Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: fEX6APu9ETPa3J05p9x58+ErQYDLBLEpFXDxXVN40hU=
Subject key identifier: BD:AD:B9:46:60:9B:CA:21:E5:C9:57:EC:68:83:29:53:B7:DB:A0:DA
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 019E1F114383851DDB83882431C1544E154C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 1278
Signing time: Wed 13 May 2026 02:01:25 +0000
Manifest this update: Wed 13 May 2026 02:01:25 +0000
Manifest next update: Thu 14 May 2026 02:01:25 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: g6pXSszgWl1p0YJKSduDKcHg4BPTxCsdtX4IzTAOHcM=)
2: NLcXQyarZMLPShqbum_K4HREfn4.roa (hash: mjratVtRdhgBM6Hy0uvO9ymB77guClAbYNO1DYJFQTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:43:83:85:1d:db:83:88:24:31:c1:54:4e:15:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: May 13 02:01:25 2026 GMT
Not After : May 14 02:01:25 2026 GMT
Subject: CN=bdadb946609bca21e5c957ec68832953b7dba0da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:bb:c2:0a:50:67:76:42:b4:7d:ff:db:e0:22:
b6:24:d2:5d:1f:24:10:6e:08:1d:98:b6:69:65:d2:
22:07:d6:78:6b:b6:e4:fd:4e:aa:4a:ff:aa:f7:65:
21:be:85:7c:82:67:c4:1f:d0:23:3a:b7:1f:ae:70:
e7:c3:58:24:e2:f5:9c:27:55:7a:9c:6f:c2:7b:95:
30:80:ad:80:16:07:9b:23:96:c1:3d:19:e1:f1:8a:
3b:01:9b:14:58:59:dc:b1:4d:ed:f2:cc:81:0f:63:
e4:05:c5:65:4f:a4:7d:01:43:cd:24:a7:b7:cf:b1:
c7:7a:eb:47:95:3c:a5:ca:d3:ad:42:a2:b6:61:76:
6a:e6:5b:73:9b:0e:f9:b0:af:40:8c:3f:5b:e6:8a:
ef:31:67:2b:23:4c:07:1f:63:20:4c:78:67:4b:c6:
5b:c6:76:3d:64:27:dc:31:62:5a:43:c4:be:e9:d6:
76:2d:87:a7:80:05:0a:3a:b0:51:bc:9b:b3:ff:dc:
05:0b:96:4f:d7:58:42:94:3b:0e:5a:03:11:32:b2:
b1:cc:fd:03:4b:42:70:1f:f7:a9:a2:02:7f:1d:02:
01:87:69:c4:73:e7:04:bb:a1:a9:7f:16:32:e9:59:
30:a7:bd:06:b7:a1:31:f8:7e:1e:af:ae:ab:fb:ba:
a3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AD:B9:46:60:9B:CA:21:E5:C9:57:EC:68:83:29:53:B7:DB:A0:DA
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:bf:6e:7a:d6:83:bd:e5:d5:73:1d:df:ec:63:57:26:8e:41:
b7:4b:df:dd:49:e1:ab:db:7d:24:46:66:3f:bc:0e:70:2f:d0:
63:cf:7a:f0:3f:eb:92:19:0e:50:6f:7b:c4:39:ab:10:64:0f:
3b:5a:64:f1:c1:48:4f:ef:4d:3f:03:27:24:f5:fb:9a:31:e1:
f6:25:44:f1:e8:37:cd:c1:3c:95:20:e0:5a:54:0c:e4:da:8e:
42:b0:09:72:74:34:f6:8c:d9:3f:0c:f3:8a:4d:fd:41:1b:02:
b5:eb:c4:89:8c:04:2d:9d:ff:1b:0b:ba:f4:21:1c:61:7c:d3:
9a:82:c6:85:3e:b2:4a:e7:c3:6f:14:45:fc:94:49:15:aa:05:
26:e4:75:80:4a:9d:a3:27:fd:04:2c:9c:b0:bf:f1:25:38:65:
8d:b6:46:c8:48:a0:cd:7a:21:d9:d9:83:d6:9d:7a:b2:d5:91:
f1:5f:8e:3a:a6:f6:e1:26:f6:43:d3:bd:9c:ff:cc:a6:d7:4c:
c0:aa:d7:8d:ce:68:37:ee:7c:10:7e:9c:05:90:38:89:0e:f0:
5e:52:80:6e:0c:00:c6:bf:b1:31:e2:90:e9:ec:86:37:fe:56:
09:1b:2d:27:6e:7b:ef:b3:bf:64:88:26:75:88:64:63:77:ee:
68:3a:66:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:34:59 2026 by rpki-client