Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: wlHIZtPsd1YSSFF1KgIM9KVyu2IHAobdrM2pA6jCn2Q=
Subject key identifier: 12:CF:C4:92:9F:05:71:12:7C:1A:38:5A:AC:A5:07:64:1A:C8:95:8F
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 019EBA344E49A6038103D52B528FB171FF41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 1959
Signing time: Fri 12 Jun 2026 05:00:50 +0000
Manifest this update: Fri 12 Jun 2026 05:00:50 +0000
Manifest next update: Sat 13 Jun 2026 05:00:50 +0000
Files and hashes: 1: cqgfNLDExy7FaffRoXOKMQXtqL4.roa (hash: TWz48Wr5Z6qhNEoUkqeyNmR7SZVnU/2APhq7EOM+kUQ=)
2: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: rUAEiN5zxp/duFK0zu9/m30qy0OBUnQiET4s886bKhc=)
3: wy6ybCdcWedAi4Mt3ixAA7PS5a0.roa (hash: G/CGlMinA8eb2TiqC5edW4JcIc15BJpfk+/kohiZa2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 05:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:34:4e:49:a6:03:81:03:d5:2b:52:8f:b1:71:ff:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Jun 12 05:00:50 2026 GMT
Not After : Jun 13 05:00:50 2026 GMT
Subject: CN=12cfc4929f0571127c1a385aaca507641ac8958f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:1a:d0:c5:a6:85:cd:37:95:92:51:d8:6e:
d9:94:a3:4c:9d:2e:0e:bb:1f:2b:96:4f:f5:69:c0:
51:84:48:11:21:6b:8b:3f:c7:17:16:3b:f1:f0:3d:
93:24:12:aa:b1:de:e6:86:c1:f9:8c:e6:e1:ad:eb:
0c:08:2a:4c:98:f9:1e:32:55:ae:f2:d3:24:5b:a0:
95:16:db:95:fc:b4:2c:ce:53:83:2c:8b:b9:af:0c:
99:01:7c:6d:4d:97:00:3e:cb:d6:4b:4c:c6:58:26:
7d:6b:1e:9e:e2:05:60:18:67:e2:20:25:df:89:b1:
13:8c:8e:89:e1:c6:8b:df:ad:c8:b1:63:f5:45:ba:
07:a4:0b:f1:bd:55:97:9e:5c:19:aa:a9:2d:ba:d1:
ad:86:77:1d:a7:da:97:c6:6a:14:a4:49:5f:6c:03:
6f:c6:95:33:4e:ff:57:05:09:e6:15:db:3c:a2:1d:
08:41:50:9f:ad:c1:b1:86:9d:2e:42:8a:56:7e:4d:
54:0b:f3:d9:28:49:af:0b:30:b8:e7:c6:12:c4:80:
28:a9:5f:46:5f:03:97:a0:42:37:87:b8:20:3f:e2:
4d:c1:94:f9:1f:9c:29:4b:0a:e8:a9:96:0a:f2:14:
c7:88:df:5c:8e:15:32:9e:93:00:4f:47:41:95:51:
95:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CF:C4:92:9F:05:71:12:7C:1A:38:5A:AC:A5:07:64:1A:C8:95:8F
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:db:07:1f:aa:5c:72:88:b7:3d:d4:41:c0:ed:7d:1d:8f:3f:
d9:33:78:36:c7:2d:05:96:2c:5c:fe:c8:9e:69:44:08:d4:42:
15:a6:39:2c:89:0d:52:ee:9f:e6:23:b6:e7:c4:75:d5:12:e9:
2d:d5:a6:8f:ea:f8:16:79:33:c5:db:ba:09:81:2f:27:36:2b:
a7:59:5b:d5:07:b7:c2:18:c4:90:f1:58:a4:f0:5c:6c:17:90:
c2:9b:53:4f:a9:1e:9e:e4:11:d7:d2:07:3b:af:9b:91:2b:ed:
5f:a0:eb:7f:1c:98:ad:31:b8:99:d4:1b:30:cf:89:4a:5e:0a:
74:7b:a4:f0:fc:50:a9:6c:38:cf:65:2f:d9:35:b5:f3:15:ed:
86:28:13:6d:89:65:db:a9:de:8e:71:58:4c:99:7b:3b:ff:4b:
83:d0:98:35:cb:c5:8f:12:4e:74:c7:b0:8f:77:47:f9:79:26:
e3:91:fb:10:87:82:fa:6b:ef:40:19:1d:c8:6d:43:98:d9:30:
c1:1c:61:4b:6e:44:68:0e:f3:f0:2c:00:06:c8:04:ca:73:d9:
9c:67:3c:10:d5:b4:df:23:58:c6:b9:6c:b3:cb:ac:3f:24:78:
9a:db:f3:a7:7c:63:4d:92:fe:71:bc:0b:6c:aa:1e:32:cb:e4:
75:e3:fb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:30:34 2026 by rpki-client