Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: +BXS5/QcFRlWhe2yiz1DhjQm0sqajLOfEUb7VhBii9c=
Subject key identifier: B1:F6:17:C1:9F:88:8F:B6:C7:F7:54:E3:74:EF:5C:95:26:D3:59:67
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 019DA2D2DCC2C4C10AD7B62D0C03939F2A10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 0548
Signing time: Sat 18 Apr 2026 23:00:21 +0000
Manifest this update: Sat 18 Apr 2026 23:00:21 +0000
Manifest next update: Sun 19 Apr 2026 23:00:21 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: +0r91xOChcr9B5pgK4RfC65JEIK7jUXpPhAsrmohIhw=)
2: RIbu27-D1A3-MonubZ_zZNoyyNM.roa (hash: /mnXw1tu71r9fbtUEEZDR8gD0rD8atHLNSZPRm849T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d2:dc:c2:c4:c1:0a:d7:b6:2d:0c:03:93:9f:2a:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: Apr 18 23:00:21 2026 GMT
Not After : Apr 19 23:00:21 2026 GMT
Subject: CN=b1f617c19f888fb6c7f754e374ef5c9526d35967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a4:9e:99:ac:08:04:08:ea:e6:7e:d1:ee:4a:
86:af:7f:b3:c1:7e:56:20:7f:f9:68:b9:a8:6c:47:
32:67:e4:f0:8e:50:fe:5c:e7:6c:fe:80:e3:3e:e5:
01:ec:b9:9f:c7:33:4c:ab:6f:0b:50:2b:43:e6:80:
2e:58:3f:90:2d:59:c8:a1:02:de:16:2d:94:80:6f:
79:cd:01:bd:dd:38:bb:85:2f:a0:05:5f:6e:cd:ed:
0a:99:20:fb:5e:b2:d7:b9:3e:b2:23:29:0b:20:40:
b9:a0:8b:f7:e5:6f:14:27:24:12:1d:e1:2a:79:b6:
f2:4b:92:9b:27:39:07:48:4a:25:a7:b3:06:50:b0:
f9:34:67:70:b8:6d:26:c6:a3:b1:1c:88:f1:f5:08:
e7:e0:cf:55:7b:60:49:5c:7d:97:cc:d1:e8:fd:4b:
ec:6d:19:ae:d1:40:50:e6:05:07:c4:81:4b:94:cc:
4f:e7:e2:6c:0e:64:38:e5:b4:6d:64:d8:17:bd:4c:
2b:3c:70:f0:67:3f:bd:48:6b:db:3b:44:e5:71:73:
9f:14:88:a9:39:df:7f:59:d2:f6:24:ec:a6:d1:89:
ab:47:c5:0b:ff:70:03:ca:0a:dd:48:45:f7:c2:ef:
ad:10:a2:68:fb:86:57:6d:2b:d7:0c:36:ce:95:22:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F6:17:C1:9F:88:8F:B6:C7:F7:54:E3:74:EF:5C:95:26:D3:59:67
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:05:48:41:f1:71:71:fb:21:b8:04:8c:ac:07:59:aa:f9:01:
31:0f:e1:03:64:16:25:af:a3:0c:63:a9:df:7c:d5:d0:e1:94:
c0:f3:33:d7:38:52:fd:a5:a7:27:c1:65:72:30:cd:61:d9:5c:
9b:53:8f:7e:a4:7b:83:7e:09:54:57:45:67:72:70:20:6f:f3:
35:bf:91:9a:12:34:a0:56:fe:f7:d3:f5:db:05:84:53:9a:0d:
b9:42:28:a4:1b:f3:42:77:0a:76:52:84:4b:14:7e:59:32:5a:
d6:0a:f5:25:1a:83:18:b3:8d:12:7d:33:5c:24:79:66:fa:5e:
91:28:f2:d6:28:77:5a:8e:e7:66:9f:63:9f:b3:f6:64:6b:29:
b0:14:1d:bb:0b:85:ce:37:aa:5a:db:98:eb:e3:34:fe:0c:13:
15:2c:73:c7:e7:9a:24:3d:ab:cc:8f:bb:4f:2d:5e:79:c9:96:
c7:9f:f3:f2:a3:c3:14:67:2e:58:dc:ea:88:62:34:22:47:ad:
08:a8:3c:5c:e0:23:e5:6b:a3:37:7c:17:f7:66:a0:14:ff:85:
3e:cb:22:b8:87:24:13:55:b8:37:04:28:5c:fb:e0:89:9e:6f:
1b:e2:18:63:45:85:56:91:e4:93:7e:c6:5a:5b:ee:23:5d:b7:
dc:a0:f0:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2i0tzCxMEK17YtDAOTnyoQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZDE0YWZlODc1MDIxM2MyODBlNWI2OGJlZmIxODg2NmY3
OTQ5N2YwHhcNMjYwNDE4MjMwMDIxWhcNMjYwNDE5MjMwMDIxWjAzMTEwLwYDVQQD
EyhiMWY2MTdjMTlmODg4ZmI2YzdmNzU0ZTM3NGVmNWM5NTI2ZDM1OTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKSemawIBAjq5n7R7kqGr3+zwX5W
IH/5aLmobEcyZ+TwjlD+XOds/oDjPuUB7LmfxzNMq28LUCtD5oAuWD+QLVnIoQLe
Fi2UgG95zQG93Ti7hS+gBV9uze0KmSD7XrLXuT6yIykLIEC5oIv35W8UJyQSHeEq
ebbyS5KbJzkHSEolp7MGULD5NGdwuG0mxqOxHIjx9Qjn4M9Ve2BJXH2XzNHo/Uvs
bRmu0UBQ5gUHxIFLlMxP5+JsDmQ45bRtZNgXvUwrPHDwZz+9SGvbO0TlcXOfFIip
Od9/WdL2JOym0YmrR8UL/3ADygrdSEX3wu+tEKJo+4ZXbSvXDDbOlSIyJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLH2F8GfiI+2x/dU43TvXJUm01lnMB8GA1UdIwQY
MBaAFCPRSv6HUCE8KA5baL77GIZveUl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2Qt
ODQ3MmNhNDBmN2E3LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2QtODQ3MmNhNDBmN2E3
LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnAVIQfFx
cfshuASMrAdZqvkBMQ/hA2QWJa+jDGOp33zV0OGUwPMz1zhS/aWnJ8FlcjDNYdlc
m1OPfqR7g34JVFdFZ3JwIG/zNb+RmhI0oFb+99P12wWEU5oNuUIopBvzQncKdlKE
SxR+WTJa1gr1JRqDGLONEn0zXCR5ZvpekSjy1ih3Wo7nZp9jn7P2ZGspsBQduwuF
zjeqWtuY6+M0/gwTFSxzx+eaJD2rzI+7Ty1eecmWx5/z8qPDFGcuWNzqiGI0Iket
CKg8XOAj5WujN3wX92agFP+FPssiuIckE1W4NwQoXPvgiZ5vG+IYY0WFVpHkk37G
WlvuI1233KDwRA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:07:22 2026 by rpki-client