Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: tBhJx4UzKRRvV9WH2iaygXvcbiImln7QZIRroDw/3v8=
Subject key identifier: D7:37:23:95:99:7D:EF:CE:CE:58:E6:E1:4C:2A:D8:4C:B3:89:C9:83
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019EE77B8A910E4E2A0C150E92E1EB8CD836
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 1448
Signing time: Sun 21 Jun 2026 00:01:33 +0000
Manifest this update: Sun 21 Jun 2026 00:01:33 +0000
Manifest next update: Mon 22 Jun 2026 00:01:33 +0000
Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=)
2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: +ZNeXyL3Q8r/cGaZM+iEvzM6MfHgW5yvPOY5TxIEo1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 21:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e7:7b:8a:91:0e:4e:2a:0c:15:0e:92:e1:eb:8c:d8:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Jun 21 00:01:33 2026 GMT
Not After : Jun 22 00:01:33 2026 GMT
Subject: CN=d7372395997defcece58e6e14c2ad84cb389c983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:74:fe:3d:81:0d:4f:69:ee:3c:6f:4e:d2:16:
6d:67:1f:32:f2:2b:9f:ea:15:7c:2a:32:5a:04:74:
43:05:eb:61:88:c9:da:b3:1f:1b:c8:d5:f0:c4:84:
1f:c9:14:35:4c:d8:ce:76:27:80:74:66:c4:ec:a9:
1c:bd:4c:fa:1a:4e:9d:29:89:65:12:05:d4:a2:83:
9a:34:f6:32:a4:b4:09:2d:fb:8a:eb:83:ac:54:43:
a7:9b:33:16:59:d9:c9:0d:bc:24:fc:75:ed:f2:d1:
9e:52:7e:b9:3f:b7:56:9b:20:7d:75:4c:40:5c:a0:
44:22:6c:eb:4b:96:0b:e3:97:45:09:86:85:9d:45:
0d:7c:72:ef:a6:54:c7:cb:3f:62:5f:27:22:6c:02:
26:eb:77:d7:96:d0:55:28:7f:64:d7:18:c0:d0:36:
e5:4d:13:ea:f9:e3:af:d5:68:96:23:46:59:ba:e0:
9e:bf:c0:8f:3c:6b:96:2e:c3:c5:37:83:75:ae:f9:
9f:42:bb:40:53:c9:89:fb:d8:f4:21:f1:ef:7b:67:
34:e6:e7:c7:e0:46:b6:fc:4e:29:ed:77:bb:f4:4d:
3b:35:f0:4d:de:29:33:38:7e:7f:35:b8:7d:d1:ce:
d0:25:6f:e4:30:f3:ec:6e:93:6e:e7:a0:10:c4:97:
35:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:37:23:95:99:7D:EF:CE:CE:58:E6:E1:4C:2A:D8:4C:B3:89:C9:83
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c8:91:88:a8:e3:0f:7c:42:51:b6:b8:f8:aa:7a:92:73:5a:
e4:f9:ee:4d:a9:41:6b:5d:69:b3:93:a1:aa:30:85:c9:6e:24:
e6:a9:38:8f:d8:1e:21:e4:73:48:ce:d3:23:70:ad:22:24:ac:
1b:a0:b3:c1:8e:cc:00:eb:3f:0f:f0:08:50:2e:07:ad:1b:6b:
8d:e9:35:b1:1f:91:0e:4a:5c:3d:a9:7a:94:8b:b5:35:b8:c6:
bd:7a:cd:7f:91:b7:0d:04:7e:55:45:76:a1:1a:81:c5:71:35:
24:d5:d5:7d:58:cf:aa:3e:33:a3:dd:14:5b:0e:89:db:43:ef:
6e:f0:96:f5:f2:73:ca:db:a2:e0:21:2b:85:5b:61:ac:84:79:
1d:6f:0a:04:1a:f1:ee:58:ea:65:8f:e4:cb:2c:26:35:be:d1:
57:9c:cd:98:f8:6e:be:54:44:f0:a6:91:15:45:e4:bf:01:cd:
b8:76:81:b4:73:10:2c:81:8e:f6:bb:20:c6:c3:6b:1e:2e:f5:
c4:fe:21:fc:37:7c:10:1c:37:0d:41:92:de:01:6a:83:e8:c5:
57:1f:c5:66:f4:13:2b:69:4a:de:1e:a1:5b:4d:39:97:39:a7:
a5:ea:81:09:1d:d4:94:b8:79:be:d7:3a:33:56:74:db:47:17:
5b:32:f8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 08:05:05 2026 by rpki-client