Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: R5haY9JEE6C4YLlSlhsd37eYcsXgir1rIFeRADN4GRM=
Subject key identifier: 90:D9:6A:3C:8E:FF:58:F8:28:C4:39:69:E7:8C:DF:27:6D:26:C9:14
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 019CAD90415482B43434D7A95A61AB0777DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0F90
Signing time: Mon 02 Mar 2026 08:00:38 +0000
Manifest this update: Mon 02 Mar 2026 08:00:38 +0000
Manifest next update: Tue 03 Mar 2026 08:00:38 +0000
Files and hashes: 1: 5qOXZsZ0BHNAbp3kT3SWOZkhYW4.roa (hash: DBxKLTH87HKe59x6vClNlaxgF86/cqJNz234XOYz+0Y=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: rk55QdibZRHkjUbuBT3fBtWoM3s4tzopw2B9w9o2DbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:41:54:82:b4:34:34:d7:a9:5a:61:ab:07:77:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Mar 2 08:00:38 2026 GMT
Not After : Mar 3 08:00:38 2026 GMT
Subject: CN=90d96a3c8eff58f828c43969e78cdf276d26c914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:31:e2:98:d5:9f:64:e3:db:36:bd:33:b1:de:
e7:1b:ab:68:22:78:85:61:51:18:2f:d6:fb:1f:4b:
17:09:12:8e:fc:7d:b4:a0:20:07:36:bf:78:0f:99:
84:65:6c:a1:51:25:d6:a1:a7:6e:66:a6:77:49:c7:
17:0b:d8:3d:c1:8b:fd:a9:fd:64:ec:e0:a5:d6:a8:
1a:4e:91:8a:1f:f4:57:0c:c1:8e:3c:76:3f:cd:88:
20:08:86:c3:3c:6c:4d:8c:d2:5b:75:8e:df:c2:1a:
96:28:48:23:b4:29:ee:db:a3:6b:65:2b:45:8b:2e:
08:59:0f:8c:7e:2a:48:2d:61:16:53:fc:54:e4:19:
8e:81:0f:42:33:3a:c3:59:82:6f:1a:d9:d3:46:8d:
52:d5:dc:e3:7d:f7:2b:d0:bb:9f:c3:66:8c:92:f0:
0c:8d:41:3a:3e:2a:7d:9b:fb:93:87:56:08:47:f6:
72:38:d1:ee:29:81:17:f3:c2:3c:ce:74:16:76:10:
fa:63:8c:67:f7:20:b8:44:e4:6d:d3:31:64:4f:1c:
1b:23:a0:15:d5:a0:8c:77:95:d0:44:29:84:0d:34:
9c:63:e6:e9:fd:d9:02:26:d0:ee:68:b5:75:b8:de:
ce:39:df:1a:d7:1b:25:a9:1a:44:e4:97:50:74:88:
bf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D9:6A:3C:8E:FF:58:F8:28:C4:39:69:E7:8C:DF:27:6D:26:C9:14
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:da:fc:4e:5a:65:56:0d:22:a4:26:6c:4a:b9:99:da:7f:a5:
1f:71:62:f5:e5:fe:1b:a8:c0:13:3d:0a:97:cc:7f:2e:bc:95:
b7:5f:5a:9e:2a:10:a4:76:2b:98:94:d6:4e:89:e4:2f:54:57:
bc:6f:2a:ca:e8:4f:39:0d:f0:ad:ab:7a:48:2e:3c:b5:14:a4:
4e:b8:b1:2a:91:98:0f:00:b6:e5:24:8e:9a:08:34:6b:75:d7:
3f:d9:fb:13:41:66:da:71:a3:75:06:06:3f:ce:3e:9b:fd:11:
ba:76:f5:28:2b:b1:de:1e:11:84:ea:d6:ec:24:17:0e:e0:b1:
d9:93:ee:51:66:e4:ce:ac:6e:43:5c:64:3c:1a:c4:ff:b4:4b:
f0:fd:c0:bd:39:58:13:12:6c:c4:32:3f:82:39:08:c2:81:32:
ca:f4:4b:9f:ae:b9:4b:94:7b:1f:56:28:22:70:3c:27:dc:b2:
92:eb:e2:ac:ea:4e:f3:fe:fc:3a:cf:24:8b:25:1d:56:b2:bb:
7f:32:cd:ac:b4:03:70:7e:2a:66:07:b0:e8:73:b7:d2:e2:cc:
a7:2d:5d:f3:a1:29:a7:84:21:2d:b4:0a:b5:97:85:ae:18:b9:
c0:fe:f2:cc:23:ef:8f:bd:5e:f3:1a:ba:44:bd:33:16:52:80:
23:16:71:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:55:40 2026 by rpki-client