Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: VYFja1lMhLuaTy8S7V/D1eUfKJ1YqSk0z9AzRixDVjE=
Subject key identifier: 1B:ED:E4:E9:AB:EA:42:4D:51:B2:62:BE:39:29:99:8C:97:22:5D:3A
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 019D27DFA2D260C59EB83C4F52D5CBBE96FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 11F8
Signing time: Thu 26 Mar 2026 02:01:00 +0000
Manifest this update: Thu 26 Mar 2026 02:01:00 +0000
Manifest next update: Fri 27 Mar 2026 02:01:00 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: 3UzbR/DOXDuMSTzHOIbS8bx9Qn2Gk1Ykhzr7+qaXFBg=)
2: NLcXQyarZMLPShqbum_K4HREfn4.roa (hash: mjratVtRdhgBM6Hy0uvO9ymB77guClAbYNO1DYJFQTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a2:d2:60:c5:9e:b8:3c:4f:52:d5:cb:be:96:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Mar 26 02:01:00 2026 GMT
Not After : Mar 27 02:01:00 2026 GMT
Subject: CN=1bede4e9abea424d51b262be3929998c97225d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b0:71:92:a7:90:d7:5e:d4:08:6e:47:f7:60:
27:88:21:0e:99:9f:db:86:d7:26:9c:dc:9a:a0:eb:
cb:dc:44:16:06:79:ef:4b:34:e3:b8:58:57:2b:f7:
73:34:c2:1e:65:61:3d:0a:81:3b:44:ab:97:e9:88:
6b:25:c9:e4:db:de:cc:8a:fd:8b:1a:f0:cf:ea:c9:
9e:f7:b2:ca:58:d3:c8:0b:e8:b2:2b:46:c5:a1:69:
50:6d:cc:cc:25:8c:e4:b8:d3:24:30:d0:d9:b8:91:
6f:0d:86:5c:35:4a:6c:6a:1a:9b:04:34:e6:72:4d:
46:7e:f3:1a:6d:1a:f5:7c:e8:fe:80:94:2f:d1:73:
b2:5f:bb:c0:de:93:06:82:db:38:2f:77:45:8d:a3:
98:3f:43:86:f8:db:3d:db:d1:60:e7:55:04:bb:af:
7e:d2:61:c2:4b:f8:f5:46:5b:09:d5:17:e7:06:d4:
a3:5d:b9:76:8a:e0:33:9f:33:c0:fc:8e:be:2a:4c:
ca:59:c9:78:ad:3d:07:8b:e7:34:c6:b2:41:81:fc:
b1:d4:95:b0:ba:2b:d4:30:86:76:70:5f:50:d1:18:
3c:65:08:73:30:cc:38:6f:8f:41:70:a4:f8:bf:1f:
ba:d0:99:53:0a:ed:92:e6:4c:af:c0:6a:79:96:d8:
8c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:ED:E4:E9:AB:EA:42:4D:51:B2:62:BE:39:29:99:8C:97:22:5D:3A
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:16:09:0c:99:21:7c:ad:28:e4:2d:24:d9:18:11:7c:3b:87:
83:4c:78:f9:35:cf:60:47:76:88:9f:92:0f:37:56:59:6f:49:
43:89:90:5f:4e:1f:be:bd:9a:77:dc:6b:10:45:84:56:1f:72:
66:20:07:7c:f8:eb:c8:14:2e:ac:1b:69:0e:cd:7b:d4:ca:08:
e1:3b:ae:65:c4:dd:f1:ef:14:a2:b0:e8:ce:17:ba:7a:50:3f:
b7:27:6c:a2:b1:8a:ea:ce:57:75:69:40:f1:c8:e1:4d:79:b1:
a5:46:80:8d:d9:fa:97:96:40:f5:54:bf:c4:fb:bd:c8:99:9e:
1a:db:04:33:58:f8:1b:c0:0c:ee:a0:5d:91:39:90:ad:aa:28:
99:18:f4:26:4d:70:6a:dc:c8:c3:de:6a:c7:dd:9f:87:73:13:
ac:8a:92:83:7d:d7:bb:50:e7:41:97:35:8b:15:d1:15:5a:51:
7c:47:50:ed:2d:74:b0:f0:24:30:92:7c:82:bd:77:cf:92:25:
55:95:a6:69:b8:55:cf:69:8c:cc:f6:88:90:70:62:d6:64:42:
43:4a:05:ef:63:ba:15:4d:b3:08:2f:6e:7c:d9:ab:53:0a:5a:
cb:53:ad:1d:c9:c8:97:10:f6:2c:8b:e3:46:0e:55:87:13:07:
21:5b:11:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:55:09 2026 by rpki-client