Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: 8ArQWOzpdqhWbh4RFitD0ZQ5v2nB4OD+xOD6oqqRrTo=
Subject key identifier: D3:61:1A:62:3F:E7:C9:B7:2E:CE:AF:F1:A2:F5:3A:DC:67:47:E8:BB
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 019F122E9847EE08AE49139EC57EB40AACAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 052C
Signing time: Mon 29 Jun 2026 07:01:11 +0000
Manifest this update: Mon 29 Jun 2026 07:01:11 +0000
Manifest next update: Tue 30 Jun 2026 07:01:11 +0000
Files and hashes: 1: CJHjJvBxO_A1o29RU77bYDobb1Y.asa (hash: OiQ96AcIrfdWv9rYq7YRunMZUUkm1k1hxiflexmUSCE=)
2: ZsGtqMxH4nL8S3-yctBXEQDc62g.roa (hash: +ZsU9QUE73+Gn9nFEGhVwL2RW/GlaE2Pf3U5DjyGOtE=)
3: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: VihRwAWQDtzGYfyWEGdGjs85olLgu2VJlUgsDl4WCMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:98:47:ee:08:ae:49:13:9e:c5:7e:b4:0a:ac:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Jun 29 07:01:11 2026 GMT
Not After : Jun 30 07:01:11 2026 GMT
Subject: CN=d3611a623fe7c9b72eceaff1a2f53adc6747e8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:98:41:05:e2:7b:68:b2:50:c5:37:f6:ef:00:
c1:7d:25:1a:c8:23:fc:34:97:56:2b:1b:93:3e:f4:
9c:a3:3a:5d:6f:ea:71:c5:f3:cb:e4:70:55:5a:22:
a7:57:ce:c1:3e:d2:21:87:34:f9:02:6a:45:0c:a4:
f0:54:68:c1:ac:66:ed:2c:78:e5:a7:09:51:c5:07:
e9:ee:b4:e9:2a:c2:93:83:c5:ae:33:5d:4d:8a:2b:
ea:0b:c0:b7:ff:da:56:d3:b5:28:52:c8:8e:a6:d8:
6d:3c:64:45:02:cc:8a:e2:29:e4:55:f8:1f:39:d5:
a6:72:98:9d:35:5e:de:80:3f:cc:85:5f:5c:02:0f:
b0:9c:39:40:d4:1e:b7:6d:85:63:cd:a2:4e:0f:fa:
b6:a9:4f:f1:44:f2:fe:fd:50:01:51:d0:d3:97:63:
41:ca:d4:0b:d1:71:20:58:74:84:e3:ff:1f:2d:45:
ad:b5:a2:1d:03:e9:e6:31:59:b8:bb:4e:0a:f8:03:
39:39:4b:eb:6c:3c:c9:30:e8:ee:a8:8d:ee:d9:64:
c7:22:c8:b3:34:6f:d6:1a:be:8e:b4:8c:71:ec:0e:
56:33:ee:87:60:78:62:b0:3f:08:87:a2:ed:b8:88:
2b:f7:02:3b:a6:43:d3:3a:6e:72:f0:74:ec:f8:92:
0b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:61:1A:62:3F:E7:C9:B7:2E:CE:AF:F1:A2:F5:3A:DC:67:47:E8:BB
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:2a:06:e7:57:d0:e8:fb:b2:ff:94:22:bf:f9:6b:92:4b:24:
7b:90:b9:dd:d6:d3:cd:d9:f9:d3:d7:6b:3c:18:cb:8f:c2:d9:
41:c8:8e:d2:ab:78:55:97:76:ae:9a:1c:7f:15:af:94:5b:84:
cc:5a:6c:28:c3:22:ad:8f:86:27:6f:85:3d:89:24:f6:48:e8:
4c:f1:b6:f2:07:b4:1e:62:49:9c:7c:48:2e:1f:88:50:2e:cc:
fd:47:1a:ee:3b:82:19:18:a4:d8:f4:9f:fe:e6:88:36:20:eb:
e4:87:8b:4c:d1:26:6f:31:97:fc:aa:06:bd:48:f6:ab:28:39:
46:fe:57:98:d1:a9:00:2b:9e:e3:aa:d8:8d:8a:aa:37:ac:08:
2a:93:31:8d:c9:5d:8f:ed:74:0e:c8:b5:ea:da:0c:91:80:ae:
a0:02:f9:48:14:70:7f:45:bb:92:8e:48:92:63:dd:3e:86:71:
96:9a:f1:2d:7c:f4:95:c7:d6:44:05:11:35:5d:a9:e3:68:10:
da:a4:39:fa:f0:71:c1:f4:ed:85:7a:c6:21:c4:7c:e3:d5:f1:
b2:fd:40:cd:a3:c0:6a:b2:e2:e1:98:30:d8:52:b8:5a:9c:4d:
fa:4d:5d:f7:2b:67:b7:16:9e:79:51:7e:42:24:79:01:07:61:
df:01:66:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:38:10 2026 by rpki-client