Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
File: ihZhi3H_yA4cP0HtDfyJq16WP9I.mft (raw, json)
Hash identifier: hxh0r1VCBlWUARyB25oZkGQob6Vzdub91J/eWltQrY0=
Subject key identifier: FF:33:91:FB:CE:82:9D:25:25:98:43:66:8C:EE:E1:3C:05:BA:A1:5A
Authority key identifier: 8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
Certificate issuer: /CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Certificate serial: 019E9C60522396628246D971D682BB64EA6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
Manifest number: 194E
Signing time: Sat 06 Jun 2026 10:00:18 +0000
Manifest this update: Sat 06 Jun 2026 10:00:18 +0000
Manifest next update: Sun 07 Jun 2026 10:00:18 +0000
Files and hashes: 1: SheiKMejj2UlfePnEJK4YM6UYGQ.roa (hash: Ll9jhdHvmhGlynW15LRcU3rlqzasSbGuWZW11z3vQs0=)
2: auDg02aDw-Ng4UMnzRMAZPV_78A.roa (hash: A2MCkRQZ/VKnTqKHBJZ1hnIKYJGRR8Cd5N45/0b9lic=)
3: ihZhi3H_yA4cP0HtDfyJq16WP9I.crl (hash: lQnKMt00yGXD1OZJuTH2umwsBzevPn9X/YT9P2fm/mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:60:52:23:96:62:82:46:d9:71:d6:82:bb:64:ea:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a16618b71ffc80e1c3f41ed0dfc89ab5e963fd2
Validity
Not Before: Jun 6 10:00:18 2026 GMT
Not After : Jun 7 10:00:18 2026 GMT
Subject: CN=ff3391fbce829d25259843668ceee13c05baa15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:87:34:06:88:3e:b5:3f:de:39:ef:b7:6b:8d:
91:7a:e9:37:b7:95:0a:7c:dd:b7:99:fa:db:fd:9b:
1d:a7:5c:db:df:25:63:2f:70:0c:11:20:83:10:e2:
24:18:fa:d9:9c:1e:ab:d1:82:6f:96:a2:9c:a4:e6:
6f:61:c9:9a:90:57:78:13:4d:2e:de:da:b9:30:51:
b1:82:13:6c:bf:11:f6:25:51:3c:d9:89:8d:2d:1c:
0d:57:3c:ba:14:9a:d2:33:c1:50:ee:05:8b:47:ae:
0c:9a:9e:6b:4f:78:5f:29:41:b8:6f:4a:5b:42:1f:
18:c7:81:ea:ac:76:60:87:bd:35:8b:28:8b:b8:43:
84:99:1b:9a:6c:b8:4b:a5:98:a4:07:e4:40:90:81:
bf:fb:b8:47:a1:9f:37:d7:fb:c5:de:f7:4f:ae:68:
cc:76:9c:88:96:7b:ee:6f:f9:29:e3:c1:01:24:05:
41:c4:8f:e8:e2:a5:1f:9f:a6:68:ed:57:68:f4:3c:
88:41:bc:65:c8:bb:c2:89:40:66:70:7a:55:fb:97:
1f:a7:0f:d6:25:cd:74:f7:2c:93:d8:de:02:7d:48:
a6:35:fa:23:5b:f8:18:e6:8f:c6:cb:f0:04:09:b7:
25:d2:70:9b:01:b4:0e:31:55:d2:33:5a:f5:4a:4e:
a3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:33:91:FB:CE:82:9D:25:25:98:43:66:8C:EE:E1:3C:05:BA:A1:5A
X509v3 Authority Key Identifier:
keyid:8A:16:61:8B:71:FF:C8:0E:1C:3F:41:ED:0D:FC:89:AB:5E:96:3F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihZhi3H_yA4cP0HtDfyJq16WP9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/55cf77-6394-4812-9fb5-291aaedd58cc/1/ihZhi3H_yA4cP0HtDfyJq16WP9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:cc:55:89:a8:35:e4:00:ef:27:ce:35:78:ce:92:5e:db:87:
84:86:cb:9f:0e:fd:ca:85:85:1b:b4:85:8e:46:62:4e:45:d2:
db:43:b1:a1:02:ff:5b:fd:3d:0d:ca:b8:e1:88:fb:a1:da:78:
23:39:be:ca:ab:31:b2:df:8d:06:67:d7:59:5a:a0:98:8d:f6:
86:dc:c7:a9:1b:22:e5:7e:a8:ed:31:15:51:a9:e3:ea:e6:ba:
bb:7a:62:db:67:78:60:e6:d8:ec:05:c4:60:9e:6f:3d:97:5d:
e8:8a:c7:73:b0:e1:60:b5:40:77:f3:56:3a:f6:e7:4a:fd:a4:
90:f5:1b:a5:06:46:2b:17:b4:32:14:0d:b1:ba:a1:61:9c:af:
46:33:a2:38:0f:8c:c6:2b:57:4e:17:ff:e5:7a:68:99:18:35:
47:b3:24:44:a1:bf:be:16:73:18:f7:25:7c:65:cf:ac:a7:0c:
7a:ad:e4:e8:40:90:df:45:63:22:91:87:7e:d8:70:cb:ab:ff:
f6:0b:5d:00:fb:00:31:76:c8:b2:10:c4:92:d9:57:4d:d8:51:
b7:5d:fa:df:53:df:ac:18:d0:71:94:4e:f4:a1:b5:17:69:cf:
84:13:3b:b3:f5:b1:ea:7b:8d:93:f8:fe:4d:51:b1:f6:94:c3:
ad:06:61:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:25:16 2026 by rpki-client