Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: 4IKg9Hvt6Aqju1y1WoRclNoQ07XKJpNImlL4AGw7oAo=
Subject key identifier: 99:F6:47:B0:D9:7B:93:13:55:47:A7:DC:44:5E:1C:9D:DA:68:D9:17
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019EB5B351210C8C86E925E871B0ECB5D0B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 02E2
Signing time: Thu 11 Jun 2026 08:01:28 +0000
Manifest this update: Thu 11 Jun 2026 08:01:28 +0000
Manifest next update: Fri 12 Jun 2026 08:01:28 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: fqllwVnlV7aFIh2PkeHLgCYVs5FJYwonIaKHzVa9XkU=)
2: TJBNoqDJuDXadUHCaSsBuATOWto.roa (hash: gJS3wY/oZsaAW7+2UEGNOUq9JEb/eTtIedw6FlGOizU=)
3: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b3:51:21:0c:8c:86:e9:25:e8:71:b0:ec:b5:d0:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Jun 11 08:01:28 2026 GMT
Not After : Jun 12 08:01:28 2026 GMT
Subject: CN=99f647b0d97b93135547a7dc445e1c9dda68d917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:86:3f:ac:e8:97:c5:9d:da:92:7d:56:bb:fb:
d5:e7:e8:60:c5:ef:0f:ac:76:64:c0:fb:83:1f:7b:
29:fd:e3:fd:e2:ee:8f:da:07:33:c6:a2:43:dd:94:
3a:c2:75:59:ee:eb:18:1e:bb:96:49:7d:d8:b9:c2:
13:49:56:74:0d:c5:31:0e:d7:1a:17:82:de:9f:39:
fd:30:d9:58:be:5d:7d:6a:a2:ee:22:cc:af:b5:0d:
73:7d:d9:a0:ab:a8:ab:9d:91:87:ee:03:c5:a6:9d:
5a:b3:a0:79:fc:c6:ab:03:1f:60:46:5d:e5:13:4b:
03:20:ef:bb:ea:d6:ee:77:09:06:16:95:58:dc:81:
36:19:92:6c:ba:5c:0b:cc:b1:9c:29:51:09:af:b2:
d4:eb:51:43:e9:aa:c1:af:1a:10:99:75:89:de:30:
bf:2a:80:89:38:e1:fe:d7:b0:c1:17:02:cb:59:59:
9c:cd:51:a8:0b:be:9a:94:9e:e4:b7:e7:65:fb:cf:
54:fa:43:74:4a:28:04:44:d7:b9:53:0c:6b:af:4c:
33:74:05:a4:78:59:81:f2:b5:93:14:67:ea:54:2d:
45:44:ae:cd:94:c9:d6:4e:03:3d:f6:c5:e3:35:eb:
e6:61:12:f1:68:a8:2c:06:d7:44:aa:89:0b:ed:74:
33:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F6:47:B0:D9:7B:93:13:55:47:A7:DC:44:5E:1C:9D:DA:68:D9:17
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:61:9e:21:47:52:05:54:92:f2:79:16:26:81:bd:1f:32:5f:
3d:8d:e5:ab:af:b3:b3:ca:5d:d6:ee:26:b8:f9:4b:5c:15:28:
29:ea:0d:f0:4c:a4:9f:2c:9d:f1:81:a2:4e:98:cd:e8:99:db:
7d:d3:56:98:eb:57:19:b6:b9:ac:05:a2:80:f3:ce:35:87:b7:
c1:06:54:e5:d0:84:3a:4c:c3:d9:dd:1e:01:fa:e7:f4:6d:b2:
30:cb:6b:e9:b3:38:28:26:73:9f:c8:eb:2d:b0:a5:f1:cb:b2:
15:51:2e:97:fe:b4:82:5d:ec:9a:c7:9a:02:8b:0f:7e:c5:14:
ad:59:5b:a3:b2:b5:ff:37:ab:45:66:42:76:94:5e:f5:22:c7:
50:d6:1a:69:12:60:1d:99:4f:22:2d:36:01:77:49:ac:f8:93:
33:a2:e8:be:4f:c3:56:2c:fa:02:de:3d:6c:10:f1:3e:7e:e4:
31:5b:0c:c1:86:f9:17:c6:a3:b7:dd:d6:45:f6:c2:9f:14:94:
e7:a4:87:d7:15:fc:d4:e4:16:55:44:bc:55:dc:bb:00:99:db:
52:e5:6a:1f:5e:d8:15:59:63:b9:3e:21:89:98:7f:c9:8a:ec:
35:5c:14:ac:ae:3e:e2:e7:58:9b:0d:ac:e5:91:6c:46:2c:9e:
77:85:95:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:55 2026 by rpki-client