Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: YpzYWlKXpXiAlA5RKoxdtKr3WpXg2cyP6TQXDNFitKY=
Subject key identifier: 25:E3:75:77:C6:23:1C:49:40:71:EB:B6:85:87:D2:B3:75:49:26:00
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 019CAA58E3F276D5509595F2D62E3E47A960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 17:01:17 +0000
Manifest this update: Sun 01 Mar 2026 17:01:17 +0000
Manifest next update: Mon 02 Mar 2026 17:01:17 +0000
Files and hashes: 1: Ra13SMTFBvpWhxXrpfFnFw-OimM.roa (hash: b0Za2pBFcrD4LJ53MzUO0gNJytzhPTrcz+l8K+RFsRM=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: PUuBBHU1TH77HUWqvMIVsgV7jGYJ3jD6uBO+pJTXNL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:e3:f2:76:d5:50:95:95:f2:d6:2e:3e:47:a9:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Mar 1 17:01:17 2026 GMT
Not After : Mar 2 17:01:17 2026 GMT
Subject: CN=25e37577c6231c494071ebb68587d2b375492600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bc:bc:47:a9:53:14:23:99:e3:d8:de:eb:e0:
3d:c2:e1:06:d8:bb:57:7d:96:80:12:ae:91:e5:43:
b5:a6:3b:f3:32:d8:44:b2:5a:8e:a7:fa:76:6d:f1:
c1:a8:f7:d5:19:95:b2:71:ac:68:09:98:40:72:18:
94:a9:76:02:07:95:11:2d:49:41:6e:76:cf:9c:d2:
ee:ee:20:e1:aa:5e:d7:67:8b:c0:90:bc:d7:2d:95:
69:e3:06:44:45:c9:95:85:58:5c:a5:2a:89:25:d4:
12:0c:07:be:ea:b8:52:21:95:66:ab:c2:99:2d:ca:
e2:50:59:35:f9:23:3d:1d:f6:13:8b:22:7b:6f:4a:
9b:d9:f2:74:d9:d3:ba:79:36:e2:16:57:a8:70:51:
9d:fc:fb:05:91:ef:96:13:b0:0c:7e:63:4b:5e:fe:
d3:01:93:81:e7:49:79:4b:e5:50:2d:4b:fa:00:b8:
7d:2c:b0:ed:4f:2d:cb:b5:f5:85:ee:83:30:37:f7:
7a:13:04:09:f3:e2:14:4d:11:33:93:54:10:97:1e:
43:1f:05:93:d7:42:02:e1:20:97:ac:25:f2:4e:86:
b8:08:1b:ff:3c:71:ab:e0:34:ee:93:7e:49:20:63:
6f:da:64:0c:97:13:96:ca:9f:40:42:97:55:17:cd:
c5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E3:75:77:C6:23:1C:49:40:71:EB:B6:85:87:D2:B3:75:49:26:00
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6a:e8:20:8f:78:c3:94:d9:af:72:93:bd:c2:a8:78:98:f8:
9a:38:05:73:68:0f:a0:6a:54:11:9d:6b:81:af:dd:f9:65:aa:
b1:ed:5f:e8:46:d8:07:be:4f:30:e1:70:19:48:db:c7:97:89:
36:e0:f8:c9:26:97:e4:42:17:e5:e7:a1:00:91:cb:0f:89:80:
60:ca:50:8e:16:48:40:19:44:e3:47:50:5f:b7:f7:0f:b5:ff:
18:59:19:5f:a5:89:0f:c3:2d:32:f4:ea:06:8d:b5:35:e9:3c:
09:40:9d:95:0d:d6:59:16:b8:67:8a:92:0a:1e:71:62:b4:94:
9e:2e:3e:f8:75:f4:4f:a7:e6:e7:32:0c:9a:98:af:3a:36:b4:
fc:66:11:84:ed:d6:4f:18:1c:65:7d:ca:d0:03:7e:ed:8a:51:
70:10:3d:4c:d1:d2:ea:98:b6:85:a9:df:6d:29:48:ba:08:58:
6c:74:71:9c:38:8f:65:0e:c8:e2:d4:3f:86:4e:c2:5f:05:78:
c0:95:f0:68:4d:b8:22:b4:46:89:2f:45:f7:92:37:9f:18:3f:
3d:68:fc:3a:b1:6b:34:e9:f4:57:d6:65:0b:4b:a2:9a:6a:65:
e6:a8:6c:0b:eb:1f:66:30:6e:31:98:80:77:9b:c0:5d:8d:14:
4d:00:0b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:20:12 2026 by rpki-client