Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: uqviWaOVcDFp8/Lw+ZADrOZnMI8NeIpx2lIXG+McHsk=
Subject key identifier: 7D:85:7A:E8:CF:55:22:51:F4:00:AA:F3:78:AF:17:53:58:97:18:CE
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019EB8EA7E8C699C1F9B0431789B01348652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 0993
Signing time: Thu 11 Jun 2026 23:00:36 +0000
Manifest this update: Thu 11 Jun 2026 23:00:36 +0000
Manifest next update: Fri 12 Jun 2026 23:00:36 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: fK8TTCY4y0tKm53nHf12JRD0Lzjd3KNWE7g67I4QeIg=)
2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:7e:8c:69:9c:1f:9b:04:31:78:9b:01:34:86:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Jun 11 23:00:36 2026 GMT
Not After : Jun 12 23:00:36 2026 GMT
Subject: CN=7d857ae8cf552251f400aaf378af1753589718ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:84:7e:77:fa:55:8e:59:e7:30:80:e1:af:c1:
41:01:2c:9c:c0:d2:2c:6e:01:09:7f:5c:37:a3:ab:
ec:01:37:cb:ec:e0:9e:73:48:b9:81:94:df:ef:11:
3d:a0:ee:28:fe:a0:a6:94:ac:32:18:7d:63:b3:ea:
e1:d8:be:0f:3e:d4:79:05:35:a7:9f:ab:31:ef:69:
f2:9f:6c:e7:bc:b7:db:22:61:e0:7e:aa:84:44:3a:
cd:46:d2:a7:c2:49:28:f3:ab:f8:46:96:c9:dd:d5:
c8:4d:53:6b:39:bf:89:2b:bd:80:d4:a8:ae:63:98:
a5:7d:4f:e4:48:56:e2:9d:7c:03:8c:33:06:c6:57:
d1:cd:fc:8e:51:40:ee:6c:13:01:7f:9f:67:9f:38:
6e:7b:ed:82:da:90:d3:49:a0:08:fd:63:d5:80:c9:
ae:a9:7c:a9:07:09:cf:78:e1:54:e0:61:bb:8d:50:
0f:90:9f:6e:d5:36:ea:01:69:24:b6:a1:3d:db:4b:
15:73:4f:fd:9a:2e:8d:73:0b:df:67:56:47:d4:1e:
12:0d:1d:40:43:f8:25:ca:6f:f6:e6:e2:b3:fa:83:
f8:ef:ab:98:73:fc:9e:e4:4a:f1:ce:2c:89:79:ef:
32:47:a0:62:f2:94:e1:07:82:87:71:3d:9e:f0:76:
2e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:85:7A:E8:CF:55:22:51:F4:00:AA:F3:78:AF:17:53:58:97:18:CE
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f3:94:b7:10:96:50:71:c4:95:14:ac:e6:62:8d:d0:49:03:
65:b8:b1:08:c7:69:a2:54:18:21:26:0f:dc:2d:bb:8f:a7:3d:
0c:13:8a:c6:00:4a:3b:2c:b9:ed:ba:68:aa:26:4b:9b:6b:00:
d1:68:66:88:56:28:75:b3:13:5f:14:51:5b:93:1a:6d:ef:ae:
b0:4e:9e:51:c6:f1:af:8f:62:45:a4:65:c4:07:ec:7e:52:d4:
19:b9:fd:4b:fc:7c:8e:43:47:7b:d0:ea:d0:e1:ad:e1:98:97:
10:dc:6a:42:d2:45:4f:74:6a:22:b4:9f:2f:1f:f2:38:5d:10:
aa:18:34:d8:5a:7a:76:ee:ab:15:fd:c0:5e:9e:44:b7:63:e5:
8a:a8:98:66:a1:60:f8:dd:72:fb:85:14:2d:b9:8e:2d:ad:8a:
b3:c1:b6:2b:6e:d7:c2:fd:8d:39:59:e1:a5:f2:74:2f:7c:8a:
ed:69:83:ee:1a:ee:86:b3:fa:ad:a3:95:37:4b:78:42:5d:a6:
ad:fe:06:d5:43:5e:34:68:a2:48:6c:c4:7e:3c:ce:ae:c4:96:
78:25:f1:18:2a:b4:73:bc:7c:6f:bb:33:2d:2c:f9:9e:61:5f:
7f:7d:fa:14:b6:96:fd:2f:0c:89:a2:ec:50:1c:46:5e:5b:0f:
f2:d4:c3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:22:58 2026 by rpki-client