Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: EPyyzXZvtGAJd58PzizvoU/nKxE/2MSkDteJ3dmTFko=
Subject key identifier: EF:AF:6F:62:50:67:3D:B7:91:35:17:37:31:C4:FC:0C:B8:48:94:A8
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019E90941EC6A53EE2989BE3B2A7E98EE254
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 135E
Signing time: Thu 04 Jun 2026 03:01:26 +0000
Manifest this update: Thu 04 Jun 2026 03:01:26 +0000
Manifest next update: Fri 05 Jun 2026 03:01:26 +0000
Files and hashes: 1: 3kj2IZUmhg4c3fn_vDNshjS1bYM.roa (hash: F1j+Rw7AK0w/RfaxR+vC5zwL/WwgyQ05RgO+QAvekpY=)
2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: n4mqY2QrN1atMBnTRlIXXcLR8UQutlI0sEMPKVvcEWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:94:1e:c6:a5:3e:e2:98:9b:e3:b2:a7:e9:8e:e2:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Jun 4 03:01:26 2026 GMT
Not After : Jun 5 03:01:26 2026 GMT
Subject: CN=efaf6f6250673db79135173731c4fc0cb84894a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d5:0b:d7:40:2c:18:e8:8e:59:0f:f9:58:0f:
7c:39:50:5e:3e:5a:3f:f9:64:01:18:71:cb:b0:b5:
69:99:82:c0:44:c1:90:cd:17:06:90:f2:ef:9a:6c:
7a:bf:85:bd:ce:99:47:32:30:83:ee:d2:3e:34:0d:
ac:8c:90:76:67:79:9d:9d:dd:ed:80:61:1f:b2:03:
7d:ec:24:b2:38:62:14:ff:25:68:e2:b2:a5:a6:ce:
66:76:d7:2e:57:67:e1:32:e5:45:12:ea:01:3e:10:
66:47:49:8a:00:d4:1f:9f:52:8c:01:0a:5c:bd:de:
3d:ef:b6:f8:99:6f:52:09:4a:c7:d8:67:1b:8e:22:
58:43:3c:a4:6b:b4:47:35:da:d4:13:3a:e0:1e:e6:
68:65:ca:c6:c6:cf:20:8a:f1:51:f2:fc:8e:e7:3e:
67:4b:df:f2:4a:c1:a9:0c:dd:fe:53:c1:66:92:c8:
dc:41:06:92:31:b7:4e:de:21:29:06:52:a5:be:14:
40:60:21:71:53:5b:f3:b4:bf:7e:69:3f:94:51:6b:
60:7c:34:6c:19:a2:92:81:b3:ed:84:d0:98:20:49:
ed:6e:65:98:28:ae:8d:f8:af:6d:22:81:7c:ad:ee:
55:42:9c:cc:21:cb:28:0d:83:8a:ad:d3:7b:94:10:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AF:6F:62:50:67:3D:B7:91:35:17:37:31:C4:FC:0C:B8:48:94:A8
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0f:6c:86:62:02:0d:86:59:11:0b:08:0e:bf:66:20:92:85:
f3:d5:b9:b5:7c:1d:90:db:71:00:05:a9:66:94:64:54:51:64:
76:d5:9c:28:66:7c:c2:28:d3:b3:63:d4:e9:0e:ee:d8:93:86:
03:56:74:c8:c8:fd:64:cf:c9:28:32:ef:1b:d2:dc:11:12:8c:
8d:ad:b3:83:51:eb:48:b0:f6:6e:53:45:f0:22:11:86:a9:b9:
6f:96:84:1c:28:42:04:62:f4:44:8f:dc:00:40:f9:16:ee:0c:
d8:53:7e:05:c2:53:bc:67:fe:d3:54:b8:ec:af:b6:3c:80:59:
17:8d:41:be:e4:18:99:03:f0:68:59:2c:fe:66:83:d8:3d:99:
78:48:21:31:4e:58:ce:37:4b:de:84:22:fd:b4:b7:bd:af:19:
97:cf:60:4a:5b:70:6c:c2:42:41:0f:cf:c8:5c:26:32:c7:d8:
3c:13:33:dc:3c:85:7a:7e:de:60:3d:74:5a:d2:74:6d:09:4f:
cb:5a:e3:92:1d:29:10:a9:1d:84:51:af:d0:1e:e8:1b:45:b6:
a7:fb:20:8a:48:ff:36:93:c1:74:6a:56:dd:21:78:ae:df:0c:
6f:f1:b2:6a:a8:26:98:f6:b6:7a:48:26:d9:f3:12:bd:f7:65:
1a:5d:ab:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6QlB7GpT7imJvjsqfpjuJUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMGQzMTFmYzE5NDYzZmRkMzBhZGVjYzkxN2I1ZjAyOTg3
NDFiNDQwHhcNMjYwNjA0MDMwMTI2WhcNMjYwNjA1MDMwMTI2WjAzMTEwLwYDVQQD
EyhlZmFmNmY2MjUwNjczZGI3OTEzNTE3MzczMWM0ZmMwY2I4NDg5NGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29UL10AsGOiOWQ/5WA98OVBePlo/
+WQBGHHLsLVpmYLARMGQzRcGkPLvmmx6v4W9zplHMjCD7tI+NA2sjJB2Z3mdnd3t
gGEfsgN97CSyOGIU/yVo4rKlps5mdtcuV2fhMuVFEuoBPhBmR0mKANQfn1KMAQpc
vd4977b4mW9SCUrH2GcbjiJYQzyka7RHNdrUEzrgHuZoZcrGxs8givFR8vyO5z5n
S9/ySsGpDN3+U8FmksjcQQaSMbdO3iEpBlKlvhRAYCFxU1vztL9+aT+UUWtgfDRs
GaKSgbPthNCYIEntbmWYKK6N+K9tIoF8re5VQpzMIcsoDYOKrdN7lBC1xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO+vb2JQZz23kTUXNzHE/Ay4SJSoMB8GA1UdIwQY
MBaAFCMNMR/BlGP90wrezJF7XwKYdBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjIt
MWJlY2I1ZGNkN2FhLzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjItMWJlY2I1ZGNkN2Fh
LzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiw9shmIC
DYZZEQsIDr9mIJKF89W5tXwdkNtxAAWpZpRkVFFkdtWcKGZ8wijTs2PU6Q7u2JOG
A1Z0yMj9ZM/JKDLvG9LcERKMja2zg1HrSLD2blNF8CIRhqm5b5aEHChCBGL0RI/c
AED5Fu4M2FN+BcJTvGf+01S47K+2PIBZF41BvuQYmQPwaFks/maD2D2ZeEghMU5Y
zjdL3oQi/bS3va8Zl89gSltwbMJCQQ/PyFwmMsfYPBMz3DyFen7eYD10WtJ0bQlP
y1rjkh0pEKkdhFGv0B7oG0W2p/sgikj/NpPBdGpW3SF4rt8Mb/GyaqgmmPa2ekgm
2fMSvfdlGl2rvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 4 13:19:30 2026 by rpki-client