Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: 1wwpyLiBzEP02nrFjVfODm4JT2KssofBw9m5kn0Ybv8=
Subject key identifier: F3:94:8A:30:5D:88:C8:BE:CF:A9:73:E9:1B:5C:E1:4A:1D:74:AF:67
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 019EB7A1970F48DD52ED2578475555635725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 10F5
Signing time: Thu 11 Jun 2026 17:01:20 +0000
Manifest this update: Thu 11 Jun 2026 17:01:20 +0000
Manifest next update: Fri 12 Jun 2026 17:01:20 +0000
Files and hashes: 1: EG_Id09DvFvq6OjCzlCxHI8GXVg.roa (hash: SEYIizAUZ8Gr2yBztTyZlf2jtywb5D92XRV6mbkv9uw=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: yDpTITLNcVpI/ZyHjsYc7N4+1LG8MeQYFaI5/8LtE74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:97:0f:48:dd:52:ed:25:78:47:55:55:63:57:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Jun 11 17:01:20 2026 GMT
Not After : Jun 12 17:01:20 2026 GMT
Subject: CN=f3948a305d88c8becfa973e91b5ce14a1d74af67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f9:99:45:4b:00:ce:ce:cb:c4:a9:85:d2:ed:
cd:ab:71:9f:2c:0d:49:1b:32:86:44:e2:9b:94:39:
00:59:09:86:00:14:ce:30:71:2c:00:98:16:a3:a3:
00:2e:46:a7:82:52:6c:83:34:92:36:16:d9:0c:bc:
ce:d3:a8:4f:23:4c:7a:65:59:65:db:ea:c5:5f:98:
10:09:32:5c:ec:45:b9:83:08:bd:ff:03:b5:7c:b8:
f7:6e:f2:d2:46:dd:8d:8d:02:f9:ed:bc:89:1a:a7:
ab:ba:ab:23:54:67:5c:43:ec:a1:20:c9:af:8c:8c:
b3:1b:18:5f:05:a0:8d:6c:2f:77:1c:94:e5:90:72:
73:b7:05:e8:db:7a:bc:ae:c5:dd:a3:1c:da:e7:ed:
3c:72:36:ea:05:81:84:e6:78:7c:fc:63:a4:94:e5:
d5:17:13:ea:81:e7:3c:02:86:24:26:f0:69:7c:06:
91:3e:09:ca:24:87:73:31:cc:d1:cc:6e:e9:7c:6a:
4c:b3:a6:5b:d2:12:74:fd:e7:1c:d3:f2:da:5e:ec:
1f:29:ad:76:76:70:b2:45:6f:db:61:b5:36:20:ba:
fa:f8:7b:e6:6e:30:7d:75:34:ad:7c:79:eb:6c:b4:
f1:3c:fe:82:12:9f:7d:fa:8b:8e:24:38:0b:04:81:
55:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:94:8A:30:5D:88:C8:BE:CF:A9:73:E9:1B:5C:E1:4A:1D:74:AF:67
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:a2:0b:88:ec:a4:95:02:d3:00:04:ab:6e:af:5d:c0:96:d9:
72:5d:b9:2a:a7:b0:95:ef:3d:2b:49:52:34:42:7c:25:94:a5:
42:3c:34:b4:db:a8:69:96:8d:44:5f:69:74:09:2d:c8:19:9c:
41:cf:1f:53:db:e1:a3:6f:cf:c1:75:29:b3:85:d8:94:ed:e7:
22:dc:ad:2f:13:73:ef:f0:da:6a:cf:35:2b:cb:fc:72:61:04:
04:e0:10:cc:86:d5:c0:56:85:0a:35:69:db:9e:7a:9a:f4:dc:
78:29:25:0e:6b:01:24:0c:50:60:6f:6f:9f:66:57:02:a8:13:
86:10:fe:de:7c:08:22:dd:90:40:7d:70:44:ad:92:29:c3:c0:
17:5a:10:6e:4b:9b:2b:ff:c6:65:86:46:6e:0e:95:08:f6:cf:
6b:51:01:9f:1c:6c:05:09:d3:e0:53:98:63:53:ee:df:c4:2b:
71:c3:3b:a1:b5:a3:00:6a:66:e7:d9:6c:7b:13:25:9c:59:d9:
70:0c:b7:8b:79:50:ab:d7:f2:c3:5b:40:69:9f:62:e4:f3:87:
be:48:d4:30:0a:78:44:6d:a6:23:93:7c:6d:25:88:b9:d9:64:
4b:f3:ab:13:cd:e6:a7:e7:93:bd:68:88:fa:0e:8e:7e:21:f9:
b3:76:de:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:44:03 2026 by rpki-client