Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: Ytdd6OWOIkAGPfbYl+IMUs16AQqb6drxTt/zFneBfas=
Subject key identifier: 3E:6D:12:A8:69:AA:4D:DD:4D:B6:53:08:08:80:44:FA:C2:02:02:AA
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 019EF5366B3AF9A000F6B874BDE29AE3C514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 1976
Signing time: Tue 23 Jun 2026 16:00:44 +0000
Manifest this update: Tue 23 Jun 2026 16:00:44 +0000
Manifest next update: Wed 24 Jun 2026 16:00:44 +0000
Files and hashes: 1: FjK0gZzIRFGA1r0HMqyZjh1eSaU.roa (hash: 5jTPa/LgCeRZQvqoHjBqfoQDZ2FKgfEuFxlRAqDizkI=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: nys1UoGcWE1RT9ozYZdi5dkhTfu3lkzivErqVjOQxKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 13:08:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f5:36:6b:3a:f9:a0:00:f6:b8:74:bd:e2:9a:e3:c5:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Jun 23 16:00:44 2026 GMT
Not After : Jun 24 16:00:44 2026 GMT
Subject: CN=3e6d12a869aa4ddd4db65308088044fac20202aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:2e:29:42:7f:5f:cf:fa:99:23:7f:a2:fb:
37:ef:42:bf:a8:65:7f:0e:30:bd:c5:ff:cc:e0:e8:
bc:44:00:7f:db:dc:b3:cd:cf:9f:85:d9:e0:d8:65:
37:f5:6b:11:16:3e:8f:d7:7c:fc:de:b8:38:8f:c7:
ab:2d:be:19:a3:2e:f5:26:39:cc:65:7e:b5:69:1a:
ff:a2:d0:0e:99:87:70:f9:be:46:5c:c4:25:47:f0:
21:43:71:b0:42:38:51:f5:28:fe:b8:69:af:54:f7:
39:c3:81:45:c4:87:b6:77:35:93:78:8b:fc:99:fa:
1b:f1:78:94:ca:47:96:e5:9e:67:21:91:45:18:ce:
e3:71:cd:21:c0:dd:41:b0:f9:7d:70:0f:a2:90:31:
c0:1f:cd:3a:84:58:46:c6:3f:f4:05:de:2c:cf:ff:
ac:f6:4e:98:3b:eb:3a:ee:0a:83:ff:35:9f:6c:e7:
41:ae:b9:6e:43:9a:17:33:22:3a:41:d1:31:fe:6c:
c3:b0:02:7d:9a:e8:f4:5c:cf:2d:05:cf:78:2a:90:
ef:aa:6b:84:41:7b:03:37:7f:26:53:69:13:0c:2b:
02:b1:6c:24:33:aa:52:8c:44:7e:f2:0f:da:18:49:
4e:cd:46:f1:99:64:4b:ab:14:9f:70:84:94:a7:ae:
b0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6D:12:A8:69:AA:4D:DD:4D:B6:53:08:08:80:44:FA:C2:02:02:AA
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:d3:6c:af:cc:c7:c2:3a:3b:f8:fe:59:ca:74:ec:8f:f5:41:
30:d1:68:98:b1:92:9a:de:36:de:24:24:70:d7:17:a5:9e:e5:
f7:cb:0b:a4:ed:64:36:34:8e:9c:95:dc:96:3f:bc:1a:a7:58:
3c:c5:05:26:a3:70:f6:fb:0c:e3:d1:aa:b0:72:39:13:ac:c7:
1e:12:6c:47:ac:4a:5a:14:89:3e:39:6c:da:40:a2:b7:22:2e:
7c:c1:52:c4:64:03:0d:11:4f:f5:f1:d0:d1:2a:31:11:e9:fb:
8e:2f:3d:ca:e2:03:06:82:ca:94:57:5e:fe:35:2d:5a:7d:63:
1c:2c:05:1b:6b:90:3f:ee:f3:47:13:b7:3a:1d:19:20:2c:38:
1d:e3:27:fb:38:4d:6d:5f:6c:45:0b:bd:6a:44:30:11:1a:2c:
da:bd:40:02:2d:36:ca:e7:aa:06:4d:fb:a1:bc:79:b5:b4:5e:
5e:82:6b:e5:ac:5d:e4:cd:cd:2e:f3:9e:e2:8a:f4:51:27:3d:
3f:e1:fe:4a:77:fb:36:58:42:55:6f:81:68:b0:de:29:2e:43:
aa:21:a6:6e:97:ad:be:2b:90:c0:78:ac:0f:ad:46:f8:30:e9:
07:dd:4f:06:02:d3:41:40:c4:87:b5:72:ab:12:3c:fa:e0:fa:
7b:94:5d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 19:21:05 2026 by rpki-client