Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.mft
File: IZah91DmPqz2d_fz533CxKLGyAk.mft (raw, json)
Hash identifier: hIwr/mdh4IN7MGRgQQswUx0KAUazS3cKgmY86iD7wFw=
Subject key identifier: 0F:8C:FB:CD:34:D4:D6:66:23:B9:13:84:76:AF:48:14:A3:3B:13:A5
Authority key identifier: 21:96:A1:F7:50:E6:3E:AC:F6:77:F7:F3:E7:7D:C2:C4:A2:C6:C8:09
Certificate issuer: /CN=2196a1f750e63eacf677f7f3e77dc2c4a2c6c809
Certificate serial: 019D25F14A4952DD52FD118FA1961099277F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZah91DmPqz2d_fz533CxKLGyAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.mft
Manifest number: 0173
Signing time: Wed 25 Mar 2026 17:01:03 +0000
Manifest this update: Wed 25 Mar 2026 17:01:03 +0000
Manifest next update: Thu 26 Mar 2026 17:01:03 +0000
Files and hashes: 1: IZah91DmPqz2d_fz533CxKLGyAk.crl (hash: 3jpwxBd+FwHdtdzHc6NaC3Lm1UDGQtnpKCTTYK2S8sw=)
2: M_GCNLKzStapvH2yawFcJFZLGzM.roa (hash: JXYexLLhTjJZCe/o/+zjf2hSfkYXeXtqQL3sMYrk700=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZah91DmPqz2d_fz533CxKLGyAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:4a:49:52:dd:52:fd:11:8f:a1:96:10:99:27:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2196a1f750e63eacf677f7f3e77dc2c4a2c6c809
Validity
Not Before: Mar 25 17:01:03 2026 GMT
Not After : Mar 26 17:01:03 2026 GMT
Subject: CN=0f8cfbcd34d4d66623b9138476af4814a33b13a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:81:5e:08:4e:83:f9:70:6d:bf:5e:41:26:
fc:51:c6:c8:db:bc:69:15:10:35:ea:47:1b:17:7b:
40:12:cc:78:ec:7e:c1:51:67:ea:2c:62:71:45:37:
e3:3e:fd:3e:f1:40:82:b5:aa:36:af:8d:ca:dd:96:
97:5b:70:c5:2c:15:1b:1b:7f:5c:d9:9e:b0:67:32:
57:6c:2d:4c:69:06:a1:f6:d3:e3:f7:a1:6e:35:c7:
12:eb:73:dd:9a:12:24:de:79:8e:c3:78:7e:c5:f9:
72:eb:0e:e5:28:7b:d0:7f:c8:ee:13:b4:63:a4:f3:
a8:b0:d1:01:84:a8:ba:c2:10:77:f8:08:86:5e:0d:
2e:97:be:a6:42:66:69:55:3b:71:d3:cd:03:a5:a4:
06:f0:18:e9:38:2a:d1:de:aa:e3:83:38:20:3e:3f:
2f:5f:ba:43:18:56:f7:b1:15:5c:8e:c8:0c:c4:dd:
6d:73:fc:0f:a5:ab:f6:82:86:51:5e:a0:d6:3f:77:
ef:fe:82:91:96:01:0c:fd:f7:68:68:56:e7:a4:af:
00:ef:ab:d3:4b:60:5f:c7:cd:10:91:77:96:7f:70:
3f:e2:fd:78:72:3e:b5:4e:95:58:8e:d8:36:fc:fe:
24:ba:c7:dd:61:e3:6b:30:f3:70:82:a8:25:11:e9:
91:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8C:FB:CD:34:D4:D6:66:23:B9:13:84:76:AF:48:14:A3:3B:13:A5
X509v3 Authority Key Identifier:
keyid:21:96:A1:F7:50:E6:3E:AC:F6:77:F7:F3:E7:7D:C2:C4:A2:C6:C8:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZah91DmPqz2d_fz533CxKLGyAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4e5d08-4267-4c78-862b-0cb562f98a52/1/IZah91DmPqz2d_fz533CxKLGyAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:af:09:db:5c:4f:2e:b2:0d:9a:84:b7:88:59:ad:86:56:8b:
35:2a:f7:4d:9d:ac:56:07:5d:60:24:21:43:c2:54:f5:36:9d:
8c:be:0e:18:2e:09:a6:11:0a:55:9f:d5:94:c3:f7:8f:2f:fb:
6c:ed:5c:5e:ba:6a:39:44:03:82:22:a3:72:60:f8:e5:df:c5:
59:c0:58:fe:0d:83:20:5f:e6:b7:b7:eb:03:e2:67:34:bf:4c:
80:1f:2a:b2:87:c8:cc:6e:b6:82:6a:24:a8:72:69:0b:c7:fd:
f6:93:30:59:75:24:78:53:8e:5a:4b:8e:fc:38:64:54:be:84:
60:b6:6c:8e:bb:19:4d:49:bc:c3:48:da:84:b2:a1:8e:c2:65:
49:93:af:d9:35:3e:d0:dd:ac:aa:d2:27:20:00:78:e7:e8:0a:
44:03:cc:a2:a3:bc:eb:36:0d:70:8e:29:c0:db:53:c0:61:89:
72:b1:26:d7:7d:8f:38:5a:52:58:70:63:09:81:f4:07:dc:0f:
b2:c4:a7:71:50:4e:fe:13:ce:ec:e0:fa:a3:70:da:5a:ec:d4:
bd:9d:61:4a:ae:9e:69:d5:a9:74:63:69:e1:a8:38:07:54:ac:
a1:a6:78:a8:dd:3c:bd:c2:30:a2:35:a3:98:e5:a8:56:58:f5:
a9:0e:a8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:09:50 2026 by rpki-client