Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
File: I9hEjFy5A5jkwoXOycD0dmrJMd8.mft (raw, json)
Hash identifier: a8CxaeiBcLDiqPGzoWLBuFV8XXES0Pge+bjmbeVp2y8=
Subject key identifier: 59:46:1A:17:CF:36:2B:C9:09:91:71:9D:6D:CA:B6:47:69:27:F3:11
Authority key identifier: 23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
Certificate issuer: /CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Certificate serial: 019D2A0459F6E548E94F4191B26546BCD794
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 12:00:21 +0000
Manifest this update: Thu 26 Mar 2026 12:00:21 +0000
Manifest next update: Fri 27 Mar 2026 12:00:21 +0000
Files and hashes: 1: 8TcJH-qO38Nnc49nDFhjl3i6q20.roa (hash: HYqFnkRnK7UVCZ7277kZ3SagdWM8Y+qSNG/b1PHhvmw=)
2: I9hEjFy5A5jkwoXOycD0dmrJMd8.crl (hash: iZXsDn2Cd6hpSYIq7bBzfDM033Ab4m4ubYjsTpdl8XI=)
3: XcluKI5GK94xvt-2VsfsH9YAxas.roa (hash: aMUQPT04n27GjqpL1CyIzBfeTJro8TREHvy5Fo/qxZs=)
4: ppVBATzjCDPLKHQd3o4jFf9lhxY.roa (hash: 4QaAZx/54RVk/xsTNzwOX4eDHF+9k00rM5X1Yd0pNtY=)
5: xkK7Kbvhg6ccWQLBKOWEjOj8dIs.roa (hash: hSxWOh+4pOoJgqKHeBLOsvvNqhI/bRq5ZNPWvaG7HYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:59:f6:e5:48:e9:4f:41:91:b2:65:46:bc:d7:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Validity
Not Before: Mar 26 12:00:21 2026 GMT
Not After : Mar 27 12:00:21 2026 GMT
Subject: CN=59461a17cf362bc90991719d6dcab6476927f311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:32:44:5a:58:ac:14:c3:17:b4:d1:80:62:e8:
08:2e:f8:60:8d:1e:9d:4a:77:ac:4f:6b:41:de:93:
ce:6c:af:e7:18:e8:87:ec:1b:4c:0a:4d:d6:1e:8f:
99:ed:d8:90:89:8d:b0:b4:09:f6:41:1b:14:62:36:
43:6b:75:12:e0:1b:7f:cf:07:0d:bf:28:31:fb:40:
80:78:5b:be:94:59:94:1c:fd:4e:30:fc:d5:17:28:
35:26:ce:6b:30:b3:76:a9:6a:14:08:75:6a:1a:d4:
fd:9e:79:74:24:ed:35:fa:f8:3e:b7:95:14:c6:80:
8d:ea:fb:89:2b:70:90:f9:ac:d7:37:f6:aa:0f:5d:
3c:25:79:c0:c0:11:94:29:54:7f:bc:46:1e:4d:ce:
54:38:b9:23:59:80:45:4c:72:d1:e2:fc:0b:a4:ad:
b4:58:68:6c:fd:bc:af:9a:98:37:db:04:12:c4:75:
61:78:c4:f2:d6:e9:e0:0d:ec:c0:41:d7:20:b7:21:
f5:c3:db:2b:fa:e3:31:24:4e:6d:6e:f9:c2:ef:1a:
84:42:a2:c3:e9:0c:3d:49:e1:e9:aa:bf:fe:ee:fd:
6f:78:83:2e:a4:23:fe:ba:47:19:03:fc:67:9a:01:
b4:47:81:6d:4f:11:7f:05:c3:3f:01:22:87:56:92:
f3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:46:1A:17:CF:36:2B:C9:09:91:71:9D:6D:CA:B6:47:69:27:F3:11
X509v3 Authority Key Identifier:
keyid:23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:1f:34:33:89:38:ef:1b:39:f9:e2:fb:bb:b1:d2:65:12:33:
32:2d:53:49:68:2a:e4:da:1a:c3:26:a8:03:d0:64:ef:9a:85:
f7:58:3b:ba:04:75:9c:25:25:ab:97:6b:8e:5b:db:55:4c:6f:
f7:5a:4c:e9:9a:9f:ab:b4:bf:bb:a5:f2:c1:98:11:53:99:f3:
81:61:87:04:93:92:db:1c:b3:a0:38:99:d2:cc:b7:6f:36:0a:
7c:c6:71:8d:84:fa:8c:d6:e5:fc:9a:2f:2b:a5:ea:42:76:09:
16:fd:8e:39:ca:77:b8:54:c3:40:43:a7:6a:53:2a:85:0e:23:
3b:a2:c9:b3:81:db:93:b3:df:25:34:45:29:b1:2d:bb:be:a2:
99:1d:73:a8:3f:46:b5:cd:cc:44:2a:2f:81:f8:fc:9c:a9:02:
7c:5c:f9:49:04:54:76:68:3f:29:ff:78:eb:25:dc:56:33:b1:
0c:c7:4d:1e:14:95:cf:58:4b:36:c1:18:f0:e8:43:ec:d8:6d:
d6:42:92:ce:42:24:b2:64:41:a5:ef:93:b2:6f:f1:b0:1a:89:
32:cb:42:e8:89:78:b5:41:5c:79:a3:14:9b:98:0f:02:85:2a:
f9:1a:9b:af:17:e9:ab:1e:1f:a9:70:52:2d:fd:98:23:2e:05:
2c:9b:0b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:59:17 2026 by rpki-client