Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: Dp9u0XVNEh6VmtFpTB1J7O+sT1HHXVakLvBlaLT93RY=
Subject key identifier: F0:03:A7:0A:8D:B3:E8:4F:55:59:FC:4A:1C:95:A2:F2:5E:A9:B8:64
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 019E1EDA5E746E4600DE397DA1FFEBFF97EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 1437
Signing time: Wed 13 May 2026 01:01:27 +0000
Manifest this update: Wed 13 May 2026 01:01:27 +0000
Manifest next update: Thu 14 May 2026 01:01:27 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: VdYvCRU6kdPPslIwowCOuH8i9fyMtTe+pscpe5NwEAc=)
2: kt-dzWz4ump9exEN1VN1o9bh0sQ.roa (hash: 3EXp+7ZKktgIDQ1+hPu50wusQGozvYQkFp906943fvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:5e:74:6e:46:00:de:39:7d:a1:ff:eb:ff:97:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: May 13 01:01:27 2026 GMT
Not After : May 14 01:01:27 2026 GMT
Subject: CN=f003a70a8db3e84f5559fc4a1c95a2f25ea9b864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e5:76:92:10:ea:33:86:f7:9b:c5:0a:e7:1b:
8e:b1:4d:c6:57:7c:4b:4c:13:f6:e2:97:43:6f:87:
99:1d:06:cb:68:05:8b:09:89:8d:d2:9c:32:9b:67:
1c:9a:e3:da:c1:20:54:1d:41:48:dd:6e:d3:45:e6:
73:65:42:09:35:fd:84:c0:ac:af:4c:90:34:e9:93:
c2:55:be:32:41:88:c0:f4:93:d2:0c:5b:50:84:de:
aa:5e:e8:5f:d8:99:bb:a8:8d:21:97:a4:55:73:82:
fe:1a:1a:e1:92:68:cb:aa:56:54:96:f1:d7:e1:a1:
64:99:16:5c:cf:4d:b7:5e:32:8a:52:0b:d9:6d:18:
d1:9f:88:b1:f1:10:f9:fc:af:82:f0:bb:2a:d7:18:
04:d9:58:73:59:53:9c:12:06:57:41:2d:d4:21:d7:
88:c6:b6:dd:1d:cb:c0:5e:08:07:02:5c:e0:14:87:
13:35:21:39:fc:ec:c8:b1:28:c0:a7:3b:eb:9d:60:
13:6f:61:7b:64:9b:b3:17:2d:f4:32:4a:90:3d:77:
47:2c:0e:5d:65:f1:9b:a7:e4:b2:5a:24:d6:59:e1:
8d:fb:c4:d3:7a:63:25:8f:b2:31:5b:88:7c:22:8b:
d4:62:92:4f:2e:ff:cd:a6:43:46:65:50:6c:89:5f:
a1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:03:A7:0A:8D:B3:E8:4F:55:59:FC:4A:1C:95:A2:F2:5E:A9:B8:64
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7b:df:2c:a2:19:0f:aa:c5:ea:55:64:1a:a9:fd:52:f9:e4:
f9:6c:2b:be:bd:d5:e9:91:68:ee:a5:c0:29:f2:ef:59:be:98:
97:bf:34:f9:84:a7:32:a6:35:df:5c:94:bf:6d:47:7b:e0:f7:
04:75:ac:50:e0:6e:9b:25:3c:d0:9e:5c:45:e7:39:3c:8f:d9:
94:ce:bd:42:d1:cd:3f:f3:9f:25:d5:77:7a:7a:51:42:1b:17:
39:10:8f:b1:53:5b:5b:e7:0a:55:a7:3f:92:0f:eb:18:26:90:
d4:f2:ea:80:53:5f:9f:4a:7f:e9:c4:81:59:cc:e7:ef:19:f3:
63:8d:29:61:89:87:91:e6:4a:82:ed:25:6a:87:4d:c2:14:6f:
69:2e:fe:fc:e4:fa:d4:4e:61:1a:e7:81:a8:20:7d:6f:d6:de:
db:38:95:30:19:6f:c2:e2:b9:22:bc:32:1e:bc:ba:84:ab:69:
5d:93:d7:10:12:a3:bc:23:b9:47:75:22:70:ad:8d:7c:e0:55:
71:38:74:0d:b7:e5:0c:e1:85:d0:c5:49:74:05:8b:e7:16:7e:
82:fd:dc:4a:e9:5f:13:ef:a0:38:57:fd:09:1b:8d:40:3b:cc:
f8:7e:09:cb:19:d2:48:2e:76:86:69:dc:07:01:36:96:e4:c0:
01:6f:ea:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2l50bkYA3jl9of/r/5frMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OTI3Nzg3NDcyYTdjYmRkOTdkZmRiNGY1M2I3NGVmYjNi
YmJjNWIwHhcNMjYwNTEzMDEwMTI3WhcNMjYwNTE0MDEwMTI3WjAzMTEwLwYDVQQD
EyhmMDAzYTcwYThkYjNlODRmNTU1OWZjNGExYzk1YTJmMjVlYTliODY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeV2khDqM4b3m8UK5xuOsU3GV3xL
TBP24pdDb4eZHQbLaAWLCYmN0pwym2ccmuPawSBUHUFI3W7TReZzZUIJNf2EwKyv
TJA06ZPCVb4yQYjA9JPSDFtQhN6qXuhf2Jm7qI0hl6RVc4L+GhrhkmjLqlZUlvHX
4aFkmRZcz023XjKKUgvZbRjRn4ix8RD5/K+C8Lsq1xgE2VhzWVOcEgZXQS3UIdeI
xrbdHcvAXggHAlzgFIcTNSE5/OzIsSjApzvrnWATb2F7ZJuzFy30MkqQPXdHLA5d
ZfGbp+SyWiTWWeGN+8TTemMlj7IxW4h8IovUYpJPLv/NpkNGZVBsiV+hqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPADpwqNs+hPVVn8ShyVovJeqbhkMB8GA1UdIwQY
MBaAFImSd4dHKny92X39tPU7dO+zu7xbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjBiOGMtOWZhYy00MWY3LTllNzkt
YzQxMDA2MmQ0ZDUyLzEvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kMjBiOGMtOWZhYy00MWY3LTllNzktYzQxMDA2MmQ0ZDUy
LzEvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAanvfLKIZ
D6rF6lVkGqn9Uvnk+Wwrvr3V6ZFo7qXAKfLvWb6Yl780+YSnMqY131yUv21He+D3
BHWsUOBumyU80J5cRec5PI/ZlM69QtHNP/OfJdV3enpRQhsXORCPsVNbW+cKVac/
kg/rGCaQ1PLqgFNfn0p/6cSBWczn7xnzY40pYYmHkeZKgu0laodNwhRvaS7+/OT6
1E5hGueBqCB9b9be2ziVMBlvwuK5IrwyHry6hKtpXZPXEBKjvCO5R3UicK2NfOBV
cTh0DbflDOGF0MVJdAWL5xZ+gv3cSulfE++gOFf9CRuNQDvM+H4JyxnSSC52hmnc
BwE2luTAAW/qnA==
-----END CERTIFICATE-----
Generated at Wed May 13 07:42:57 2026 by rpki-client