Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: tqw4wj0/OjqaNftfsxLY6avcjOW/9G8HYusmK7QHxR8=
Subject key identifier: 42:17:39:AF:F6:63:F9:98:86:91:C8:2F:4B:8E:BB:AB:0E:92:A9:6E
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019E8EA4CE11ABBEEAC3F4945B58CEE5D183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 0528
Signing time: Wed 03 Jun 2026 18:00:25 +0000
Manifest this update: Wed 03 Jun 2026 18:00:25 +0000
Manifest next update: Thu 04 Jun 2026 18:00:25 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: /cOC1b1nI7LyF7KgNMf8G5KJaHMNeVhVGv1SWNqs7ZM=)
2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 18:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:a4:ce:11:ab:be:ea:c3:f4:94:5b:58:ce:e5:d1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Jun 3 18:00:25 2026 GMT
Not After : Jun 4 18:00:25 2026 GMT
Subject: CN=421739aff663f9988691c82f4b8ebbab0e92a96e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:6d:6b:95:33:c3:33:ae:f8:24:7c:95:8d:
9e:4f:e7:d2:7a:a5:77:e0:f8:21:55:9f:93:8a:ec:
f0:ab:46:5b:ab:4d:8c:44:77:72:fa:dd:16:63:a3:
10:95:88:16:0f:9b:b0:b0:b3:ee:9c:be:81:d7:6e:
64:44:59:c7:2c:ef:5c:1d:9e:3f:a0:c3:58:e6:e4:
62:67:11:ea:e6:a3:28:63:89:13:c2:7a:7b:4b:19:
84:34:bb:43:06:08:4d:66:03:de:c0:99:30:63:a3:
c4:64:f3:d8:5f:e5:9b:ec:7e:77:68:7c:07:07:88:
c7:aa:1b:d6:4e:6f:8c:52:b2:41:a2:3b:34:f0:9e:
c3:39:05:3c:d4:cb:64:af:84:c9:a6:e6:10:3f:01:
fe:12:dc:e3:94:4c:67:fb:2b:88:8e:99:43:dd:6d:
4d:a2:80:55:6b:c1:62:db:e2:05:73:9b:24:15:73:
10:b3:e0:09:04:5c:13:9d:a9:a9:45:c6:a1:aa:2b:
50:30:05:85:a1:65:51:b0:62:5f:e1:cb:6d:36:5c:
ac:9b:fe:ac:4c:5f:86:d8:f3:b9:82:fb:0c:79:f8:
10:13:69:09:a6:49:19:d8:76:ea:6f:2a:b7:29:fd:
59:33:1d:5d:94:61:cb:82:2e:a4:9e:84:10:30:3f:
c8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:17:39:AF:F6:63:F9:98:86:91:C8:2F:4B:8E:BB:AB:0E:92:A9:6E
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:a6:bb:f4:9a:b8:4a:48:44:5f:22:95:89:96:3a:29:93:07:
8f:f1:ed:36:66:28:ea:ab:da:e0:3f:b6:fd:3f:29:98:40:2c:
4b:3e:c8:72:9a:98:3e:1e:0d:8c:e0:90:73:dc:76:8a:62:c4:
a9:1c:d5:16:40:bf:01:76:64:f6:3e:b3:13:d6:c3:99:41:19:
38:e7:30:c4:f3:af:f9:57:27:74:b3:85:99:27:00:69:e6:3e:
a4:b9:c2:38:22:2d:11:c9:54:ba:ac:30:2d:45:0d:fe:8a:6a:
5f:35:cc:24:cd:79:2a:ca:ad:15:f6:18:17:76:4b:5b:47:0f:
66:f5:6d:f6:5d:80:54:d9:fe:9e:da:0c:b9:22:7f:65:0a:db:
6f:80:f4:84:34:7d:e9:b9:d2:15:a7:b5:8b:82:1e:75:2e:3f:
cd:e9:a9:4d:d4:23:68:0f:b9:64:1a:3c:b5:ee:68:d0:94:f2:
33:f6:4c:cf:91:90:ff:3c:58:65:b2:63:ee:24:b2:b0:51:e7:
55:47:62:38:eb:9a:0f:13:fb:c8:79:90:ea:85:76:f1:17:fb:
93:fd:5b:65:7e:a5:4c:21:3f:b0:0f:29:75:34:9a:a7:35:1a:
c2:d0:e2:31:da:cc:fc:d8:57:90:f7:8d:44:0c:ca:7f:8a:56:
69:3d:c3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 04:17:43 2026 by rpki-client