Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
File: i58lgoNRffGYWTiOE7rRrgJopfs.mft (raw, json)
Hash identifier: 53jm2l/XuvNO7EqwLpaMfUEwz7KOIzdRBoxWVLGnePU=
Subject key identifier: FE:9B:EC:88:FC:BA:50:BE:18:EA:97:B9:1E:63:F2:0D:3B:62:8D:61
Authority key identifier: 8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB
Certificate issuer: /CN=8b9f258283517df19859388e13bad1ae0268a5fb
Certificate serial: 019D26CCDA504A636CCDB0A7CD932C7BB1BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 21:00:52 +0000
Manifest this update: Wed 25 Mar 2026 21:00:52 +0000
Manifest next update: Thu 26 Mar 2026 21:00:52 +0000
Files and hashes: 1: EZQ3_1xtXNCMXaBpEjh3EEeHdRc.roa (hash: 2NqTeKgydYUb/eDxmxXBdOU0et+RFyYo7oibb0+harQ=)
2: i58lgoNRffGYWTiOE7rRrgJopfs.crl (hash: hiaynC0GwxIjElQg/aaYRpIHrBIROIJMEcvbkJnvGEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:da:50:4a:63:6c:cd:b0:a7:cd:93:2c:7b:b1:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9f258283517df19859388e13bad1ae0268a5fb
Validity
Not Before: Mar 25 21:00:52 2026 GMT
Not After : Mar 26 21:00:52 2026 GMT
Subject: CN=fe9bec88fcba50be18ea97b91e63f20d3b628d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:56:ff:d3:f9:96:41:f6:e6:aa:95:73:ab:
61:c0:6a:d5:2e:f8:d7:af:21:b8:97:8c:73:1a:2c:
03:dd:2d:52:61:1b:05:03:9a:83:6d:6c:f8:9b:f4:
6b:92:40:0c:38:9c:ff:27:9a:3e:4d:07:c0:78:b0:
66:b4:ab:10:62:cb:38:19:d2:59:69:54:25:a4:e7:
3b:ed:2a:41:d7:1b:32:e9:b1:83:e2:3a:3d:fb:ef:
75:d3:7e:e9:1d:d2:54:61:af:27:d6:fe:42:20:66:
cc:2b:9e:26:04:0e:29:36:df:6e:f2:fb:6f:76:22:
8d:f9:86:fe:9a:6e:82:67:b3:df:51:9b:24:b6:fd:
06:da:cb:52:ca:ba:4d:0c:e3:a1:8a:02:64:b7:60:
b0:e2:ff:f5:2f:02:98:34:90:3a:20:dd:e0:bf:66:
fe:0b:d8:ee:ef:02:1c:62:a1:99:61:97:f1:b2:47:
63:71:5c:eb:61:41:a5:44:06:59:e4:f2:83:32:66:
13:b2:12:c0:d3:cf:57:68:2c:76:d9:64:e5:3d:33:
a5:73:a0:74:83:1a:15:df:6f:70:c9:0a:a6:ce:c3:
3a:5e:a0:25:13:56:69:0a:85:30:13:bf:ec:cb:77:
ed:38:4c:05:6a:b0:76:56:1c:f2:08:15:29:10:c5:
42:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9B:EC:88:FC:BA:50:BE:18:EA:97:B9:1E:63:F2:0D:3B:62:8D:61
X509v3 Authority Key Identifier:
keyid:8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:36:5d:83:30:17:9d:9e:e9:61:f3:a5:65:d5:6a:ad:12:1d:
9b:86:50:8b:fb:18:d2:d3:3b:ac:03:a6:d3:a0:f7:b2:e9:7f:
22:9c:01:87:1c:ae:de:b6:15:cc:88:31:d2:1e:0b:32:1b:ce:
74:ae:08:4f:7d:c7:af:c4:77:91:99:90:37:04:be:2a:d3:d1:
ef:ff:cc:ed:73:76:34:ba:97:85:50:c6:b3:1d:ad:af:a3:f3:
60:5d:24:89:64:93:06:0a:e2:c5:9f:05:17:1e:ce:7e:ef:fb:
41:96:67:28:d5:70:f4:2f:5d:0a:f6:ad:7b:3f:ea:4f:d0:f3:
ad:9d:3d:a3:75:00:61:89:2c:f2:83:9f:77:9b:b7:68:09:44:
29:eb:d3:5b:df:f2:ca:8e:b5:10:ea:9d:b1:92:3b:71:c4:f4:
36:65:3e:71:44:c9:3f:b0:d4:a7:7d:6c:94:ad:79:65:2f:4f:
70:c0:84:5a:e2:3e:21:a8:ac:55:b5:86:ee:fb:a1:cc:85:7d:
c4:94:6a:ac:ff:45:44:05:1e:2a:ac:47:67:25:c1:1b:c1:41:
00:c0:98:2f:f9:9d:ce:f5:3c:9f:a5:19:b0:18:bf:4d:db:90:
f5:ca:64:b9:9c:28:22:e3:5a:e2:ce:71:f9:19:13:84:3b:e9:
ec:b3:15:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:38:06 2026 by rpki-client