Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: O0NiwzrDDzB3Z6NUVkosk2gIDdyR7iAK3JapxY06LkU=
Subject key identifier: 56:4B:26:A6:EA:D7:4C:EF:8D:1E:1E:D0:E4:C1:AE:DC:A6:55:CB:31
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 019F126614CA7C02D0773D096C5BAD255D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 1919
Signing time: Mon 29 Jun 2026 08:01:47 +0000
Manifest this update: Mon 29 Jun 2026 08:01:47 +0000
Manifest next update: Tue 30 Jun 2026 08:01:47 +0000
Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: IkDjIRpG4C94SnudaaGepdoBHRUG+y4tCpHAVpmbMSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 08:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:66:14:ca:7c:02:d0:77:3d:09:6c:5b:ad:25:5d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Jun 29 08:01:47 2026 GMT
Not After : Jun 30 08:01:47 2026 GMT
Subject: CN=564b26a6ead74cef8d1e1ed0e4c1aedca655cb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:42:e6:e6:31:61:d6:98:0e:7b:31:17:6c:b4:
26:6f:db:78:4a:fd:c2:30:0c:89:7d:62:a6:4e:92:
57:4d:d4:e6:bf:f2:4d:0d:1f:21:40:f6:32:83:39:
c9:d2:5d:89:47:31:f6:d2:6d:d0:a5:53:69:55:ee:
9a:68:f9:78:87:ed:96:83:e4:0c:97:ea:5c:60:5f:
12:b1:a1:a7:f6:ec:fa:bf:dd:32:0b:58:a0:cf:dd:
b2:8d:33:72:b5:e4:98:6a:09:83:a8:d8:14:75:31:
1f:ea:5d:2e:86:6d:32:6e:dc:cb:7b:6f:b0:a4:22:
d1:60:6e:b0:be:cf:59:ce:c9:21:fe:bf:6c:df:60:
b8:11:23:6d:88:28:10:8c:ab:d0:e7:fa:a2:32:c6:
50:6a:33:a5:27:fa:f1:ec:01:24:0b:61:8c:02:94:
ea:1a:49:a9:e0:20:cf:d9:28:4f:12:cb:a7:2a:0b:
f4:a1:3b:ef:b1:6c:7e:c3:6e:b1:f3:d7:30:86:a8:
64:29:4e:7b:4a:da:09:42:29:06:a1:44:1d:83:fe:
14:61:41:1d:5c:88:59:00:26:07:aa:fa:69:0e:2b:
a2:47:e8:f0:b4:99:e6:a1:2e:93:d3:3a:35:a9:7e:
0e:cb:66:84:6f:5a:fc:5f:10:fc:f8:1f:f2:d9:94:
40:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4B:26:A6:EA:D7:4C:EF:8D:1E:1E:D0:E4:C1:AE:DC:A6:55:CB:31
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:2d:02:0b:91:8a:82:1b:bf:16:6f:27:ca:d0:a9:9c:1e:90:
d1:3d:7a:15:22:c2:6f:a9:ec:8c:f0:4d:7e:12:91:ee:2b:17:
c7:20:80:a1:f9:0f:e6:26:63:3a:23:de:34:4a:38:9a:87:ec:
ad:e5:4c:bb:2b:f9:08:e1:6e:87:6c:0f:a7:a0:1e:85:ea:70:
9b:f4:87:6c:f5:16:ba:a2:ba:50:78:d8:ee:f2:6f:ee:78:eb:
cf:ca:36:cc:14:20:43:86:a0:7d:23:b6:27:47:84:43:1b:8d:
09:54:72:90:b1:33:b9:99:d7:0d:c5:b6:55:7e:e3:b3:d3:45:
32:02:eb:a5:07:b2:be:52:c6:1e:37:d4:3c:41:f9:d7:ad:88:
70:bf:0a:fe:8c:15:08:aa:71:2c:5d:4f:44:e4:d9:97:e0:35:
f3:73:19:eb:fd:9a:5e:da:68:7e:df:30:36:67:bc:38:86:6d:
98:4f:9d:e6:72:08:bf:f4:0c:d0:2b:8e:f2:bc:1b:3a:c6:74:
fb:cd:00:c7:cf:76:70:5c:cd:50:f6:f1:e5:b0:98:4d:27:05:
45:1d:c3:7c:c7:ec:8d:43:9e:49:af:99:1b:d6:fc:3a:7d:f7:
e4:0d:1b:73:33:4d:39:fa:37:ef:de:27:a1:2c:fe:4c:40:81:
60:df:e1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:43:14 2026 by rpki-client