Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: U8bDWOC8l9DS7gk7jnZsAx2ba6fjdQ7oWpnv/HW4Exo=
Subject key identifier: B6:52:5A:E8:94:9B:75:79:B2:5D:6C:16:AB:FC:B4:A3:BE:5C:32:89
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019D273B2E2C81DD71BC0F6A9FE097C11D59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0F01
Signing time: Wed 25 Mar 2026 23:01:22 +0000
Manifest this update: Wed 25 Mar 2026 23:01:22 +0000
Manifest next update: Thu 26 Mar 2026 23:01:22 +0000
Files and hashes: 1: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: wkssYJSsS46U14a8AizxOTYTg+IEC+2ADkJAROV9/WI=)
2: wr7KLyV4ClQnnTs8IQ6sq5gv_Bs.roa (hash: FVBmo5lpUPz2mK7tntWE423EtofmHFC0fD+FAYIPFZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:2e:2c:81:dd:71:bc:0f:6a:9f:e0:97:c1:1d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Mar 25 23:01:22 2026 GMT
Not After : Mar 26 23:01:22 2026 GMT
Subject: CN=b6525ae8949b7579b25d6c16abfcb4a3be5c3289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cd:dc:31:02:8a:aa:cf:21:52:66:de:fc:01:
0e:bc:4c:34:09:7c:38:2d:39:dd:63:58:8f:7d:a9:
2c:8a:7c:18:c8:0a:50:fc:43:c7:82:8b:ee:5f:e8:
e5:4b:db:be:e2:a8:ea:6f:d7:53:a1:76:67:22:06:
40:4b:1a:a9:d4:2c:c2:55:f6:48:23:74:21:5f:3a:
0f:07:ab:e4:8e:17:c8:89:49:0e:0d:da:61:c9:f6:
28:5d:a5:e7:14:47:8f:a2:17:78:6a:28:2f:39:3f:
a2:8c:92:33:af:65:50:a3:94:8c:ae:d3:2e:8b:c6:
2c:05:44:4d:9d:7d:a9:93:22:09:fb:3b:b1:26:20:
98:12:23:16:38:1a:ea:44:f0:a0:2b:e7:01:bf:13:
f2:30:7d:15:3c:e3:72:23:4e:b0:41:ab:e9:b1:fd:
8b:ec:82:65:86:26:08:67:a4:1f:4d:c4:46:12:0d:
32:6e:a1:6b:b3:cd:e7:c5:f3:fa:48:87:6d:00:8e:
da:d3:43:15:3d:f7:01:1d:ab:37:eb:77:31:ea:69:
08:60:75:cd:20:f9:6f:59:cd:c2:95:56:cb:9f:e3:
ef:24:bd:01:0e:04:c2:c7:b8:54:7c:2c:00:89:a9:
ee:a6:b3:b2:93:b8:6a:16:74:a0:0f:e7:ed:3a:8e:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:52:5A:E8:94:9B:75:79:B2:5D:6C:16:AB:FC:B4:A3:BE:5C:32:89
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:08:65:04:5b:43:27:ec:a2:7d:f8:b5:85:54:23:c1:60:51:
9d:90:6a:fd:a1:e3:73:d9:69:f3:68:07:21:a8:b2:8c:f3:29:
64:d9:f6:5f:ee:16:74:97:6e:0d:76:45:af:05:cd:b2:c4:f9:
74:70:31:27:27:78:2b:8c:18:7b:82:00:e9:34:35:69:ee:9b:
8c:a4:28:aa:63:a4:fc:f0:35:0e:d5:dc:56:8e:da:db:72:0c:
1a:ed:97:81:f5:20:0d:e3:00:c6:da:d7:02:40:e6:8c:dc:71:
f7:53:b1:a0:b0:5a:3d:e5:11:8b:7a:73:0c:71:da:d8:3c:6e:
e7:64:0a:7c:7b:da:68:99:21:81:b9:f4:f8:05:fb:e6:1e:b6:
fd:45:fd:b9:1d:d0:72:e2:d0:21:9d:51:81:cd:c4:01:f8:25:
27:a7:fb:1b:2b:96:54:a6:f4:30:87:da:0b:6f:55:26:16:f2:
62:4f:8d:b2:2e:b6:7d:69:d4:cb:f2:38:b8:ef:12:e6:1a:bf:
bb:84:cd:84:77:b2:24:39:b9:58:f9:5f:c1:c0:d4:64:5f:19:
ef:f3:89:dc:2c:ce:f8:ec:b1:3c:c4:41:94:80:d6:52:8e:55:
6d:11:29:26:b1:18:5d:8b:4c:18:57:6b:d3:9b:a8:58:dd:bb:
c8:ca:ac:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:45:16 2026 by rpki-client