Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json)
Hash identifier: nmN4bcGjME8pRZmZaz2zXqNu2jUbI2bjCHfALDF6psc=
Subject key identifier: 15:BD:DC:12:C4:79:5A:E7:DC:10:90:C0:54:BB:8A:09:0D:DD:A5:F8
Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a
Certificate serial: 019EEE58D6D57AAC5E6FB393466369759310
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
Manifest number: 1974
Signing time: Mon 22 Jun 2026 08:00:59 +0000
Manifest this update: Mon 22 Jun 2026 08:00:59 +0000
Manifest next update: Tue 23 Jun 2026 08:00:59 +0000
Files and hashes: 1: cFtA2whI-5eSAd_xz6FflVfrfcA.roa (hash: rjwPdM8tVlnPByunwjAWM9HihlVqQjzJw824S3HbwPc=)
2: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: tJlPPQhaB6VrbJKwC2gjnaCeZuikV02I8VylX/rWT18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:58:d6:d5:7a:ac:5e:6f:b3:93:46:63:69:75:93:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a
Validity
Not Before: Jun 22 08:00:59 2026 GMT
Not After : Jun 23 08:00:59 2026 GMT
Subject: CN=15bddc12c4795ae7dc1090c054bb8a090ddda5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:de:b0:a7:89:ca:7c:61:88:25:ee:f6:62:08:
cf:4b:58:50:33:f4:19:1d:cf:24:db:31:a1:46:5f:
73:2f:82:bb:0a:96:34:6f:63:ea:83:26:a9:f6:68:
99:62:fe:79:12:e6:82:6c:bb:5c:e8:52:cd:90:37:
4c:94:4f:6e:51:99:16:93:75:52:35:dd:6e:38:9c:
84:60:ad:69:c5:e0:87:58:30:e7:01:e9:f6:91:ba:
a8:70:12:2f:5b:55:49:81:21:3a:cb:2a:da:7f:49:
4c:8d:7e:5d:dd:66:e6:5e:2f:a7:f4:c5:ca:40:0d:
0e:58:7e:60:c0:14:31:f0:1e:86:26:6a:bc:2a:79:
90:4b:b4:d5:df:88:ae:87:87:30:59:01:bd:47:47:
24:c9:12:42:8a:c3:b1:27:10:a6:28:a9:92:e2:77:
29:7a:03:23:02:2a:14:09:d7:98:f7:e0:db:86:4e:
b1:f1:73:d5:57:1c:ef:fd:52:bd:09:b9:ef:49:40:
92:39:15:59:a0:71:0c:7e:95:6e:08:4a:3b:b5:71:
31:76:1c:9b:a9:26:ee:30:21:38:af:7f:10:94:ca:
ff:a2:8b:10:ed:36:7b:7f:ef:ae:a6:a6:88:5e:7a:
e1:a5:44:bd:a2:0c:5a:ff:e0:4e:6d:be:11:ac:8e:
e4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BD:DC:12:C4:79:5A:E7:DC:10:90:C0:54:BB:8A:09:0D:DD:A5:F8
X509v3 Authority Key Identifier:
keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:21:21:c8:52:c1:00:59:e9:83:08:57:8d:1b:ea:ad:ae:20:
b6:cd:c7:81:8b:79:50:1d:86:d6:aa:a7:bf:a9:9f:6e:28:0e:
ab:54:47:7b:cc:4e:7c:28:29:0c:2a:54:c0:e6:24:a5:54:97:
47:6d:4d:48:a2:59:d4:8e:dd:f4:8d:e2:2e:51:6d:4e:2e:80:
11:92:c2:dd:82:81:88:60:e3:e1:37:5f:9a:ca:24:f9:12:0b:
bd:a6:1f:80:b7:2b:ee:b3:f4:8b:21:3b:85:d1:52:7a:29:d2:
bb:bd:8d:ef:77:07:0c:17:78:fd:03:fb:dc:ce:a5:d6:4d:9d:
69:4d:22:61:97:c3:2e:0a:a3:17:a1:e1:0d:93:f9:ee:3c:9d:
9a:77:6c:ac:e3:08:1b:67:4f:75:b1:ae:ad:42:09:cb:df:f7:
5c:70:15:e7:df:4a:c1:11:16:7a:ef:27:76:4f:24:a3:c0:27:
21:81:6c:16:1c:b3:f6:c4:8c:65:e5:38:ef:2a:13:95:c7:c3:
d3:bf:d0:5e:5b:00:6b:52:41:99:f5:ad:51:7f:92:f8:9d:85:
eb:06:2c:cb:5c:4d:10:b5:2c:af:37:4a:7f:21:b6:11:cc:a7:
d6:6d:3c:72:77:88:ca:da:17:0b:47:2e:81:b8:43:5d:83:ba:
c9:ba:69:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 15:41:14 2026 by rpki-client