Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json)
Hash identifier: hyiBvJiv2FZrMbMUjbklzpzgV1SKlVsHQlvVfMFa08g=
Subject key identifier: DB:5B:61:53:4B:EC:15:AD:04:32:93:58:BA:7F:BE:2F:5B:2F:7C:EE
Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a
Certificate serial: 019E04AC47887998AA2E44C97E76A79CB219
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
Manifest number: 18FB
Signing time: Thu 07 May 2026 23:00:59 +0000
Manifest this update: Thu 07 May 2026 23:00:59 +0000
Manifest next update: Fri 08 May 2026 23:00:59 +0000
Files and hashes: 1: cFtA2whI-5eSAd_xz6FflVfrfcA.roa (hash: rjwPdM8tVlnPByunwjAWM9HihlVqQjzJw824S3HbwPc=)
2: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: 0GUhCMTm/+Z+18/ur0dXvt0x0MIERHWH1eev68BDOEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 21:15:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:04:ac:47:88:79:98:aa:2e:44:c9:7e:76:a7:9c:b2:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a
Validity
Not Before: May 7 23:00:59 2026 GMT
Not After : May 8 23:00:59 2026 GMT
Subject: CN=db5b61534bec15ad04329358ba7fbe2f5b2f7cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e2:c2:e1:ea:77:73:bd:86:a0:e3:80:c2:ba:
5a:0c:bc:ea:c8:60:b3:be:fb:cc:54:7b:4c:da:e8:
54:0f:ca:81:07:2b:d1:1b:e6:67:58:dc:c1:d6:21:
ea:9b:74:6a:84:3b:bd:8d:c0:3e:ca:84:19:fe:a6:
fa:e2:19:3b:48:7b:5b:eb:27:dc:21:07:6b:b7:f2:
c4:b3:98:65:a5:53:67:e8:52:c3:b2:62:ef:93:fd:
4a:be:d6:c4:3b:6b:13:13:4e:df:3d:b6:0e:97:c4:
a0:31:32:01:08:57:fc:32:e2:99:07:dd:eb:65:e3:
c7:e7:76:4e:a7:69:ec:36:19:36:30:a1:c8:03:b9:
1c:74:73:94:27:25:db:02:60:3c:d3:89:12:c8:c6:
fe:97:f3:74:15:be:17:f9:7e:5e:87:6f:52:6c:c2:
ff:b2:d8:6a:ce:d0:2c:61:97:c5:23:f3:ab:7c:f3:
d8:4f:29:ba:33:71:1f:49:f0:fd:09:83:8e:eb:77:
fa:e1:2b:39:0e:9a:15:7f:91:cf:2b:33:16:0b:cd:
9d:d5:e2:a5:cb:b3:f2:8e:ae:73:4f:aa:5c:12:95:
24:bc:45:9b:d7:8a:3e:ac:a8:2e:67:9d:72:28:5e:
97:c7:09:47:64:41:1c:75:a8:f3:56:d5:f2:e3:a8:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5B:61:53:4B:EC:15:AD:04:32:93:58:BA:7F:BE:2F:5B:2F:7C:EE
X509v3 Authority Key Identifier:
keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:b5:0c:4d:f1:16:e8:e9:42:28:e1:ea:bb:db:3f:78:9c:da:
2b:01:c3:ed:d5:f5:2e:b3:5e:26:c0:ae:b8:c7:f6:0a:79:13:
2e:86:f8:9d:b0:10:24:48:89:e2:a9:44:b5:6a:45:ff:db:50:
e9:5b:cd:e1:6d:2e:e3:70:b0:97:de:ef:0e:7a:51:c6:79:b1:
c7:37:4f:ee:12:fc:a5:65:84:2c:da:52:2c:24:84:14:fc:f1:
8c:a2:e2:f5:bd:99:3b:91:a7:9c:74:ec:77:93:23:49:9b:32:
4c:74:5f:fa:a9:84:0a:bc:7d:bc:59:f5:99:65:e5:9a:5e:c7:
38:71:38:a4:24:19:19:af:3f:f1:63:27:26:ae:d8:1b:77:95:
61:9a:f9:1c:2d:39:9e:62:df:02:61:bf:12:42:cf:cf:c0:2f:
f9:c5:5c:13:d6:72:08:4e:6f:59:1b:95:30:d6:9a:60:77:23:
b9:13:7d:90:db:40:f2:19:56:59:b8:8b:da:78:43:e8:88:b9:
51:a6:f7:04:48:98:c0:d4:42:0c:0f:3c:94:9b:4a:8f:75:11:
c1:63:bc:0b:cf:96:da:3e:2b:5c:da:ed:37:24:9d:1d:db:55:
db:53:28:8e:47:7f:2b:f2:2a:a3:a5:5d:a4:94:70:8f:7b:5d:
35:9e:88:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 03:20:52 2026 by rpki-client