFc4g9paZJZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:00:04:18:41:1f:b2:0d:c4:73:b8:b9:7a:6b:2c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f88b443e992c665658942e6890d298d68cde6425
Validity
Not Before: May 13 11:01:49 2026 GMT
Not After : May 14 11:01:49 2026 GMT
Subject: CN=d999d597e6644c84e6be9024602394b6b9bec174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:75:be:7b:27:6b:ee:62:e5:65:b5:37:ce:07:
a4:7d:96:77:6a:b7:32:e9:84:eb:28:99:e3:c3:d0:
b8:37:14:c5:c8:fb:83:45:01:e3:d2:93:ae:38:7e:
58:aa:ae:22:0d:2e:70:1a:8a:84:ae:c7:de:13:85:
dd:30:d0:fd:e5:03:c2:98:f9:6c:7d:8d:5c:ca:db:
af:5e:d7:9d:b2:17:12:64:1e:0c:30:3d:91:8c:a5:
8b:44:02:e3:8d:64:9d:7c:89:8e:e4:9e:87:6a:af:
b4:46:a5:80:4e:da:d7:df:4f:54:c4:76:b8:87:13:
45:1f:be:16:fe:92:50:4e:19:e1:89:5d:b4:e0:a0:
08:63:2f:29:d9:b3:dc:7c:50:78:58:02:06:0b:c9:
1e:c0:af:1a:b4:b8:fc:8e:e9:84:7b:39:ce:a4:9a:
4e:8b:96:0b:d0:63:66:3a:89:79:b8:bc:c1:d7:64:
1b:17:40:ef:4f:78:f5:28:e7:b0:2d:88:cb:45:ca:
0a:c9:a7:94:be:d0:88:12:e3:b3:ac:37:fd:ae:26:
75:b7:fc:b9:e7:9b:33:db:a4:da:21:fe:bc:a1:ab:
2b:4d:be:ea:58:4d:97:ca:ae:35:d3:f0:fe:35:11:
8c:02:83:fd:7d:3b:70:82:b2:ff:7c:6c:33:d4:af:
61:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:99:D5:97:E6:64:4C:84:E6:BE:90:24:60:23:94:B6:B9:BE:C1:74
X509v3 Authority Key Identifier:
keyid:F8:8B:44:3E:99:2C:66:56:58:94:2E:68:90:D2:98:D6:8C:DE:64:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ItEPpksZlZYlC5okNKY1ozeZCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/bfb542-4f67-46c5-9710-694252f029f1/1/1-ItEPpksZlZYlC5okNKY1ozeZCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:5a:85:c8:a1:b5:e5:03:c6:41:24:56:ed:93:4e:a1:d2:d8:
a5:e0:ff:ed:d4:44:1a:ca:74:23:8c:1e:a7:40:51:66:d8:4c:
b5:94:1a:4c:87:b9:5c:ff:a9:79:ce:1b:54:f7:d5:c9:bb:41:
4f:3d:81:d1:83:79:bb:d6:c2:4b:59:08:08:a7:af:33:aa:df:
e2:35:9c:80:ae:16:e4:c0:c4:50:94:bf:74:41:d7:5b:3a:ec:
2d:f3:9f:db:53:6d:c0:b4:6e:00:7c:b9:c3:0a:15:f9:cd:73:
18:63:b9:d6:4e:05:6b:a1:da:1f:02:f9:58:da:4a:fe:70:48:
87:ac:e6:7e:0c:59:9e:93:1b:70:46:28:93:5e:3a:0d:c0:1d:
86:c9:86:8e:22:73:98:06:97:69:bb:dc:74:9f:5f:9f:d8:f3:
28:88:9e:4b:c5:38:21:5c:d3:ca:27:65:f6:e2:b6:be:dc:bd:
c9:38:35:d6:29:4c:bf:2e:d5:35:1c:9c:71:3c:2a:51:6c:ea:
83:f5:be:74:7e:25:e3:63:4e:5f:55:83:4a:a2:fc:7a:02:0b:
e9:5b:73:bb:18:29:b8:0b:08:ec:4d:68:42:84:93:13:9e:89:
77:62:05:1c:98:a0:74:df:b5:c6:e4:af:22:4e:6b:ae:10:ea:
1a:21:ca:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:12:49 2026 by rpki-client