Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: xpTlVMkX7OWH6aM+nCrGx2HKGbVqc0PedCuoXROey6A=
Subject key identifier: BC:34:3F:65:F3:9D:3B:31:72:90:97:50:55:BA:FB:8C:EF:C5:C5:A5
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 019EB95821E3DC4A344298C5561440B69350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 198B
Signing time: Fri 12 Jun 2026 01:00:21 +0000
Manifest this update: Fri 12 Jun 2026 01:00:21 +0000
Manifest next update: Sat 13 Jun 2026 01:00:21 +0000
Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: WTMdJjhsU1fUpLya1fQzcMz9RhImGg/dV+ewU6je45g=)
2: QiXcXG4EDIRSf-VSNpu4RHBWAV4.roa (hash: 0qXAcwhMmlvzkuMEiWShTeGZUNL6+ryDi7ehHbJ1xl8=)
3: Tar1g33LvZCdpcq_JVPYhAJSdEk.roa (hash: QMkYB+0q1+Lk5nvo2OLotb9QUYic5rNjwNkq1hEO+78=)
4: ixwpJztfYUlUnPQNZhnkMR7K_yU.roa (hash: McdR8UEnDJLQe/Y5De9k6/QzPqtdNiKRIqwLfpPLq6I=)
5: rPnkzMR46g2upeGLwnbyd0fXnb4.roa (hash: flmLV+/lWpi4M1ZIkwy5iom73MDu5dXcw9z52gR1sjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:21:e3:dc:4a:34:42:98:c5:56:14:40:b6:93:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Jun 12 01:00:21 2026 GMT
Not After : Jun 13 01:00:21 2026 GMT
Subject: CN=bc343f65f39d3b317290975055bafb8cefc5c5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:19:00:49:7e:85:99:d9:c1:f8:02:ee:1b:d2:
7a:fa:81:03:be:1a:c9:18:6b:70:59:d8:ec:e8:9a:
92:e4:34:b6:9c:af:94:2d:7c:e0:47:5b:13:79:d0:
ca:3e:48:92:dd:73:ad:6b:da:e3:45:8c:18:c7:2e:
86:5c:b2:19:99:6f:d1:2f:96:58:b9:e1:43:85:5b:
12:0c:34:f2:1d:b8:d3:9a:5d:58:3a:c0:11:0f:8e:
9c:39:52:6d:a3:9a:b4:a0:c3:7c:a3:a6:1e:af:c7:
4e:d2:37:46:f7:84:1d:a4:37:43:03:ef:5d:4a:f3:
f7:5b:c9:57:07:d4:e0:f8:39:c4:b5:fe:e2:51:7a:
1b:55:df:24:95:2b:5c:ea:76:8a:84:5c:50:7c:19:
c3:b6:88:c0:0f:1c:8c:fd:0e:fa:02:db:b3:50:7f:
41:13:07:d5:7f:a4:1b:76:fd:93:d6:1c:0c:f4:35:
ef:7f:74:63:98:54:12:00:64:c5:9f:30:6d:53:05:
dd:fe:47:0a:1b:c6:d0:e0:c7:89:9f:5f:16:51:b4:
45:fc:51:b8:16:d1:7e:03:06:63:bd:1e:e5:28:96:
eb:98:de:be:34:49:47:19:3b:dc:2f:de:bf:4f:f6:
b0:c7:6d:ef:d3:2e:92:71:a4:e8:42:19:2b:27:5c:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:34:3F:65:F3:9D:3B:31:72:90:97:50:55:BA:FB:8C:EF:C5:C5:A5
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b0:b1:d9:f8:df:7d:b9:a9:c2:98:f4:68:42:13:c9:bb:bd:
c7:0b:41:af:8e:7e:b3:5d:a4:b3:15:5a:6b:d7:40:2b:fe:a8:
cf:38:27:f8:af:70:ef:16:2d:30:9c:71:c0:de:cc:59:02:45:
67:8f:53:0d:8f:15:94:0e:09:bf:eb:a4:56:d7:0a:33:36:6b:
9a:af:e0:2b:59:86:20:81:09:0f:45:a1:ca:4c:fa:91:bb:fe:
44:7b:71:86:1b:8c:1f:3d:42:fa:b9:ef:c7:66:12:d8:cd:4c:
48:87:4b:1b:a0:65:5e:e1:2b:66:91:f8:69:7a:d1:14:aa:41:
ed:4d:53:dc:ad:17:01:b6:57:f8:b1:8e:9e:e5:4a:ec:66:44:
c9:55:6f:ec:8e:90:27:a5:fb:5b:f4:a7:7e:74:17:3c:51:30:
52:1b:01:fa:3b:76:25:79:a7:19:df:7a:79:b6:ae:df:17:61:
c8:13:8f:62:d5:a4:5a:19:f2:30:14:2b:f3:07:a9:e6:7a:f8:
75:47:87:01:20:36:6f:c3:46:a3:66:13:9b:50:bd:81:ab:25:
76:d1:83:e6:d2:33:fb:64:a3:71:e6:f0:9b:d5:97:92:ee:d0:
17:19:e6:0d:ba:87:f8:97:31:3d:a6:20:ba:61:e4:35:d1:a7:
6d:d3:3e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:54:24 2026 by rpki-client