Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: nCs/UoJgR4iQr22fjR+xjgROo9W1sjV6Mu7dku63UZs=
Subject key identifier: 8D:0F:DC:8F:80:01:4F:5E:63:0D:A6:53:04:A7:B2:3A:DC:48:F0:56
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019EB7A131636C9C6D6E75D36F7060DDDAF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 143A
Signing time: Thu 11 Jun 2026 17:00:54 +0000
Manifest this update: Thu 11 Jun 2026 17:00:54 +0000
Manifest next update: Fri 12 Jun 2026 17:00:54 +0000
Files and hashes: 1: V4V1l39T5s1HWbLvpZ_dNNrQqrE.roa (hash: 2VhJQ/68VuS0vWM3hQGdKSnDSrR+nJHlsrGkam4iQlg=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: 2LJlIKMT9tuFcXDVDLa4IRdO3+Hmkzs84FZHB4WjwvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:31:63:6c:9c:6d:6e:75:d3:6f:70:60:dd:da:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Jun 11 17:00:54 2026 GMT
Not After : Jun 12 17:00:54 2026 GMT
Subject: CN=8d0fdc8f80014f5e630da65304a7b23adc48f056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:be:b8:b9:e6:20:fa:d5:23:53:a7:c2:33:5b:
56:49:91:c4:24:f7:58:47:50:54:c0:75:0a:f6:aa:
a1:eb:98:17:f0:e8:1c:02:0f:83:b0:19:22:75:85:
57:cb:de:01:e7:62:29:cf:25:e4:67:85:d2:60:6c:
cd:4c:48:4c:76:73:1a:1a:0e:61:cd:55:d7:79:2b:
48:3a:4b:5c:83:c8:0e:ac:0b:49:d6:3d:2c:ea:b3:
6f:17:fc:34:0e:80:f7:66:e1:7e:cc:55:f4:a4:fc:
0f:3b:e5:a5:cd:b6:c3:22:9d:4e:49:2f:4b:b3:dd:
f3:02:66:d5:58:0a:42:e4:89:14:ea:94:bc:67:b3:
d4:9f:6f:38:a3:91:6d:7c:c2:32:32:08:ea:95:a5:
3c:ef:3a:d2:e6:54:24:72:31:ff:2c:4a:8d:5f:b4:
46:0d:a7:4c:d5:87:0b:9f:83:ac:83:be:51:9d:48:
45:0d:de:56:d9:6f:f1:9e:14:b0:27:f3:50:fc:d4:
ea:b2:3f:f5:7b:ea:97:05:e1:1a:1f:97:80:99:41:
7a:8b:6b:ff:c3:3a:5c:a0:7c:62:98:3c:03:ba:5e:
bf:75:09:fe:0a:26:1d:2c:48:3c:8b:ad:18:d5:b1:
d9:f1:a7:26:17:e4:2a:01:f2:d6:f4:1d:17:58:e0:
3b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:0F:DC:8F:80:01:4F:5E:63:0D:A6:53:04:A7:B2:3A:DC:48:F0:56
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:93:13:25:96:18:53:d3:e6:dd:9d:20:eb:34:8c:47:63:a3:
62:71:52:6b:99:73:b0:38:3b:3b:60:e3:88:94:1c:aa:71:8e:
a4:2e:7b:43:26:08:fe:b2:7c:f7:87:29:bf:c7:a0:11:8f:ed:
a0:3a:15:51:70:ac:93:57:7b:8e:7a:4a:49:30:82:87:5f:fa:
5d:88:5f:41:37:68:1d:77:80:82:56:45:9d:aa:97:82:f9:83:
a7:24:ea:88:c6:2a:a9:80:9b:d8:04:15:5a:dd:4c:fd:a3:56:
16:2b:44:67:b6:71:3c:23:46:af:a7:fb:93:90:3d:35:5c:fe:
ad:74:a7:36:2a:86:38:15:55:96:5d:7a:4e:15:df:7e:18:18:
98:9d:cc:b4:b3:bb:32:33:14:2e:56:c9:e3:68:fd:24:eb:cf:
4a:89:ed:e2:80:06:e2:2d:3d:e0:b5:22:37:60:c7:71:13:bf:
38:89:d6:83:51:52:f6:bc:88:fc:dc:8e:71:dc:75:b8:e3:6c:
38:74:21:34:f5:c7:29:7d:05:3b:d3:e0:cc:ce:dc:5b:d4:21:
ec:e6:b3:fd:3e:47:29:5d:4c:f3:5d:f8:a6:e0:00:d0:8c:05:
47:5b:8c:93:29:e1:2e:6f:7f:7e:9f:e1:2b:42:d3:c4:56:29:
7a:49:ae:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:40:49 2026 by rpki-client