Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json)
Hash identifier: XqULYVBiX7HoCbew7mvVA9RfDiemdoY2DbNw2VEz6CU=
Subject key identifier: 43:6A:BA:98:7B:68:63:12:4C:BD:4C:85:E4:14:B1:20:B1:0F:8D:A5
Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Certificate serial: 019E3229E34A598843441C3D4381A34B071D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
Manifest number: 18CB
Signing time: Sat 16 May 2026 19:01:06 +0000
Manifest this update: Sat 16 May 2026 19:01:06 +0000
Manifest next update: Sun 17 May 2026 19:01:06 +0000
Files and hashes: 1: FwqF1yEFG7mKuQRa7RkSyKPz0W0.roa (hash: arAr0Lk0kEre21H8drvKyvd7aUFHvFqu0QRUk2zIk0Y=)
2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: G31TBb5Tl3j1XBTghxTn+pTR08//6hvsDZTl0tUQe2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:29:e3:4a:59:88:43:44:1c:3d:43:81:a3:4b:07:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75
Validity
Not Before: May 16 19:01:06 2026 GMT
Not After : May 17 19:01:06 2026 GMT
Subject: CN=436aba987b6863124cbd4c85e414b120b10f8da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3a:80:47:e1:90:50:eb:a2:d5:5c:4a:21:fa:
ec:88:9c:c1:4b:1f:20:72:d9:ed:96:a8:3b:12:4a:
5b:4a:93:45:bc:84:3b:26:1d:05:b8:80:05:7a:9c:
6a:c8:5c:6a:ad:2c:cc:d4:11:6a:db:a6:b3:f5:5c:
55:fa:8b:4c:98:d6:18:39:7a:b5:1d:55:af:82:17:
20:7b:3a:78:72:10:70:6d:b6:81:aa:19:51:4d:15:
44:3a:56:d4:8c:8c:9c:2d:5c:70:bc:a5:fd:32:3a:
b3:94:3d:85:9c:bc:a3:62:a1:e9:01:46:f1:11:21:
15:69:de:e1:70:9e:5e:f6:4d:25:49:4a:72:3a:ff:
d6:18:c9:9c:ef:e1:60:73:a3:ac:d5:ef:0d:58:d9:
72:70:98:d6:f9:c6:d6:54:71:d2:77:99:f4:2f:53:
a4:b1:1c:80:c2:fc:1d:25:83:0c:8f:c7:b9:4d:0d:
05:75:ca:5f:e4:4f:b7:b0:a1:db:ee:5b:ae:a2:99:
6d:34:84:1d:65:41:14:f1:8b:56:93:df:2f:c0:03:
6d:96:10:e0:82:f5:03:0c:80:7c:55:4d:a4:be:30:
a5:16:b8:54:8d:7e:b8:51:d9:e7:a6:a9:8a:3f:f1:
e9:60:81:33:e0:37:50:bc:73:d5:83:1d:00:12:9f:
bc:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6A:BA:98:7B:68:63:12:4C:BD:4C:85:E4:14:B1:20:B1:0F:8D:A5
X509v3 Authority Key Identifier:
keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:15:63:73:8d:c0:a9:e4:5f:80:1c:4c:ab:fd:2c:3d:af:ec:
4e:32:76:f2:9d:29:50:cd:d0:a8:f5:95:ce:44:63:37:89:74:
50:2c:fe:eb:49:c8:d9:2a:06:eb:01:5c:51:81:bf:28:f2:d1:
9c:99:a6:b1:38:5e:80:a0:69:c8:f2:d1:c2:2a:46:59:85:d4:
15:87:7c:0d:b9:fe:b7:ac:2b:eb:5c:6e:fc:b5:d0:3b:14:ea:
55:aa:71:4e:cc:76:a7:6d:e5:81:82:43:1c:75:8c:93:ee:e4:
a9:43:d4:7c:bd:cf:2b:b0:60:30:57:c1:a5:bc:81:6f:98:31:
37:ee:12:6e:14:03:4b:39:20:c3:2b:6e:85:91:36:60:5c:09:
1c:55:ea:25:75:08:be:9d:35:ca:b8:8f:9e:77:d6:7c:3f:bc:
00:1f:53:05:f9:87:b8:e9:b0:98:36:0f:f6:fa:72:27:8b:06:
34:91:5f:f0:78:1d:21:cd:71:19:a9:ba:f1:87:94:6c:89:f2:
b6:f4:55:e6:d3:82:cb:49:db:80:82:30:5a:d8:64:56:aa:f0:
95:6c:76:7c:aa:05:30:3a:bd:94:34:86:d0:3c:a5:63:84:ef:
4a:50:19:ec:15:ea:28:18:ac:6a:6a:a2:86:5d:0a:78:5e:ad:
a1:6e:bf:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:19:52 2026 by rpki-client