Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
File: it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft (raw, json)
Hash identifier: PX2FnW4yKoRF2QA3xbi5ETiz494UFlzn3OrcLYPF0o8=
Subject key identifier: BE:E0:C6:31:29:4C:C3:BE:0E:F5:2D:E2:23:4B:CC:BD:3C:AE:E2:4E
Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Certificate serial: 019D2583331B3D13EC2E6F9D3BDA198D9206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
Manifest number: 1582
Signing time: Wed 25 Mar 2026 15:00:48 +0000
Manifest this update: Wed 25 Mar 2026 15:00:48 +0000
Manifest next update: Thu 26 Mar 2026 15:00:48 +0000
Files and hashes: 1: CkDZy0vHEeVACtT5dWGXXEt2g-Q.roa (hash: BDhDMAFwjHTIfBm63KAK3A2wmzDVWeqFjAWRvTCerUc=)
2: it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl (hash: IAfRcIkGan8Lj2aLCxVPGNsRjXBZRVMU+7S7Tqsr4AE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:33:1b:3d:13:ec:2e:6f:9d:3b:da:19:8d:92:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Validity
Not Before: Mar 25 15:00:48 2026 GMT
Not After : Mar 26 15:00:48 2026 GMT
Subject: CN=bee0c631294cc3be0ef52de2234bccbd3caee24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:41:c9:8b:fa:a7:9b:b1:17:c6:bf:aa:e9:
99:d5:8c:3b:e8:15:b9:64:f8:be:c8:ef:7d:d3:27:
86:71:26:65:3e:bd:c6:91:c2:40:fd:da:2a:89:16:
88:b0:bc:1b:de:91:a8:c1:bc:49:c7:62:6f:d0:7c:
fc:fa:2a:16:22:bb:77:f9:fc:07:7f:39:f6:90:ff:
be:0d:cf:2a:c2:f8:da:80:3d:05:d9:a3:e1:dd:17:
9a:e6:40:50:67:40:d3:4c:20:6b:a7:29:d3:43:60:
3d:de:ca:a2:a7:21:23:38:9d:ae:d1:c5:f7:58:b7:
bb:fd:db:2f:c2:11:e2:ba:16:06:f6:85:d4:3d:60:
20:a9:47:b0:19:40:79:49:db:67:cb:97:28:5e:e4:
61:b3:fa:ee:32:8b:b0:88:fc:0b:b6:fc:39:22:63:
1c:ec:1b:22:02:3c:88:b4:0a:75:9a:ae:cc:72:47:
a6:a3:50:c5:a7:fd:31:b1:00:b1:92:7c:02:f5:a9:
36:3f:b3:8b:28:e3:77:f9:40:30:d1:15:44:13:46:
1c:e0:dd:de:c7:f5:6e:82:73:b1:09:c1:e6:d8:ee:
3d:33:b0:39:3f:f7:af:85:86:4b:51:33:77:f0:35:
b7:69:0d:99:de:67:14:4a:00:00:2b:a6:ee:78:3e:
0c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E0:C6:31:29:4C:C3:BE:0E:F5:2D:E2:23:4B:CC:BD:3C:AE:E2:4E
X509v3 Authority Key Identifier:
keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:dd:e8:89:c2:57:b8:68:03:48:36:82:de:d9:92:3b:3d:60:
77:c1:3b:63:4f:c3:e5:29:90:3d:f7:62:9a:af:8d:8c:1f:6b:
c2:08:2d:3b:e1:d8:bb:92:f7:75:35:33:17:42:23:8b:b1:8b:
45:8d:2d:5e:d0:d6:d0:f5:f7:39:2a:41:34:c9:d8:a4:03:6d:
ec:27:90:df:49:96:8a:1a:36:3e:04:78:f1:a8:dd:37:90:46:
cf:92:f0:f9:14:78:07:be:4c:ca:5d:f8:70:3c:f3:e4:a6:09:
bb:40:ac:6b:04:11:1f:c4:eb:2b:67:07:07:ba:9b:ff:81:a2:
44:93:a3:63:b2:39:74:62:23:f9:70:e1:5d:02:fb:ed:1d:ff:
b0:e2:b1:b9:0d:a3:96:33:1b:b2:19:34:0d:9c:bd:83:ab:dc:
14:7a:4f:77:19:c3:58:41:4e:54:81:70:cd:b3:e7:be:b8:6d:
6b:98:d5:33:77:9f:17:16:4a:15:37:56:54:7f:4d:ce:d5:fa:
7c:b2:51:09:fd:c2:1d:23:23:d1:65:0c:3f:71:75:7e:00:c0:
97:45:30:40:c9:bc:f2:5c:69:7e:4b:c7:75:89:07:a0:db:37:
bf:fc:78:36:2d:a0:0b:53:49:42:54:fd:16:b1:55:2c:b3:aa:
74:c3:f7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:11 2026 by rpki-client