Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
File: I08I-kIiU1wK8moNc0fb8XJUcZY.mft (raw, json)
Hash identifier: do3dy2rNFfy+/RFiJxbUSqfsNNKt+e5bDDh5xPlTNI8=
Subject key identifier: A6:03:C7:99:DB:6B:F8:BC:60:F5:F9:CA:0A:D9:AA:D5:00:29:D4:7A
Authority key identifier: 23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
Certificate issuer: /CN=234f08fa4222535c0af26a0d7347dbf172547196
Certificate serial: 019D284E0D741232AF6BDBD42150C7BD8889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
Manifest number: 0375
Signing time: Thu 26 Mar 2026 04:01:36 +0000
Manifest this update: Thu 26 Mar 2026 04:01:36 +0000
Manifest next update: Fri 27 Mar 2026 04:01:36 +0000
Files and hashes: 1: I08I-kIiU1wK8moNc0fb8XJUcZY.crl (hash: zUD3AfgWsvmnU3yk2oedn2fsQLB5NJT6LaRYi1rKTW0=)
2: p2L_EOyK-Gu4buEXAYfa_Yk4PIM.roa (hash: 6kS2aQ01rx8f7YBcYoBwf+GjyXhd+eHnUHvmzdgYR3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:0d:74:12:32:af:6b:db:d4:21:50:c7:bd:88:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234f08fa4222535c0af26a0d7347dbf172547196
Validity
Not Before: Mar 26 04:01:36 2026 GMT
Not After : Mar 27 04:01:36 2026 GMT
Subject: CN=a603c799db6bf8bc60f5f9ca0ad9aad50029d47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:cc:e7:31:06:6b:c4:be:d1:e4:5a:5e:e0:
a3:d2:24:8a:1e:d0:52:be:c5:8c:b0:31:ba:ed:4f:
d1:64:f8:6e:9e:db:39:cf:5a:c2:ba:bd:6b:92:3e:
34:53:48:44:99:6b:19:95:05:32:55:f6:a8:a0:f2:
2f:8a:2f:85:68:34:2a:6e:61:d9:31:0e:0f:3a:65:
e6:72:5d:a7:0d:81:33:18:26:6c:d6:f2:b8:88:7e:
d2:50:5d:1d:8f:bb:e1:37:47:89:7e:a5:e5:a5:1e:
b5:5f:48:60:fc:e7:e8:0d:ec:01:eb:b9:41:83:c0:
d3:2a:6e:43:a7:3d:07:d5:d7:7b:79:25:cc:8b:65:
20:6c:02:22:98:c7:c6:ee:93:32:4e:e2:b0:1c:ab:
34:cc:8f:7e:91:c8:c5:47:5a:62:09:18:ca:ba:37:
a1:6c:60:bb:a4:36:29:e1:a1:5a:b6:c7:bf:dd:d5:
9a:58:96:b3:54:0c:a9:6e:9a:d8:cb:ff:66:b7:d4:
60:27:99:94:41:9d:cf:83:e9:84:c8:5f:20:c2:e7:
7d:41:a3:03:1b:86:c6:d4:3c:d1:f6:18:63:58:8d:
db:ff:a9:91:46:f6:d9:28:47:96:57:7f:d3:0d:9f:
2c:ea:59:ce:91:c2:01:a5:3b:16:6c:60:22:84:70:
51:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:03:C7:99:DB:6B:F8:BC:60:F5:F9:CA:0A:D9:AA:D5:00:29:D4:7A
X509v3 Authority Key Identifier:
keyid:23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f5:48:de:4a:d2:91:cd:b0:c0:03:08:96:2e:76:19:37:81:
1b:e9:29:29:5c:5f:f9:c9:e8:7d:7a:ea:f6:38:8f:3f:3e:ed:
c7:92:9e:d1:03:94:07:ef:b8:e3:44:af:e4:d9:9b:49:31:95:
9e:dd:6b:91:da:57:d8:c9:e9:f4:54:2f:a0:31:2c:6c:04:64:
ba:6c:d1:4c:da:0a:01:15:13:18:f9:e9:a7:64:96:a1:4f:3e:
24:b4:4e:8b:bc:90:bc:91:30:e8:be:9b:fc:ba:3d:b8:d6:0e:
fb:60:cc:d0:d3:89:e9:78:00:b0:97:d1:0d:0c:3d:8a:d9:ee:
76:f1:56:30:dc:05:fa:5e:bd:28:ca:5f:76:fd:56:3b:08:49:
9c:80:4f:52:a8:82:fe:55:fd:9e:17:12:50:99:be:fe:19:88:
f6:c6:e1:28:fa:3c:58:55:32:e9:21:10:55:c1:01:28:28:09:
5b:49:ac:df:31:07:58:56:e1:ef:a2:31:80:e9:12:79:a8:74:
ed:1b:89:bc:9a:e2:62:31:9b:55:3b:fc:64:a4:7a:41:97:4a:
f2:72:4a:91:23:c7:50:ac:f5:07:53:e2:8f:05:da:62:e7:9d:
18:e5:23:7a:3d:6c:42:f5:fa:89:89:67:9c:5a:4e:e3:07:e8:
4d:32:a8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:10:03 2026 by rpki-client