Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft (raw, json)
Hash identifier: 81ojzawaw/VrDq93O4ZTkI0Ds+vt7ggiCQzHABwf5CU=
Subject key identifier: 43:20:72:F2:BB:AD:87:09:7A:CF:FA:95:DD:3A:FD:1C:25:4E:37:1C
Authority key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
Certificate issuer: /CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Certificate serial: 019E8E6E2E1460AA5B540D072157BC4ED7B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
Manifest number: 0C8A
Signing time: Wed 03 Jun 2026 17:00:45 +0000
Manifest this update: Wed 03 Jun 2026 17:00:45 +0000
Manifest next update: Thu 04 Jun 2026 17:00:45 +0000
Files and hashes: 1: I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl (hash: UFEae1xOnn/JV7ae5EAcMv+HrxJvj887I0KnqjSk5Ss=)
2: vvIw8F-IOEioMYu93B5YO0Hq9vk.roa (hash: WtTZswHjYBJIgKk4bHAyXKnVfNJT2/jg2Qz9ZX4kuRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:6e:2e:14:60:aa:5b:54:0d:07:21:57:bc:4e:d7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Validity
Not Before: Jun 3 17:00:45 2026 GMT
Not After : Jun 4 17:00:45 2026 GMT
Subject: CN=432072f2bbad87097acffa95dd3afd1c254e371c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e2:28:b2:ef:6c:2f:fa:ff:18:6d:95:27:14:
d6:d9:9a:27:8b:7e:2a:82:50:03:7c:d7:24:6c:ad:
b1:fe:20:32:7e:0d:d3:56:a4:c3:69:5b:07:63:1b:
b7:a2:c8:11:f9:95:f0:b4:da:7f:a3:f3:17:8e:7e:
8d:34:4b:df:cc:a6:32:3b:8f:5e:41:54:7d:e2:ca:
c2:59:e5:fb:58:9b:f1:98:42:b9:38:8d:76:d4:87:
b1:4f:3a:90:fd:52:b2:6c:d9:c1:cf:d8:73:52:38:
17:b1:90:58:01:00:67:88:d4:4f:0b:df:42:94:14:
46:a7:71:d7:11:75:00:2c:8e:23:c1:80:f4:67:49:
3a:69:e8:b9:49:91:3b:c6:3a:68:0c:c0:d1:7c:f3:
9b:2f:ad:29:a3:ee:21:02:bc:89:23:aa:ed:95:f0:
4c:f8:60:32:a1:de:e6:a9:c8:2a:f6:a8:63:96:36:
64:a0:a3:70:14:12:f5:43:64:31:2f:54:0f:60:49:
8e:62:63:fa:e9:92:01:89:b1:8f:76:68:a7:1b:50:
6a:90:55:eb:d9:4c:37:93:ea:d7:75:a4:1d:1d:36:
32:b8:4d:e7:93:83:a7:de:99:f1:de:fd:46:e5:45:
54:79:28:83:46:34:40:6e:31:f3:8d:73:72:a3:ba:
f3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:20:72:F2:BB:AD:87:09:7A:CF:FA:95:DD:3A:FD:1C:25:4E:37:1C
X509v3 Authority Key Identifier:
keyid:23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:58:65:3e:65:e9:4f:8b:5e:7f:cb:16:d8:8e:a5:6c:de:ef:
7e:e4:a6:a1:96:9b:d7:84:00:b9:e6:34:6f:e0:7f:01:58:ca:
94:32:09:a9:d5:ca:18:56:92:58:98:b1:31:9d:2a:3d:d9:a2:
8b:42:1c:a6:e3:5f:bf:66:10:bd:f2:09:90:8b:94:8c:b5:cb:
d7:a7:53:ce:02:59:18:c2:9b:07:cd:38:04:57:e2:5c:ed:fe:
0e:51:aa:46:a1:94:0c:b3:90:63:bc:2b:4d:a4:50:66:63:39:
31:82:35:ab:c0:ad:96:7f:0d:69:8e:60:73:96:40:25:92:49:
5f:b8:ea:3f:df:90:c5:4c:c1:be:30:0a:04:12:41:41:97:a3:
92:e1:2e:ed:f3:f7:9c:ab:17:13:61:61:b2:14:62:fe:2a:10:
4c:68:dc:96:3e:dc:29:92:a1:81:ad:d5:13:7a:07:33:41:c2:
8a:12:f1:c4:3c:a3:21:4d:06:47:96:d3:ea:98:4d:df:c1:a2:
f6:a7:63:ac:cf:95:42:3e:c2:9c:77:2c:6f:d6:dc:96:24:52:
a4:4a:dd:ba:40:7a:64:cb:55:72:d4:82:ec:71:f4:b6:7d:f0:
ac:5d:2e:1d:9c:8b:62:93:b9:02:69:ac:42:53:39:b6:81:10:
db:d1:5b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 19:58:35 2026 by rpki-client