Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: 7r4uiOIGjvZ9a1ukqxPRqLkb11VHEIimq05dfAT4sp4=
Subject key identifier: 59:8F:BC:95:D7:D3:42:27:E4:7B:BE:A4:BA:62:94:14:DC:BF:C6:B8
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019E9093357DF58DD8AC43620B858C848F51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 0529
Signing time: Thu 04 Jun 2026 03:00:26 +0000
Manifest this update: Thu 04 Jun 2026 03:00:26 +0000
Manifest next update: Fri 05 Jun 2026 03:00:26 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: PQHCCrYfMFE22mCcheRupoKcuwxSyN69MOHM/CX6WwY=)
2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:93:35:7d:f5:8d:d8:ac:43:62:0b:85:8c:84:8f:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Jun 4 03:00:26 2026 GMT
Not After : Jun 5 03:00:26 2026 GMT
Subject: CN=598fbc95d7d34227e47bbea4ba629414dcbfc6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:36:b9:36:f2:f3:5f:68:32:ce:55:dd:03:2f:
6d:00:4b:8b:0a:16:13:76:b9:95:54:89:e7:93:99:
f4:26:f9:38:84:fa:b3:2b:5f:1f:ef:37:8b:4d:72:
03:d4:fc:d3:6e:69:ae:8d:71:71:05:c3:68:76:90:
cd:51:7f:b2:77:73:4e:9e:50:d8:f5:e9:b2:32:b7:
63:92:14:c6:51:39:85:a3:e9:0f:d0:80:9a:17:e5:
52:51:86:3a:54:ce:f2:7d:36:b4:92:ef:b1:1b:dc:
af:0f:fd:e9:44:aa:31:4e:68:a7:e9:6e:29:45:45:
df:9f:ef:f4:c8:6b:39:29:7a:6f:af:da:f8:35:3b:
e0:51:c8:4c:79:f0:0c:fd:9f:33:39:be:06:3e:89:
d1:f0:50:eb:42:2b:f5:9a:14:35:6f:17:0b:57:1f:
7e:ed:8e:fb:2d:7b:2f:c3:b2:3f:fb:27:27:75:ba:
d7:22:f1:a1:a6:e8:f6:4e:ac:01:9c:79:ff:a2:c0:
ad:58:13:43:5e:c3:cc:6f:f3:2b:59:9d:fe:19:57:
3e:2f:37:c3:fd:26:11:cb:38:16:6e:37:b7:98:bf:
fc:29:fc:8b:12:28:67:91:0e:07:d6:d9:f9:ac:52:
6a:67:92:6d:47:c2:93:22:9b:18:c6:26:a4:18:fe:
78:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8F:BC:95:D7:D3:42:27:E4:7B:BE:A4:BA:62:94:14:DC:BF:C6:B8
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:46:e0:5f:ad:d4:e6:b4:39:7d:99:19:dd:59:b6:59:b4:4f:
07:58:e7:ba:18:78:b2:26:ff:ec:92:d3:7c:b5:93:a2:7f:05:
d5:66:4d:33:6c:c8:10:cd:7c:6d:29:1d:a5:8c:5a:23:ab:34:
9f:f2:f1:00:1b:57:9d:54:65:58:79:d9:10:6f:b6:80:6b:d3:
b9:75:d4:0c:aa:fa:d0:37:0c:fd:86:32:cb:c0:ec:3e:46:46:
24:b4:55:39:23:81:c8:3b:3c:0c:65:e7:63:bb:4a:4f:8b:ab:
eb:5e:f3:8f:98:39:1d:8c:17:fe:99:6f:6a:21:e5:7a:81:d2:
6f:a1:1f:f4:cc:b0:34:b8:14:91:0d:7f:ab:07:bc:71:51:56:
df:de:5d:7d:ef:69:6e:32:bf:ab:ba:17:f8:57:e0:c6:0b:f5:
2b:6f:e3:c9:e3:2d:1d:65:3a:9b:96:83:59:88:06:79:fe:e7:
01:e5:09:35:43:6c:c4:f8:9d:84:80:f2:d8:3c:19:ba:7a:92:
66:76:c4:64:63:e6:9e:9e:7a:26:c2:f2:08:57:50:f0:37:f6:
3e:14:9b:f9:27:9a:c5:ce:80:21:e1:b6:da:a4:75:c9:96:d0:
d0:fc:09:fe:fb:8c:27:fd:bc:92:f0:54:1d:75:b5:d4:22:da:
d4:ff:07:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6QkzV99Y3YrENiC4WMhI9RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk
NGZkYjgwHhcNMjYwNjA0MDMwMDI2WhcNMjYwNjA1MDMwMDI2WjAzMTEwLwYDVQQD
Eyg1OThmYmM5NWQ3ZDM0MjI3ZTQ3YmJlYTRiYTYyOTQxNGRjYmZjNmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtja5NvLzX2gyzlXdAy9tAEuLChYT
drmVVInnk5n0Jvk4hPqzK18f7zeLTXID1PzTbmmujXFxBcNodpDNUX+yd3NOnlDY
9emyMrdjkhTGUTmFo+kP0ICaF+VSUYY6VM7yfTa0ku+xG9yvD/3pRKoxTmin6W4p
RUXfn+/0yGs5KXpvr9r4NTvgUchMefAM/Z8zOb4GPonR8FDrQiv1mhQ1bxcLVx9+
7Y77LXsvw7I/+ycndbrXIvGhpuj2TqwBnHn/osCtWBNDXsPMb/MrWZ3+GVc+LzfD
/SYRyzgWbje3mL/8KfyLEihnkQ4H1tn5rFJqZ5JtR8KTIpsYxiakGP54rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmPvJXX00In5Hu+pLpilBTcv8a4MB8GA1UdIwQY
MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt
ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx
LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ0bgX63U
5rQ5fZkZ3Vm2WbRPB1jnuhh4sib/7JLTfLWTon8F1WZNM2zIEM18bSkdpYxaI6s0
n/LxABtXnVRlWHnZEG+2gGvTuXXUDKr60DcM/YYyy8DsPkZGJLRVOSOByDs8DGXn
Y7tKT4ur617zj5g5HYwX/plvaiHleoHSb6Ef9MywNLgUkQ1/qwe8cVFW395dfe9p
bjK/q7oX+Ffgxgv1K2/jyeMtHWU6m5aDWYgGef7nAeUJNUNsxPidhIDy2DwZunqS
ZnbEZGPmnp56JsLyCFdQ8Df2PhSb+Seaxc6AIeG22qR1yZbQ0PwJ/vuMJ/28kvBU
HXW11CLa1P8HJg==
-----END CERTIFICATE-----
Generated at Thu Jun 4 05:15:19 2026 by rpki-client