Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: RHPOJkG3WBvgXQ8fj9DIP8VUoOX7tmAz5LFQ+UjQSRY=
Subject key identifier: 93:AC:2C:AF:F0:43:98:63:0F:6A:E1:81:B0:9D:BD:52:6A:93:54:2B
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 019EB7A168CD8D0CA171ED74CAE54C28F0CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 07E2
Signing time: Thu 11 Jun 2026 17:01:09 +0000
Manifest this update: Thu 11 Jun 2026 17:01:09 +0000
Manifest next update: Fri 12 Jun 2026 17:01:09 +0000
Files and hashes: 1: 2MeX37cZHGHHuxJtj1E28ddzIsI.roa (hash: LZd2fssCxVZOERqVCoqkBsBn4xYtLG5cKZGv8FiTdNw=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: 1vhE7Fu4u1i+cCgcAWI0og2bIcnrDLGq5a4s35Rcmzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:68:cd:8d:0c:a1:71:ed:74:ca:e5:4c:28:f0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Jun 11 17:01:09 2026 GMT
Not After : Jun 12 17:01:09 2026 GMT
Subject: CN=93ac2caff04398630f6ae181b09dbd526a93542b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:57:fa:18:0b:a9:8a:40:b2:72:23:a7:fb:1d:
84:f1:89:4c:d5:e7:3a:a5:86:ff:fc:32:2b:10:b1:
bb:36:7b:79:d6:e5:b8:87:52:74:15:97:ef:3e:8c:
be:a5:5f:ef:65:e3:46:68:ff:d1:bc:9c:58:50:4e:
5a:1f:4b:51:be:17:a0:55:40:76:11:4f:f7:f4:87:
5b:d9:45:b0:9a:63:84:f8:1d:ae:d4:9b:8d:2b:e2:
e8:ff:b8:ab:a3:5b:55:99:98:8f:7e:47:f7:6f:c9:
2e:65:07:91:5d:31:a6:27:72:02:76:f9:54:88:04:
a5:a9:37:2f:83:91:ee:40:8e:71:bd:bb:4b:89:32:
16:3a:0f:a3:09:f3:69:24:b2:93:42:e6:12:15:74:
a5:9f:30:70:04:3f:82:ef:fe:63:36:86:41:21:dd:
e1:ac:53:04:27:e7:24:f0:1e:6c:8a:fa:17:39:f8:
53:a3:9c:4a:1f:3c:da:66:12:f4:80:c8:12:8f:cc:
d6:32:78:03:db:c7:9e:83:21:56:8f:e1:48:05:ed:
c6:96:04:49:e6:90:f0:40:b7:33:9e:f3:8e:de:ad:
64:b5:ef:dd:91:30:fb:13:ce:77:5d:6b:c0:5c:8c:
c9:c3:08:1a:0a:ab:bc:d3:9f:37:05:36:fc:c9:d9:
ec:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:AC:2C:AF:F0:43:98:63:0F:6A:E1:81:B0:9D:BD:52:6A:93:54:2B
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ea:f2:78:d3:c5:c7:dc:88:39:8d:e3:23:a3:ac:43:d0:72:
3a:5c:54:a9:a6:ab:58:42:79:44:fb:70:3f:39:ba:8b:29:45:
ad:2a:ca:23:8e:7d:57:f4:ba:58:33:05:de:03:39:f8:00:2e:
2b:6c:5e:6c:1e:67:36:8c:ab:66:65:f9:22:40:53:ec:91:ed:
67:f5:c1:ea:e6:78:fe:7e:79:e2:41:97:7e:0a:1a:f9:73:cb:
f0:5f:9d:ab:4a:1a:d5:0a:c4:e1:16:d7:b7:3d:c8:6b:56:3e:
0c:95:5a:69:81:e3:c7:10:54:9c:15:6c:76:b7:9e:63:96:7b:
5c:5e:ae:52:cc:5f:4a:5f:17:e4:57:f1:f1:ed:7a:8d:38:d5:
02:99:a6:91:ba:cf:22:17:04:e6:f0:9e:c7:10:35:7e:22:3b:
a6:72:fc:58:ca:c1:fa:ff:22:c2:84:4a:b9:66:d0:62:09:f9:
e7:84:e7:1c:e3:cf:ae:01:4a:8f:7a:44:17:e4:73:a6:1d:b0:
22:1e:43:38:1a:8f:10:dc:c9:97:a4:43:f4:5e:41:2a:00:e5:
7b:e3:ab:5a:47:12:2e:8a:d0:c2:47:ef:55:6c:15:b7:96:ac:
c2:51:ab:5e:3a:6b:39:1c:13:35:ba:a6:37:d5:ba:4e:1b:ca:
38:e6:1e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:33:45 2026 by rpki-client