Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: n2PwPeMIjtdZIxGWqHTv9Bm0O6gS1AQ49OhvfVXqIf8=
Subject key identifier: A5:6E:CB:8E:E5:00:FB:99:54:DD:F6:BD:C4:D5:03:C4:76:25:E9:F9
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019E205A1F8BF6780D1D28C813A1C5208256
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0F82
Signing time: Wed 13 May 2026 08:00:37 +0000
Manifest this update: Wed 13 May 2026 08:00:37 +0000
Manifest next update: Thu 14 May 2026 08:00:37 +0000
Files and hashes: 1: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: /nMJ07za+W4Y1lBKkIh0AsTSwC8iHNJdTGSzZxLYAkk=)
2: wr7KLyV4ClQnnTs8IQ6sq5gv_Bs.roa (hash: FVBmo5lpUPz2mK7tntWE423EtofmHFC0fD+FAYIPFZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:1f:8b:f6:78:0d:1d:28:c8:13:a1:c5:20:82:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: May 13 08:00:37 2026 GMT
Not After : May 14 08:00:37 2026 GMT
Subject: CN=a56ecb8ee500fb9954ddf6bdc4d503c47625e9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:de:d4:73:5d:7a:ab:aa:e5:32:d2:a7:b3:d8:
1d:e5:92:e7:bc:6e:29:dc:fc:64:e4:45:7b:67:c9:
dd:30:f8:a5:2e:97:18:1e:05:d0:fc:f6:12:a2:3a:
02:ab:63:eb:9d:e6:36:d5:28:2f:30:9f:53:cd:33:
a1:2d:9e:85:dd:1f:ef:42:f5:57:c1:82:65:4e:c8:
10:32:f1:f2:6d:b5:e8:dd:b8:e7:6e:42:69:9a:c7:
77:75:cd:b3:f8:0e:d8:59:ee:93:91:be:e1:c0:4a:
99:57:7c:6d:9a:8a:e5:b3:d8:0c:68:27:c1:62:36:
ae:c0:89:3b:85:e8:88:3d:57:73:9e:2f:94:58:c1:
02:32:ad:10:26:2b:fd:07:80:f1:b6:68:e0:64:55:
b1:df:0f:92:b7:1b:c8:36:42:31:98:2e:ad:ce:b3:
03:e7:64:0c:7d:3e:53:6b:c8:fb:f7:ba:ba:95:6b:
ba:db:e4:9c:29:6f:db:90:77:d7:6d:ef:22:34:53:
e2:bd:d9:e4:32:0d:57:ed:92:67:77:54:b0:da:22:
dc:28:01:be:bb:5b:1d:fe:33:ce:cc:6d:62:75:f4:
fa:4b:95:37:e0:84:2d:43:c8:1b:4f:bb:6b:1f:75:
3a:ef:84:ab:79:c8:e2:b5:f1:e5:0b:30:ec:83:8f:
d7:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6E:CB:8E:E5:00:FB:99:54:DD:F6:BD:C4:D5:03:C4:76:25:E9:F9
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:89:84:6e:25:82:79:26:ba:4f:e4:06:6b:94:a6:e1:81:7b:
5c:02:25:2e:28:8a:f6:f0:35:b8:93:b5:5e:46:fb:0d:12:c1:
d4:fa:4c:51:52:1f:f4:ff:34:86:fa:d5:f5:0e:9c:e7:ff:f2:
bc:ea:82:d9:54:99:e4:42:39:25:54:51:75:74:d4:6e:d8:ae:
e1:7a:50:9a:d7:f8:89:61:49:9f:54:ec:34:95:01:6d:a3:6d:
b5:f2:ee:d2:e4:d6:11:b7:e2:01:9e:2a:c9:d2:c1:3d:a8:5f:
15:f8:67:b9:41:d4:e4:e0:0f:6b:68:a5:af:af:2d:e0:48:3a:
d3:a8:e1:20:27:bc:b6:62:30:42:c9:45:3e:03:31:8d:8c:25:
1a:e5:e5:e5:81:23:2f:8a:92:31:b9:d4:59:c1:1d:99:be:26:
b2:7b:4b:52:dd:33:bd:05:20:e0:74:4b:33:51:00:78:52:c0:
7c:98:53:f0:3c:79:ec:69:6b:eb:fb:01:84:34:42:5f:94:a2:
d7:55:26:74:7a:f8:c6:16:4e:1e:de:ed:5b:c4:f8:37:1f:a3:
3f:6f:34:65:e1:0e:5c:ce:50:37:67:e5:ac:3e:5f:a5:75:60:
4b:b9:6a:10:9a:af:11:10:4f:71:4d:72:a9:e8:77:b4:ef:a9:
8f:f0:61:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWh+L9ngNHSjIE6HFIIJWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYjI5YWNjZDRjMGQ1ZjVmODM3N2VhN2Y0NjM0M2I3NjA2
YmFiN2MwHhcNMjYwNTEzMDgwMDM3WhcNMjYwNTE0MDgwMDM3WjAzMTEwLwYDVQQD
EyhhNTZlY2I4ZWU1MDBmYjk5NTRkZGY2YmRjNGQ1MDNjNDc2MjVlOWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA697Uc116q6rlMtKns9gd5ZLnvG4p
3Pxk5EV7Z8ndMPilLpcYHgXQ/PYSojoCq2PrneY21SgvMJ9TzTOhLZ6F3R/vQvVX
wYJlTsgQMvHybbXo3bjnbkJpmsd3dc2z+A7YWe6Tkb7hwEqZV3xtmorls9gMaCfB
YjauwIk7heiIPVdzni+UWMECMq0QJiv9B4DxtmjgZFWx3w+StxvINkIxmC6tzrMD
52QMfT5Ta8j797q6lWu62+ScKW/bkHfXbe8iNFPivdnkMg1X7ZJnd1Sw2iLcKAG+
u1sd/jPOzG1idfT6S5U34IQtQ8gbT7trH3U674SrecjitfHlCzDsg4/X2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVuy47lAPuZVN32vcTVA8R2Jen5MB8GA1UdIwQY
MBaAFCOymszUwNX1+Dd+p/RjQ7dga6t8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAt
MTE3NGE0MjgwMzZiLzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAtMTE3NGE0MjgwMzZi
LzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMomEbiWC
eSa6T+QGa5Sm4YF7XAIlLiiK9vA1uJO1Xkb7DRLB1PpMUVIf9P80hvrV9Q6c5//y
vOqC2VSZ5EI5JVRRdXTUbtiu4XpQmtf4iWFJn1TsNJUBbaNttfLu0uTWEbfiAZ4q
ydLBPahfFfhnuUHU5OAPa2ilr68t4Eg606jhICe8tmIwQslFPgMxjYwlGuXl5YEj
L4qSMbnUWcEdmb4msntLUt0zvQUg4HRLM1EAeFLAfJhT8Dx57Glr6/sBhDRCX5Si
11UmdHr4xhZOHt7tW8T4Nx+jP280ZeEOXM5QN2flrD5fpXVgS7lqEJqvERBPcU1y
qeh3tO+pj/BhXg==
-----END CERTIFICATE-----
Generated at Wed May 13 13:23:01 2026 by rpki-client