Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: H/Prpb1NOhC1mS7GGzVduD+ud5MCDnrvQpoPPpfkBWQ=
Subject key identifier: FB:C3:21:19:D9:1B:68:F0:02:B5:E4:A0:E0:56:F8:17:90:C4:C1:1C
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 019E1F119FF748BF5BA1A469556B2C502BA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 0793
Signing time: Wed 13 May 2026 02:01:49 +0000
Manifest this update: Wed 13 May 2026 02:01:49 +0000
Manifest next update: Thu 14 May 2026 02:01:49 +0000
Files and hashes: 1: 2MeX37cZHGHHuxJtj1E28ddzIsI.roa (hash: LZd2fssCxVZOERqVCoqkBsBn4xYtLG5cKZGv8FiTdNw=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: hlqjI+T8vc+8VlMhUJ0/t4Rm6MRYr3Ks25UCd/rIjWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:9f:f7:48:bf:5b:a1:a4:69:55:6b:2c:50:2b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: May 13 02:01:49 2026 GMT
Not After : May 14 02:01:49 2026 GMT
Subject: CN=fbc32119d91b68f002b5e4a0e056f81790c4c11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:b3:e8:96:9d:68:57:06:ab:a0:f4:6b:e6:
d5:2f:9d:27:b9:8c:0a:cc:5e:87:65:6e:f7:db:5d:
ea:53:2b:da:28:27:b8:62:81:90:60:11:19:84:e3:
bb:64:69:31:b8:1e:4d:19:c6:b7:91:11:17:82:77:
74:ce:f9:09:0d:6b:7d:58:00:7b:5b:47:80:d0:8b:
fd:20:50:67:82:d9:3f:d4:17:8b:73:a7:7b:a8:09:
9f:9b:85:7c:0d:15:e0:46:d8:0c:6e:14:f3:c0:18:
cc:fa:e6:b7:ff:ad:06:ac:6a:58:25:55:a3:9f:01:
2b:ef:3d:91:83:7b:eb:bc:02:35:bf:77:52:71:95:
e2:85:48:0c:22:8a:df:e0:cf:53:7d:3e:c1:eb:cf:
f3:93:12:60:98:ea:87:91:36:a5:c3:46:fd:d2:2e:
1b:71:71:9d:48:17:e8:21:0b:96:bb:d0:a4:a5:f7:
70:d7:5a:99:86:bf:2e:07:5c:05:ac:e1:49:1a:2e:
56:b3:af:c9:3c:00:ba:57:c3:ee:ee:17:46:07:67:
77:51:36:b0:c9:f8:b3:49:da:29:d2:32:17:f5:8e:
79:77:76:87:78:5f:c9:75:70:2a:bc:67:e9:46:28:
8d:68:01:d1:6a:15:a7:23:f7:90:85:f2:6d:57:1e:
86:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C3:21:19:D9:1B:68:F0:02:B5:E4:A0:E0:56:F8:17:90:C4:C1:1C
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:45:9c:a1:03:fd:ee:0f:e1:8e:d7:0c:0f:ec:f2:1a:a0:03:
32:b6:91:e2:77:bb:c5:85:ea:1a:3a:60:3b:39:3f:96:11:0c:
2a:0e:d6:98:8f:3b:d9:6e:4c:01:51:6e:3a:30:a6:ba:a1:c0:
b4:04:12:36:8f:92:d0:82:8c:07:f2:8e:ee:4b:19:e6:c3:57:
4b:ca:24:ad:5c:4b:fb:d2:1f:6c:3a:01:3d:b6:d1:6b:c4:f7:
de:89:8f:d4:e1:8b:a3:09:55:5f:d5:20:5d:ea:df:58:df:a1:
b3:9e:20:74:94:cb:62:df:82:bd:a6:91:e9:10:69:55:8e:66:
d7:5e:ae:c3:28:db:fa:e9:43:6b:18:9e:d7:37:b2:98:d5:dd:
39:88:93:40:05:e4:e3:68:96:3d:e1:1d:9b:1a:91:4c:61:da:
6e:4b:d5:62:07:80:02:05:68:2b:5b:8c:ae:ec:1f:56:d6:b4:
38:eb:45:8e:99:27:27:48:8e:13:e0:f3:af:60:8a:92:78:73:
eb:b7:50:fd:34:a8:cf:c2:18:02:21:25:3d:ce:ba:18:07:68:
3c:ef:7e:a0:80:fb:b0:19:65:ee:55:9d:13:b8:41:3e:de:f8:
92:11:fe:32:68:7d:ed:cd:5c:1c:19:7e:19:1a:6f:68:86:55:
34:91:20:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:23:52 2026 by rpki-client