Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: zsR7T2qPIrO0eG8hYX188gTmcwDMh6CULbMPmMGswr4=
Subject key identifier: 6E:B5:88:4F:D4:E4:A1:6B:EC:8C:CA:FB:D2:E4:62:85:D2:5B:4D:EA
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019E8CEDF92B123B4D5A8F0FC495E50D7274
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0C9F
Signing time: Wed 03 Jun 2026 10:01:06 +0000
Manifest this update: Wed 03 Jun 2026 10:01:06 +0000
Manifest next update: Thu 04 Jun 2026 10:01:06 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: lA3Regky9m/jOOjntcOHvAviOnpUob4kOYRnoyymVnw=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: mi7KJXHo-_cgynjrOEYKa7kVD8I.roa (hash: YGaCcIrn+IZQb5Rq3PZQYSYoXxlLsMVa6xxEh3lbzgI=)
7: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
8: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 10:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8c:ed:f9:2b:12:3b:4d:5a:8f:0f:c4:95:e5:0d:72:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Jun 3 10:01:06 2026 GMT
Not After : Jun 4 10:01:06 2026 GMT
Subject: CN=6eb5884fd4e4a16bec8ccafbd2e46285d25b4dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9e:d4:20:0f:5e:c2:0e:e1:60:60:12:5e:e1:
61:93:ae:77:85:e7:ca:e8:5e:fc:03:ee:38:13:56:
51:f3:a1:6c:0b:f6:f3:85:52:b7:25:69:d2:d1:26:
72:71:06:1c:c8:e7:44:92:b4:ea:df:6d:71:42:0f:
dd:16:a6:3d:43:85:04:9f:9c:7e:00:f6:89:b7:a9:
af:39:65:1c:6e:54:f6:44:41:83:26:a3:44:0e:ef:
13:22:fa:7e:43:14:ae:8e:d5:1b:ab:77:6c:69:46:
cb:7d:46:44:14:66:5c:8c:53:6d:01:04:06:44:c5:
bd:d2:1d:ef:6d:dc:b9:f4:b8:53:8e:2d:b2:fa:8d:
c5:bc:ed:99:04:5a:7d:4b:be:de:ba:a9:3c:59:fb:
4f:85:54:20:73:88:0d:68:66:e2:96:4f:31:2f:42:
7b:af:9a:68:49:fa:d6:ec:4b:84:6a:6e:ef:43:e6:
96:96:cf:d3:eb:95:76:cb:38:16:e9:00:64:66:e6:
15:f8:6e:ec:2e:12:cb:0c:4b:e6:35:98:2f:0a:6f:
92:fc:81:cc:43:00:2c:c0:92:e6:d9:71:1e:45:14:
70:15:10:03:38:5b:b4:51:eb:8c:a6:f4:2f:31:4e:
29:cc:f3:64:de:12:83:9e:89:4b:7d:0a:72:43:28:
36:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:B5:88:4F:D4:E4:A1:6B:EC:8C:CA:FB:D2:E4:62:85:D2:5B:4D:EA
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a9:9f:6d:17:85:54:cd:9e:9a:05:ac:d1:69:e0:d0:02:7b:
6b:51:70:9f:a8:82:1e:f8:fd:ae:6d:90:93:d8:16:6b:80:c4:
ab:7b:fa:ac:c2:13:fe:51:b8:3a:2d:d2:6b:76:a8:55:4b:3d:
77:35:20:d4:79:3d:30:4b:bf:1c:17:ee:91:33:21:2a:9f:9d:
c7:bb:5d:f1:5c:48:0e:61:24:42:40:67:d4:bf:9f:25:c4:0f:
f1:7d:7a:60:6f:f6:38:8b:a2:30:18:2e:b0:39:52:f1:0e:2e:
13:f6:37:89:91:28:b1:93:dc:95:ec:e4:02:41:0d:dc:25:af:
e0:ab:63:45:88:b9:ce:f6:cb:54:6b:14:7c:9c:66:9c:be:39:
13:12:55:e1:a0:cc:49:a6:c0:c1:fa:9a:1c:78:9a:db:3d:93:
79:25:81:da:0d:18:b4:0d:d1:7b:1e:b7:76:13:41:82:a2:0b:
5a:ca:58:73:d3:35:78:b6:7e:51:6c:1b:a8:e8:09:6c:73:49:
27:90:e3:b2:f4:f1:8a:b5:c7:d8:4a:cf:33:0f:10:bd:b3:5b:
68:2e:12:58:48:8d:89:03:8c:da:4d:2a:b6:cd:a6:1b:69:3a:
c4:63:c2:25:b4:bb:7c:7b:03:5f:9d:fb:e1:56:c8:db:66:d9:
aa:8e:a4:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 19:59:35 2026 by rpki-client