Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: q56J0YWZw8XNktNDL8UaYQx8220MYWK3TkqMgjtDBB0=
Subject key identifier: 21:D9:9E:50:A6:28:1D:91:DA:96:EB:EB:04:48:7D:6F:ED:D6:F0:6A
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 019EB845730F831400D64D2F996A8A282B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 20:00:19 +0000
Manifest this update: Thu 11 Jun 2026 20:00:19 +0000
Manifest next update: Fri 12 Jun 2026 20:00:19 +0000
Files and hashes: 1: NoeQVsGRTiyXfh1eMtf_ayztjys.roa (hash: AI/YmWAsP7YbcuYJ9yAOU2XEXLr8wONVVB+AxIjcXdo=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: tQqA0GqAhJzuzUpmbpQAMWp8WvykPBT+yTvUzFUF6VE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:73:0f:83:14:00:d6:4d:2f:99:6a:8a:28:2b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Jun 11 20:00:19 2026 GMT
Not After : Jun 12 20:00:19 2026 GMT
Subject: CN=21d99e50a6281d91da96ebeb04487d6fedd6f06a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:cb:85:c0:a8:e3:f8:c4:89:d4:87:74:2d:87:
5e:d2:97:9e:4a:06:d6:e6:b1:88:48:2e:79:4a:31:
f5:03:1a:b0:03:4a:cb:ff:0a:14:a6:ca:01:b1:59:
43:27:ea:47:dd:a9:bf:86:63:e5:35:67:da:57:5f:
c3:c6:25:31:6f:79:f2:d6:59:32:1d:93:ff:fd:06:
fa:dc:27:ff:2a:e1:23:fe:76:b2:12:fe:20:54:a9:
8e:ad:19:0f:4f:49:18:28:3f:96:5f:6d:ab:ff:86:
3f:5e:48:8e:7d:5e:20:05:b0:92:ee:4b:4d:1d:ab:
0f:5d:0f:8a:00:67:b3:65:aa:c7:ba:93:46:8e:9e:
21:a9:e3:d3:83:cc:d7:e4:ba:9f:5d:8b:b0:44:1d:
bc:fa:fb:88:03:7c:5a:b3:8f:c0:89:98:1d:5f:04:
08:6a:76:cd:5d:0a:27:16:f5:9c:3b:d8:85:e4:4a:
e9:43:85:46:c8:18:d9:d6:88:96:42:b7:e2:26:4f:
e2:6e:2a:37:16:9a:77:ef:f3:05:a9:3c:30:93:f0:
25:23:5e:99:ee:64:42:52:5e:2e:e7:c3:17:6b:0f:
2d:5d:dc:94:0d:94:2c:c6:6c:77:93:94:70:9e:3b:
91:5f:34:69:6c:b2:3a:17:c4:93:c2:c2:18:da:ea:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D9:9E:50:A6:28:1D:91:DA:96:EB:EB:04:48:7D:6F:ED:D6:F0:6A
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:fb:0a:ae:85:71:e0:2c:c7:5e:7f:f5:0a:42:5c:8c:6d:7a:
69:69:b1:7c:f1:13:95:c2:d1:19:fb:63:d6:74:84:56:a3:07:
32:44:e6:f9:a7:2a:a4:2b:9c:a7:09:f3:76:61:85:d3:bc:8b:
26:3d:2a:1e:23:bf:d0:46:2a:52:de:a5:4e:43:83:bf:70:1f:
a2:b3:dd:fa:04:97:ed:c8:41:10:8e:a5:f8:02:97:a4:c6:73:
25:33:89:8f:65:b8:74:93:92:8d:49:76:5a:4d:d9:dd:80:e1:
b2:7b:11:ed:2b:ec:36:23:44:f5:3e:ef:58:9a:6a:50:84:63:
2a:5e:4e:22:c7:ec:15:4e:53:b0:06:83:98:28:c7:37:53:ee:
3d:0f:42:2e:9d:41:2f:e8:5d:3c:8c:29:35:67:b1:5a:1d:68:
dd:52:e8:10:bd:ef:f1:9d:e8:b0:23:d6:d2:81:36:68:72:0a:
a7:96:6f:59:3a:b0:8a:70:a4:cb:e7:2f:d3:92:79:42:04:72:
82:88:a4:32:03:f8:a3:cb:af:01:df:e3:63:3d:8f:b2:f1:69:
59:b1:03:55:ec:a8:f5:4d:6f:3f:22:07:ef:38:bf:ed:93:e3:
89:e7:9d:91:ea:04:50:8e:ea:5b:b9:1e:b5:8e:b0:26:11:43:
72:50:85:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:54:30 2026 by rpki-client