Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: RknnBjU8oEbgIu8nyUcDvp0+ag6AQDr29vjWNWxjBqg=
Subject key identifier: 9F:02:82:4C:BA:FE:4E:71:87:6B:58:5D:89:47:23:8E:0B:E5:1F:50
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019EE668CFEF4A13C24C569227EB71756D01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0A79
Signing time: Sat 20 Jun 2026 19:01:29 +0000
Manifest this update: Sat 20 Jun 2026 19:01:29 +0000
Manifest next update: Sun 21 Jun 2026 19:01:29 +0000
Files and hashes: 1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: RWDkSv/hrkeGCc/UZrRyaYX8zWDkydV2NGEGybk3IV8=)
2: rTrNf2BtsL1vlw_R__r7UKcCZJk.roa (hash: lQAxfhbBIAhm99xgTizcCxmFSvD0y0yK3pththJkeEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 19:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e6:68:cf:ef:4a:13:c2:4c:56:92:27:eb:71:75:6d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 20 19:01:29 2026 GMT
Not After : Jun 21 19:01:29 2026 GMT
Subject: CN=9f02824cbafe4e71876b585d8947238e0be51f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c7:2d:7b:2d:20:c5:28:64:4a:85:3c:70:47:
97:0a:26:cf:da:02:f3:55:0e:6d:a5:3c:96:81:68:
6b:36:de:27:d0:54:aa:36:d2:80:20:de:48:f7:92:
f8:5a:6e:dc:aa:1b:cf:f9:34:40:77:18:00:91:26:
42:be:f0:ea:a3:c7:4c:7c:c4:4c:8a:f3:d5:66:0b:
4d:fb:d1:97:99:8f:8d:57:e0:04:92:83:4b:2c:a2:
7d:a1:72:55:c0:fa:4f:32:7a:24:44:72:c0:c3:7a:
b1:dd:31:9d:65:6f:fd:20:4f:15:bb:9c:e3:1f:0d:
19:3e:0d:41:2a:cf:e6:5c:5f:a8:d9:6d:11:e2:24:
e4:4b:82:4a:df:e5:a5:66:4a:fa:19:92:73:5f:5b:
1a:8e:90:e9:cf:24:9f:58:58:15:50:54:d1:55:ff:
bc:38:f2:4f:37:db:06:eb:fe:dc:18:73:0a:f7:4f:
c9:4d:82:53:b3:a6:d9:d7:8a:79:7e:6e:81:8a:ea:
31:1e:8c:21:2b:8f:12:80:d4:2b:b3:5b:0f:66:45:
ca:d9:6e:bb:c3:7c:dc:f3:6f:cb:a6:f2:53:c0:63:
e3:e4:5b:19:b2:1c:f8:9e:14:93:70:b8:5f:24:37:
38:82:81:4e:88:f5:6f:4d:65:8d:b5:c1:31:25:80:
95:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:02:82:4C:BA:FE:4E:71:87:6B:58:5D:89:47:23:8E:0B:E5:1F:50
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:85:70:bd:93:96:d9:39:6b:ca:1a:a0:45:dd:f3:98:22:1f:
37:af:4a:77:e9:31:a8:f1:ab:f3:65:a9:f5:1f:ef:6e:43:90:
4f:ec:92:4c:65:14:65:78:d9:81:37:07:8b:9c:49:b1:48:23:
98:e1:bb:8f:7a:e9:7d:db:28:0d:7c:90:97:5b:20:3a:7e:02:
07:18:ff:56:ca:bd:ce:ea:eb:5e:85:cb:1b:e6:de:6e:8c:38:
8e:6f:8c:2d:d6:8c:ef:bf:0d:cf:cb:a7:52:0a:3e:63:36:36:
67:14:35:f5:cf:c2:6c:fc:9a:6c:9e:05:3b:37:3d:39:ce:4d:
72:70:aa:32:92:0b:3f:e7:a9:c4:ee:9c:7f:cf:2b:ad:54:66:
ae:5e:1c:be:35:87:d4:b1:e7:da:60:35:82:a8:7e:67:74:57:
f1:c2:dd:0b:53:8d:2d:af:b6:a4:bc:1a:b6:bf:92:1e:98:ca:
89:2e:c5:4b:ee:09:f3:86:9c:9d:fa:ba:a9:c2:54:e8:2b:fd:
1b:a1:53:0c:91:e2:48:d9:92:a9:41:c5:4d:8a:3c:c6:4e:4a:
b1:e1:64:b1:1f:1c:57:74:a1:0c:8f:d8:ff:9f:5c:7b:40:db:
63:de:dd:4b:74:99:b5:07:a8:f6:98:61:3a:6b:48:b6:95:4f:
ef:06:ad:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 05:32:29 2026 by rpki-client