Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: DbkgcciJV2inGgF6P7mH4Ajj6xhElZ5Frwuq6i6p7gk=
Subject key identifier: ED:74:E5:3D:17:10:69:3E:98:D6:7C:E2:F8:C7:E3:8E:5E:82:1E:28
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019EB80ED71F163F5156F14CC74BD9408A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 1138
Signing time: Thu 11 Jun 2026 19:00:40 +0000
Manifest this update: Thu 11 Jun 2026 19:00:40 +0000
Manifest next update: Fri 12 Jun 2026 19:00:40 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: WGBqkh8Lkg4NpdIQQkIJ7Pzhbq3oQ4yva02w3VoXF2w=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:d7:1f:16:3f:51:56:f1:4c:c7:4b:d9:40:8a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Jun 11 19:00:40 2026 GMT
Not After : Jun 12 19:00:40 2026 GMT
Subject: CN=ed74e53d1710693e98d67ce2f8c7e38e5e821e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:49:fe:4e:1a:30:8d:21:28:26:46:a3:32:49:
6a:35:70:30:b6:e6:98:40:d3:a4:b5:1a:38:71:9e:
cb:a6:46:db:65:96:3b:c9:fb:f3:95:a1:27:62:e1:
be:43:34:0c:8c:c1:b3:e7:5f:c3:a0:81:cf:48:97:
d8:ed:d2:1b:80:bd:9e:c5:9a:f4:a2:7d:c0:af:f0:
e6:38:2a:99:3a:41:76:39:bd:71:40:1c:be:06:df:
c4:db:70:92:b6:21:ea:ee:60:a6:a5:2e:6d:ed:34:
c0:08:73:ca:bc:28:91:d4:bf:c1:7b:ce:e8:e6:6b:
98:88:ac:26:2b:c6:1d:4d:b6:5d:49:ca:de:9a:23:
88:cf:b0:b0:24:b8:96:bc:b0:5b:af:e8:52:3a:7f:
15:7d:c0:ea:f6:59:b6:22:fb:d2:7c:73:4d:ca:a9:
87:43:51:8b:09:85:61:de:45:cb:ea:11:2a:c0:e4:
b1:20:fb:01:7f:29:e7:a9:8c:c6:ce:87:06:ce:0d:
40:24:6f:92:7b:7d:99:9e:ca:7a:fd:b8:cf:1e:7f:
d0:60:c2:09:ca:dd:17:78:96:a0:63:d7:dc:a5:b4:
9f:d1:64:3e:37:18:60:13:be:a4:43:fe:4e:70:2b:
3f:34:24:71:c2:d4:4b:68:5c:1a:46:ac:91:ee:01:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:74:E5:3D:17:10:69:3E:98:D6:7C:E2:F8:C7:E3:8E:5E:82:1E:28
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:9c:20:f8:32:6c:86:98:75:c2:94:e2:61:e2:65:84:b9:48:
a9:ff:d0:47:07:1b:16:28:b2:92:15:4d:a0:ab:6f:94:e2:93:
85:e5:59:2d:aa:24:b1:36:04:56:ad:71:5a:fc:b4:a0:9f:70:
bb:c4:b1:d2:91:33:f4:fc:64:5f:a1:44:b3:cf:1f:bd:ab:e9:
41:7d:1c:1c:85:de:bb:24:bf:32:a8:4e:01:5d:8c:d5:48:c8:
e5:b8:7b:f5:53:3e:ed:c5:43:a9:b6:67:51:fb:67:f6:d5:f7:
15:f5:00:4a:f1:27:33:90:57:df:87:7b:f5:9b:ea:fd:32:96:
f0:ab:7e:f2:d0:08:6d:e4:b8:84:c3:28:d7:17:45:6d:16:09:
ae:cc:b8:19:79:25:aa:a8:7e:7f:94:e4:95:9c:6e:2c:f5:6c:
99:63:96:71:c4:0a:65:31:55:df:45:9b:31:fd:ef:c9:e2:6c:
84:a1:df:68:d1:a2:86:bb:4e:ac:77:73:ed:41:a0:ac:6a:5c:
15:df:74:de:81:43:86:86:9f:d4:fc:1a:73:5d:e8:36:48:55:
3a:1f:f8:d5:bf:fd:ed:8a:d6:60:49:d6:85:b7:a3:c2:7e:c5:
59:a6:71:a5:d8:1e:ff:ef:22:82:96:b7:3a:af:9f:d1:b4:8f:
5b:13:76:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:41:25 2026 by rpki-client