Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
File: IQH0Od66_1iAOV148Lv62Mp2CL8.mft (raw, json)
Hash identifier: zfUG1ZiC4bdqWHanojBSVE5cSLB+IAMM4wQZfcvlA9U=
Subject key identifier: EC:13:AE:8B:55:50:BE:E7:6E:AA:1A:F1:59:71:F6:1A:10:02:1F:32
Authority key identifier: 21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
Certificate issuer: /CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Certificate serial: 019E9C2A59B84C8D94A5640466C078865484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
Manifest number: 1004
Signing time: Sat 06 Jun 2026 09:01:21 +0000
Manifest this update: Sat 06 Jun 2026 09:01:21 +0000
Manifest next update: Sun 07 Jun 2026 09:01:21 +0000
Files and hashes: 1: IQH0Od66_1iAOV148Lv62Mp2CL8.crl (hash: QMllCbrBKGpGgG4gLYFldYFyr6JA+9N31hG0ms3lCgs=)
2: LIiML1O5GYrYT2OXv04_3crEOSo.roa (hash: GEv40+sowJMzMWvtaNBUTp1Lf4CV4ySJkJ0S9aCKf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:2a:59:b8:4c:8d:94:a5:64:04:66:c0:78:86:54:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Validity
Not Before: Jun 6 09:01:21 2026 GMT
Not After : Jun 7 09:01:21 2026 GMT
Subject: CN=ec13ae8b5550bee76eaa1af15971f61a10021f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d5:01:9f:e9:9a:63:aa:a6:b4:49:a7:f0:4c:
a9:7e:c8:3e:b5:a9:df:c7:16:e9:b3:ac:1e:b3:bd:
62:5e:03:04:74:d6:fc:ae:8a:4a:57:89:40:08:cb:
d1:14:dd:a5:28:d7:86:6e:cb:01:53:aa:a0:7c:f5:
ac:34:17:ce:13:82:e1:1f:73:c3:9a:4e:9d:be:12:
a3:0a:ab:cd:59:d0:4d:b7:e5:b1:75:50:17:46:fc:
9f:b4:84:7d:a0:38:fe:65:34:0f:7e:7e:a3:0a:35:
6f:11:ef:a1:77:db:5a:69:73:13:ef:6a:ee:ac:e2:
fe:20:01:12:ac:1a:3e:6a:bf:9a:d9:19:e4:6c:01:
e8:dc:0c:5c:96:02:2a:ba:45:fa:35:1e:21:6c:85:
bd:28:1d:54:07:fb:c0:43:6f:78:b9:70:7f:5a:c4:
06:17:15:5a:59:55:5a:9f:ff:ec:c2:a9:15:fa:84:
e6:39:92:cc:5d:8c:15:3b:8a:46:e6:d6:ba:ad:5c:
77:e0:0a:c7:2b:05:65:0c:15:df:5a:ce:80:79:06:
92:bb:2e:0b:67:fe:ba:69:d2:08:ca:bf:56:00:1d:
8e:91:e2:f2:58:1c:af:89:7d:22:f1:94:bc:19:87:
15:2d:fa:e8:23:59:86:e9:10:6e:55:39:c9:03:d8:
c4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:13:AE:8B:55:50:BE:E7:6E:AA:1A:F1:59:71:F6:1A:10:02:1F:32
X509v3 Authority Key Identifier:
keyid:21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:99:17:a7:2f:5c:e6:ae:e1:5b:15:83:c8:6d:f1:a8:b3:31:
39:10:24:64:04:30:65:4b:c8:52:38:f9:18:95:dc:eb:71:f0:
0a:2a:98:08:d8:e6:1b:1c:ab:58:7a:77:74:d1:fd:dc:a5:7f:
48:81:6e:ea:57:f9:f6:16:c9:ca:dd:3c:9c:90:52:06:05:1d:
30:56:2c:73:77:01:c6:df:15:48:07:ca:33:8a:8a:fc:77:ea:
d1:91:4c:2c:c0:87:59:b9:b8:24:d4:e4:a4:5d:a2:f0:b8:72:
f1:68:4e:71:31:50:69:0c:ff:31:e5:c3:22:5b:8f:6d:b7:35:
75:6c:24:be:58:17:cb:ca:52:af:f3:b6:48:44:2b:4d:be:0c:
ff:76:f4:11:6a:39:2b:43:96:af:9e:3a:39:56:20:4a:09:28:
0b:eb:e1:ce:5b:ef:74:25:77:7b:99:ed:0d:15:51:48:ea:5b:
53:9d:52:f5:90:45:70:c7:c0:34:6d:7d:d2:f1:09:e9:37:31:
5a:8e:d9:9e:94:36:d8:a8:7e:20:22:33:23:b4:8e:ee:2e:f4:
a2:82:a9:5c:da:69:4e:f4:25:b7:5a:f6:97:c6:86:5f:19:7a:
1a:01:d9:ed:65:da:e0:e9:3d:f3:f7:94:a1:a7:ed:5e:a4:99:
45:22:72:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:20:39 2026 by rpki-client