Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: Ts324bNsoEf1OZn3chiJ8GjZvTJ2fNTtDRBZ2KSdkII=
Subject key identifier: 89:DA:BB:A2:34:32:D1:A3:BD:7E:4A:0E:F7:9D:FF:9A:D4:65:56:F1
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 019EB7A0ED0A7CC4900B7837D67BC301BDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 045B
Signing time: Thu 11 Jun 2026 17:00:37 +0000
Manifest this update: Thu 11 Jun 2026 17:00:37 +0000
Manifest next update: Fri 12 Jun 2026 17:00:37 +0000
Files and hashes: 1: Af_5rqEWBhs_t_5t3ubsN4ME7qQ.roa (hash: US3yyitysBySkBj1duM7uaT/kHoh5Ro/nrveWTewP9E=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: Wffjw7YilQxW9QBXeoUe8Y6H0ohpnYBFxAZjSrewaBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a0:ed:0a:7c:c4:90:0b:78:37:d6:7b:c3:01:bd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Jun 11 17:00:37 2026 GMT
Not After : Jun 12 17:00:37 2026 GMT
Subject: CN=89dabba23432d1a3bd7e4a0ef79dff9ad46556f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d9:36:6b:1b:e9:5e:2e:b9:b7:cc:40:8f:76:
2d:7b:17:66:dd:4f:9c:56:50:35:9b:e7:df:e0:d3:
d0:cb:e8:16:20:b7:26:f5:d3:5c:67:cc:84:df:22:
5d:a3:7a:19:f0:69:ab:cd:05:2e:6d:c5:02:a7:ff:
cf:20:6a:b8:1d:d4:60:59:dc:97:11:2c:16:67:7a:
88:c3:42:20:bf:0f:51:fe:b6:20:ec:a1:b7:00:0d:
c9:0e:dc:56:1f:5c:87:a6:a4:86:91:f3:95:52:20:
39:38:cc:8c:ea:8c:49:0d:59:e9:a1:e4:e9:2f:68:
df:24:d1:37:ec:c0:aa:aa:44:d2:f2:5a:a9:23:ac:
ca:a7:01:ce:11:b7:a4:32:fa:43:01:a2:36:ce:87:
14:b0:5c:ed:8b:28:6e:e2:84:db:97:f7:15:94:f1:
d3:72:00:32:04:21:15:73:42:b3:e4:48:e1:ae:d8:
d0:6f:0e:91:79:c0:85:85:3d:b9:42:ef:dc:bf:de:
80:db:fa:34:2e:b6:4f:f4:05:ea:50:40:98:4a:9c:
61:0f:75:67:75:2d:f2:bc:0a:4e:1a:cc:46:56:af:
75:10:ef:1a:7c:4e:01:2c:5c:49:6d:29:c6:1a:e9:
0a:cd:c6:58:22:fe:41:8e:c2:c5:4b:99:4e:b0:af:
d5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DA:BB:A2:34:32:D1:A3:BD:7E:4A:0E:F7:9D:FF:9A:D4:65:56:F1
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:1f:18:36:2a:e4:06:c4:e7:c8:a3:4e:e3:e5:ee:ea:fb:85:
ef:56:78:41:d3:b7:c7:07:1b:8f:d3:77:1a:32:a7:81:98:b5:
b4:9f:a8:b2:be:0e:11:f0:90:e0:8b:27:02:71:b6:6e:ab:4a:
bc:f2:14:7e:f8:14:fe:85:40:17:da:0d:07:16:da:17:74:ce:
1e:b3:88:ab:0a:31:6f:e1:b6:a4:13:9c:70:3d:6b:87:9c:54:
9d:a0:2d:e5:60:12:20:ad:6f:73:00:a9:fc:a3:8f:d0:51:88:
3f:05:0e:d1:a3:fe:1c:8f:96:52:a9:93:0a:e1:eb:90:39:12:
2e:a4:50:27:4c:85:71:a2:03:30:26:98:cc:a7:76:11:8d:c9:
35:3d:f7:5b:a0:86:48:11:f9:83:aa:40:45:61:a2:1b:be:cc:
96:99:6f:e9:46:d0:f6:1f:23:ed:a3:5a:50:33:50:3d:cd:03:
16:04:58:ea:52:73:a3:c9:5f:37:0f:26:85:b3:d7:7c:0d:f8:
83:a5:26:58:7f:97:e7:0b:26:7d:a5:f4:6c:c6:9b:bd:4d:d5:
4b:2c:67:a0:17:c9:9e:4e:a9:0d:55:a8:b6:a9:0a:61:09:a6:
9b:16:05:c2:af:30:44:2e:b0:65:af:e5:d6:cf:b9:c7:d1:f6:
34:15:60:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:44:04 2026 by rpki-client