Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: sTZuU1ynP+uWzm/X0wdeqlxWi+ttTaTSx3Scg2P0mFg=
Subject key identifier: 3B:D8:05:27:5F:5D:5F:54:1C:D0:1B:5B:AE:AE:8B:B3:AA:7D:9A:7B
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019EE8577FD9BE57716878ECAADC8CB2FF83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0A7A
Signing time: Sun 21 Jun 2026 04:01:48 +0000
Manifest this update: Sun 21 Jun 2026 04:01:48 +0000
Manifest next update: Mon 22 Jun 2026 04:01:48 +0000
Files and hashes: 1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: X72H0zZTOyyeAu8FNKh/eHApCZ4JWpGIEKhmg1S3IMk=)
2: rTrNf2BtsL1vlw_R__r7UKcCZJk.roa (hash: lQAxfhbBIAhm99xgTizcCxmFSvD0y0yK3pththJkeEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 21:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e8:57:7f:d9:be:57:71:68:78:ec:aa:dc:8c:b2:ff:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 21 04:01:48 2026 GMT
Not After : Jun 22 04:01:48 2026 GMT
Subject: CN=3bd805275f5d5f541cd01b5baeae8bb3aa7d9a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1d:62:af:50:f4:b5:b1:8d:44:fe:cf:12:e7:
e4:04:7b:f9:6b:23:e2:45:99:ba:f5:e4:bb:56:df:
4f:61:9a:38:f3:0b:67:a4:bf:2a:75:70:78:cc:92:
35:9a:94:24:1c:bf:31:d8:8e:04:24:c8:81:68:31:
93:f4:73:d0:60:1c:79:23:25:7c:05:83:a0:d2:91:
a0:2e:93:07:e9:bf:19:6f:59:2c:a5:07:d7:60:92:
0d:1e:3c:47:f5:b4:7e:c8:e5:6b:20:a1:2f:a4:e2:
62:90:d7:a2:c7:af:ae:fa:03:a0:16:69:29:09:45:
31:11:e2:97:ea:32:a4:3b:70:bc:87:16:1a:2c:e6:
11:85:ad:50:c8:24:7f:3a:0e:78:73:85:4a:72:c3:
81:37:e3:76:69:ea:98:67:7e:6f:d8:3d:0f:91:16:
f9:71:e6:e6:57:f5:d8:e0:ae:59:7c:e0:52:2f:1c:
85:fc:cf:c2:08:78:df:08:6f:c7:fe:f8:7d:52:56:
ce:11:df:12:38:11:33:94:e9:0f:ae:e0:e8:f1:e6:
d6:aa:bd:25:5b:6d:fe:bf:22:1e:cd:52:de:0d:8b:
de:65:5e:f6:98:cf:5e:5c:a9:8f:6d:50:d6:73:6b:
26:6d:d2:f1:e8:f3:15:e0:81:cb:53:91:18:84:d5:
d3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D8:05:27:5F:5D:5F:54:1C:D0:1B:5B:AE:AE:8B:B3:AA:7D:9A:7B
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:b0:7d:7e:b6:ec:b1:60:68:98:e6:58:65:ed:a5:e1:b9:91:
6f:f6:14:8e:7d:d1:35:88:a4:ab:ca:88:60:ce:1f:f1:3f:83:
49:89:b9:58:15:e3:ef:b1:92:1b:61:a4:c0:95:3d:de:7d:98:
a3:e6:c7:c3:04:e6:6e:5d:e2:4d:9e:76:c5:b8:95:bd:b3:4e:
70:1f:c6:d5:0c:75:a6:32:be:2a:5a:d9:33:4f:1d:25:77:d8:
d4:ee:d3:5a:09:85:6d:be:f3:1e:fb:32:c0:de:2c:7c:70:e4:
a4:18:da:82:5a:c4:24:a7:41:95:23:3a:94:23:90:18:26:a3:
71:0f:d2:b2:d9:3b:b2:27:22:cd:da:d9:52:67:c5:cb:ea:28:
2c:76:1d:bb:fd:fd:c1:df:ba:5c:c3:12:56:4a:f8:24:89:f2:
ff:f0:0a:2e:5b:2c:3e:d9:3f:88:d3:7c:8f:a5:e5:b7:70:83:
4c:ac:dd:3f:f6:3d:74:98:ab:27:af:e3:19:86:bf:73:88:54:
4a:57:31:61:5f:cd:ca:35:ef:dc:3e:f5:ec:e3:15:ee:11:73:
68:1a:51:95:15:18:a0:a2:ed:33:90:32:87:ae:4d:77:37:d8:
d6:1e:d2:69:b2:cd:f4:86:84:9f:b5:35:26:72:e8:db:60:b9:
90:12:a0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 06:44:14 2026 by rpki-client