Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: tCbQSgfZ3Q5Lata+QmBpdSptIdk/8zWtNCCnOPdJqPE=
Subject key identifier: 20:4F:22:98:48:4A:58:7A:1C:66:F0:E5:A7:F0:10:B5:03:04:B9:31
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 019EB6FC341A85D3932CE8EE831AA8BA3DA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 14:00:42 +0000
Manifest this update: Thu 11 Jun 2026 14:00:42 +0000
Manifest next update: Fri 12 Jun 2026 14:00:42 +0000
Files and hashes: 1: BTEAuUNa_YsO4Msc4ADixEUAqHw.roa (hash: RPWke+z8J8p3T5a+cxL5wCmrsKLPXY/+WIucQz9R2x4=)
2: Fdb2MRiz20g2xgX0HTiyiVn6wdM.roa (hash: P7ndLT2N2wnmbFCzRdtX0zBZJo6QlqplqMU+f7R4Fys=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: xo+sZyrAOkUJba4ngb9Swa0xumIa0N0tJaJU+N0+p+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fc:34:1a:85:d3:93:2c:e8:ee:83:1a:a8:ba:3d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Jun 11 14:00:42 2026 GMT
Not After : Jun 12 14:00:42 2026 GMT
Subject: CN=204f2298484a587a1c66f0e5a7f010b50304b931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:61:12:7f:fb:39:89:8c:2c:e4:a9:6e:44:45:
7b:76:62:ba:2a:b6:78:3e:65:3d:44:98:3e:f3:fb:
43:47:28:04:0c:a9:e9:50:ae:ad:5f:81:bf:a9:41:
fe:bd:6a:37:c4:de:5e:f7:99:ed:ba:5f:07:3b:cc:
5d:d6:3b:c7:3f:53:1f:60:d7:f5:37:a1:5f:5e:4f:
5d:d9:09:0f:62:9a:1c:22:f5:f3:b8:bf:70:71:21:
bf:7b:9f:e1:d2:0b:a0:8e:f6:b0:f7:52:b4:d6:c6:
0e:7f:ac:49:99:f3:69:0e:e4:d0:9e:17:cf:a8:0c:
3b:6f:50:2c:af:2d:ee:c3:2b:59:84:f5:1a:65:00:
f0:21:35:c2:ae:98:36:43:70:b5:50:ce:7d:4c:ed:
1a:ba:de:f3:d3:eb:f2:e8:ba:bf:46:57:1f:a1:45:
4d:40:53:59:84:91:86:de:3b:98:ba:db:67:87:ae:
c6:5b:17:89:84:9b:fa:ef:f8:f8:15:ea:62:7c:66:
7f:6a:7b:51:1d:0c:f4:57:8f:0a:25:2d:a8:9c:cb:
de:fe:c8:a1:52:2e:c6:11:63:e9:33:34:06:af:55:
97:a9:9c:60:a8:22:6c:6b:6c:0e:2a:6a:91:7c:29:
5a:d2:3d:98:58:0e:b5:b9:15:35:a9:d1:33:3d:89:
34:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4F:22:98:48:4A:58:7A:1C:66:F0:E5:A7:F0:10:B5:03:04:B9:31
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:12:5f:6b:0d:fd:bb:04:c3:04:97:14:2a:53:73:f1:ad:73:
ea:4c:7f:49:2b:c9:dc:cc:f1:17:d2:3a:96:65:51:a4:03:a0:
fd:19:42:9d:7f:15:bd:75:2c:74:a2:0b:6b:96:69:29:b5:fd:
56:70:91:a6:d5:40:df:17:56:82:22:f0:70:3f:0f:c2:6c:30:
4f:a2:76:42:06:e1:02:49:13:cf:f9:20:ea:b3:59:f5:bb:a7:
31:18:82:94:fa:fd:94:f9:5e:07:2d:81:8f:b8:a9:9b:43:0f:
1b:0a:1a:0d:04:fd:c8:da:c5:ab:1b:24:e7:72:d9:2e:bf:15:
13:c2:ee:7d:52:a8:37:04:0d:1d:b8:f6:0d:71:61:4a:c3:da:
75:ca:09:b9:34:1e:2f:51:e0:79:43:65:82:55:13:98:47:57:
38:89:31:f0:6c:d7:91:ac:11:2a:35:e1:82:dc:57:74:73:18:
1a:19:8a:ee:ed:46:37:2b:14:2e:a4:3c:5f:5d:03:58:3b:4e:
5a:9e:2b:a6:20:89:75:c7:db:5d:18:9f:d3:08:41:b4:74:70:
d8:92:50:94:e2:14:31:2e:d8:04:1d:57:5d:f8:13:bc:f2:8d:
e4:23:f2:54:df:9a:ff:b1:70:20:7c:6b:d1:3e:87:a9:02:06:
02:63:89:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:02:28 2026 by rpki-client