Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: KPqwBAPoFhK9peaR2PzZrLkJbFIHVBaqyGpkDNNPYQw=
Subject key identifier: 35:A8:CB:EF:45:CC:4D:36:1A:68:B3:88:CD:00:FD:0E:7D:F7:66:65
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 019EB6C4E49707785141E0C78CCB6F449EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 13:00:17 +0000
Manifest this update: Thu 11 Jun 2026 13:00:17 +0000
Manifest next update: Fri 12 Jun 2026 13:00:17 +0000
Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: RrLM8/Ep7MpYYTtNSSLoy2u/kwuElO66sbv5nfLpLOc=)
2: YH3qouyi9uf0Sjp7erwfbtdqIMY.roa (hash: XATxeFAkfU3QrOitUmq9zj3TBTO+Je2+3q8oJUZcsYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c4:e4:97:07:78:51:41:e0:c7:8c:cb:6f:44:9e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Jun 11 13:00:17 2026 GMT
Not After : Jun 12 13:00:17 2026 GMT
Subject: CN=35a8cbef45cc4d361a68b388cd00fd0e7df76665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5f:37:5c:33:1d:4d:49:66:1b:e9:6c:c5:53:
e8:f0:f1:42:7d:f1:4e:af:2c:0c:36:bf:3b:5f:27:
80:ad:73:aa:78:d8:f9:14:a7:7e:a1:13:78:2a:16:
c0:24:17:d8:6b:94:e0:8d:37:dd:9c:2d:c9:b8:51:
eb:63:42:90:de:ca:bb:8f:91:1e:14:13:71:4e:75:
4f:3f:75:44:7c:05:fc:64:06:8f:30:89:2d:7f:aa:
bb:13:c5:04:e9:20:9a:5c:14:e3:09:07:c7:1c:c5:
03:dc:1a:57:20:64:4c:c5:a2:24:cb:21:78:f8:51:
e2:c4:88:f6:7b:46:39:c5:c7:6d:bd:6d:36:6c:0f:
b8:64:91:e2:e7:61:83:3a:ce:25:ac:d2:2e:5e:d4:
7f:2d:f2:b3:6f:46:92:97:24:e5:67:16:84:02:be:
b7:a3:6d:77:e9:8a:28:50:8c:54:c6:11:cc:e3:28:
ec:6a:2f:c9:ce:fd:7a:4b:e4:ba:99:f7:91:bf:43:
5d:7f:b0:05:f3:88:dc:d0:4b:b3:24:30:4d:dd:05:
ac:05:b8:40:3b:82:2d:5b:e0:b7:55:3f:92:40:9b:
49:bc:12:a4:aa:38:8f:a2:03:cd:99:97:c6:3e:c3:
d2:11:02:85:be:d3:b2:2f:da:dd:f0:2a:14:09:11:
7a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A8:CB:EF:45:CC:4D:36:1A:68:B3:88:CD:00:FD:0E:7D:F7:66:65
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f4:51:94:d8:66:89:de:51:c0:3d:2d:f0:86:0f:c7:f4:65:
e2:c5:b4:78:19:e6:92:a3:c0:45:e7:c8:33:e9:c8:79:b1:75:
0c:56:06:ad:23:dd:e3:fe:28:0b:6c:b8:bd:61:7c:53:c5:d4:
e0:ee:55:a1:e1:f7:97:8d:d2:e3:46:aa:fd:73:ca:1b:16:b9:
e6:7d:be:3a:34:a4:ba:0d:b5:06:0d:11:de:f6:ba:f5:4a:9e:
0e:1e:b3:24:bf:9f:a9:7b:9f:49:9d:f2:be:be:b5:d3:5b:5c:
c0:d6:2b:ab:c4:55:ad:5a:8c:d6:39:a1:21:bc:eb:86:b6:7c:
38:8e:c3:09:e6:b8:84:b6:e3:da:4f:01:37:be:20:4d:d3:c8:
3e:72:d6:2b:b3:49:e3:03:1e:dc:c9:0c:77:c5:f8:c5:a5:f9:
e8:63:9f:fb:18:c8:36:3d:91:e0:eb:e6:9f:44:23:03:51:3d:
a6:4a:26:49:dc:43:a9:1f:f5:13:f6:60:d5:29:f3:19:84:6f:
b2:8b:a1:5d:91:dc:bb:f1:df:c2:53:75:e6:28:d0:fc:79:52:
65:2b:a8:be:6b:ff:fe:a9:8f:ed:a7:43:4e:42:da:f8:4f:2f:
22:d0:37:c6:ca:a6:e4:30:ff:94:98:8c:e4:a3:4d:30:ee:0f:
82:51:6b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:20 2026 by rpki-client