Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: IWJ0YMvOLTumZtafjzIuhPQ/wX+hxN+qx2CTabepm6I=
Subject key identifier: B7:5C:78:8E:41:B9:29:0A:B5:F5:E2:2A:67:B1:2B:6E:70:10:C7:2A
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019EDBE53608918EBB3F1737828E4AF231D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0D50
Signing time: Thu 18 Jun 2026 18:01:32 +0000
Manifest this update: Thu 18 Jun 2026 18:01:32 +0000
Manifest next update: Fri 19 Jun 2026 18:01:32 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: s8hpgTjWs/U1yw0RHtAc8FvyA1NP67BdYThuQ2INvF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 18:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:db:e5:36:08:91:8e:bb:3f:17:37:82:8e:4a:f2:31:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jun 18 18:01:32 2026 GMT
Not After : Jun 19 18:01:32 2026 GMT
Subject: CN=b75c788e41b9290ab5f5e22a67b12b6e7010c72a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3b:76:c4:28:7c:12:28:3c:44:9c:f6:87:f6:
c6:42:c8:c1:6c:b7:cf:68:4e:be:4a:f4:c2:eb:bf:
2e:eb:d4:bd:89:ff:fa:9a:1e:ed:d8:a5:e3:ea:b5:
fa:ec:2a:14:b0:fa:88:72:67:81:fc:e2:b6:3c:36:
f1:80:37:97:83:76:c1:77:34:8c:19:3d:9e:8c:d6:
61:4e:8d:72:ad:91:77:a9:b8:70:04:35:14:84:ba:
fd:ca:6f:5d:f0:16:45:d3:9c:48:0e:bc:e3:17:be:
60:fc:fc:73:fb:d4:87:a1:ae:52:b5:07:b2:d4:0a:
83:e5:f9:2f:ff:cb:84:48:b4:73:e9:d4:a5:38:66:
cd:f7:94:20:07:67:9c:17:b8:00:a0:95:fd:c8:1c:
57:ea:4b:eb:3c:6f:d0:d3:3b:33:49:c1:ec:28:8d:
43:8b:bd:17:95:eb:9f:22:35:37:81:be:d3:26:2b:
c5:91:73:06:8c:14:03:78:59:93:5f:26:a3:a1:62:
f9:54:01:6f:1e:cb:21:4d:51:7c:92:89:55:78:35:
9c:2f:f9:92:55:03:71:ee:54:62:12:02:ee:93:e1:
e2:e6:90:2b:4f:7f:9b:69:30:89:84:90:bb:5a:53:
93:88:f1:40:ce:b7:48:47:55:0e:25:79:68:2b:95:
e1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5C:78:8E:41:B9:29:0A:B5:F5:E2:2A:67:B1:2B:6E:70:10:C7:2A
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:bd:90:84:06:57:94:b9:59:5b:57:23:0a:d1:c8:84:4c:13:
13:9a:ed:01:b3:c2:2e:ca:61:f6:87:39:e3:fe:a3:2c:d6:1f:
71:72:a8:bd:16:d6:a1:03:4c:36:95:04:3a:8a:40:22:36:b5:
5a:91:4d:df:c1:41:68:af:c6:3a:ac:b3:3c:57:0d:81:2a:c2:
3e:fa:0e:a3:79:b1:b8:51:a4:00:2b:67:9c:f2:34:13:5b:cb:
ab:85:98:65:8c:d6:3b:94:03:ca:4f:df:3a:06:14:2a:75:8c:
5f:2f:9b:c5:6e:ca:be:a8:87:fc:4e:c2:12:3a:c6:7b:44:3e:
66:8d:6d:5c:78:79:92:0c:a4:13:f9:95:b9:73:6a:44:00:df:
e9:88:85:4a:27:d5:29:a0:16:df:01:be:a8:b7:b7:92:7d:19:
72:94:cb:7a:fb:d3:2d:23:20:50:e4:d5:9a:cd:c8:cb:e4:b2:
f4:a4:ee:1a:49:76:06:6d:fe:11:82:30:32:3d:f9:52:27:0b:
64:fb:35:23:77:1f:17:ea:35:ee:69:2f:be:6c:5c:94:c5:75:
0c:fe:15:45:71:05:04:2d:d9:31:97:da:80:81:7d:24:7e:97:
c0:eb:6a:c9:0e:98:5a:6d:0b:cf:30:31:3f:41:5f:94:23:ec:
17:b6:a0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 19 04:27:42 2026 by rpki-client