Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
File: Icc6XY7GO-1lijj1wm8ZH91035I.mft (raw, json)
Hash identifier: 8gibsSy5DgHWCYdp3j/BBhTgLBXF5RamOrWmzkZF9Fw=
Subject key identifier: A0:BB:AC:BC:ED:15:7E:1F:81:87:E8:6F:D3:75:89:48:29:83:0F:7A
Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Certificate serial: 019EC1B73290851BB35D3E89C3F26F53A8E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 16:01:09 +0000
Manifest this update: Sat 13 Jun 2026 16:01:09 +0000
Manifest next update: Sun 14 Jun 2026 16:01:09 +0000
Files and hashes: 1: Fs_FP0zOdfmc7rvun5ERONpmOgw.roa (hash: TWq1U2RPZO5KpxgW/s1ezL7KUt27fk4vKRxKtkmjh/c=)
2: Icc6XY7GO-1lijj1wm8ZH91035I.crl (hash: wONkJ3zstU+OC9xOhzEsK96CkJowIoNaA7DzsBYWvEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:32:90:85:1b:b3:5d:3e:89:c3:f2:6f:53:a8:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Validity
Not Before: Jun 13 16:01:09 2026 GMT
Not After : Jun 14 16:01:09 2026 GMT
Subject: CN=a0bbacbced157e1f8187e86fd375894829830f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:24:33:bb:3e:a0:06:10:8a:a8:73:1d:77:
10:0d:00:65:d3:28:d2:cd:96:51:5b:51:09:3a:31:
6a:81:89:47:ec:24:2b:79:0d:01:52:60:e5:8d:15:
23:b5:f8:ad:55:8b:75:c8:c7:23:1d:22:e4:cd:19:
75:89:9f:09:5e:04:59:33:a7:f2:6f:89:54:dc:6d:
7c:6e:73:3c:7d:76:fa:95:ab:eb:15:b4:ab:ff:2e:
2c:2f:63:54:f6:47:7a:f9:89:42:21:19:73:5c:27:
1c:0a:73:03:eb:34:90:d2:d8:34:b5:af:21:07:4d:
6a:36:61:42:48:2f:ee:ba:2d:fc:f1:fe:28:81:f0:
e7:f0:4d:72:01:40:b7:33:e3:1f:f0:30:08:bc:69:
26:39:6f:40:d7:87:89:2f:27:2c:ff:83:2f:c8:92:
2f:1e:75:d0:bd:b4:93:09:9f:cb:bf:ff:df:77:60:
2d:32:59:f8:de:7c:1f:9f:72:23:f8:83:3a:4c:72:
1d:fd:dc:80:28:70:1d:13:b9:0d:2b:b5:b8:37:4d:
9f:41:ad:88:05:fc:ec:45:06:46:6c:0b:f3:97:da:
62:c4:ab:4d:d5:e8:ea:a4:76:00:8f:96:6f:85:ec:
b4:7d:ff:b5:d7:bd:f2:de:c4:9a:82:65:dc:6d:21:
64:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BB:AC:BC:ED:15:7E:1F:81:87:E8:6F:D3:75:89:48:29:83:0F:7A
X509v3 Authority Key Identifier:
keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:b5:f7:1e:05:ab:89:cf:ba:f1:07:fa:18:b2:b8:d0:fc:fd:
3d:0a:68:f9:9a:67:e5:0d:2b:58:6c:d6:21:46:ee:59:15:3b:
d6:5f:6b:be:67:52:df:df:8f:e6:3e:24:4c:a8:0c:8c:56:f2:
5f:80:91:79:65:6a:04:35:ad:d0:22:12:01:10:c1:14:55:b1:
d7:14:43:be:4e:d1:82:54:28:8b:a0:29:76:c7:b7:37:bb:ba:
a5:85:d0:53:0c:88:07:a1:7a:f2:2f:dc:7e:06:b9:0b:09:5c:
c0:43:e3:4f:6d:93:d5:9f:6b:36:e5:c3:e0:31:49:ef:20:be:
f4:b3:9f:20:92:ed:a6:5e:f0:67:06:40:17:81:ba:93:d0:91:
99:1e:e0:18:68:1b:d1:d0:15:ea:10:8b:a5:2e:13:a7:21:63:
7c:0c:9a:66:68:4a:78:ab:73:7c:7b:bf:c4:04:8a:72:f3:65:
d5:b5:6a:90:55:2e:02:31:c2:51:e8:32:dd:51:2a:ca:73:f0:
9b:0f:b7:d3:de:5d:94:8f:f3:d8:3e:db:7e:36:31:78:d2:c1:
c9:53:de:d4:6e:09:bb:5c:05:16:6b:91:f0:d1:44:01:c7:2b:
bd:2d:5c:50:fd:6e:bb:ae:f2:10:63:ce:a4:77:b1:96:31:d4:
44:e1:a8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:06:26 2026 by rpki-client