Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
File: Icc6XY7GO-1lijj1wm8ZH91035I.mft (raw, json)
Hash identifier: bn2aTIJpxi6XL7Qm5/E+aRDbPlTb6ycpmJizaeHRKGY=
Subject key identifier: 75:B0:E2:E6:C2:72:68:E2:5D:81:0E:3E:00:C8:59:4E:69:A5:BD:5F
Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Certificate serial: 019D9A3EBA3B8D0BD000BBE584A547618296
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 07:01:35 +0000
Manifest this update: Fri 17 Apr 2026 07:01:35 +0000
Manifest next update: Sat 18 Apr 2026 07:01:35 +0000
Files and hashes: 1: Fs_FP0zOdfmc7rvun5ERONpmOgw.roa (hash: TWq1U2RPZO5KpxgW/s1ezL7KUt27fk4vKRxKtkmjh/c=)
2: Icc6XY7GO-1lijj1wm8ZH91035I.crl (hash: GlkhCOJi7IepJYXhIjwmdGX+M4wliIZ6eVTUMJBi4hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:ba:3b:8d:0b:d0:00:bb:e5:84:a5:47:61:82:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Validity
Not Before: Apr 17 07:01:35 2026 GMT
Not After : Apr 18 07:01:35 2026 GMT
Subject: CN=75b0e2e6c27268e25d810e3e00c8594e69a5bd5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:44:4d:b6:78:8e:05:af:3f:0b:81:20:98:ee:
51:95:eb:5b:43:d2:cd:ca:0f:ac:45:ee:82:d5:67:
39:7a:d5:66:1a:65:d0:1a:37:1d:a5:f1:0b:4d:10:
99:30:74:d9:dc:10:71:f7:de:98:70:38:98:eb:db:
10:a8:fd:2c:4e:bf:1c:70:3f:cc:12:7c:fe:d1:eb:
2a:73:3f:5e:2f:75:94:4a:31:06:91:76:1a:5c:36:
a2:4e:c6:53:e0:20:64:2b:9d:5e:ad:9f:3d:08:e5:
c5:4a:88:44:a8:24:f2:49:a3:fd:95:d0:3b:86:9d:
d7:fd:ab:3c:3b:24:4d:c9:e7:84:81:80:ed:23:7a:
2a:cd:ad:58:e3:09:0c:31:38:e0:10:d5:0a:5a:cb:
cc:dd:df:bd:90:72:b7:a8:87:03:d5:eb:78:9c:d1:
a9:70:4a:04:c4:30:52:68:61:ac:c2:a6:30:69:82:
7e:16:b8:26:74:7e:c7:8d:3b:ba:08:64:a6:77:dc:
7c:bd:2f:46:ee:27:ad:0b:ec:56:38:ee:c7:31:f9:
dd:7e:1c:13:cf:c8:29:4f:c5:38:f9:17:f7:bd:e4:
ae:ec:e3:fa:96:c9:9c:1d:3d:da:1f:61:bc:81:c1:
39:ba:e1:c3:da:d4:09:29:16:a5:d1:c7:57:3f:f9:
98:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:B0:E2:E6:C2:72:68:E2:5D:81:0E:3E:00:C8:59:4E:69:A5:BD:5F
X509v3 Authority Key Identifier:
keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:93:fc:0b:8b:6d:e7:00:c2:32:1a:37:ce:c7:29:88:9a:50:
c7:25:01:42:f6:3d:d2:ed:28:47:9e:26:b5:c7:9b:23:86:0f:
1d:b8:05:ae:47:bf:af:30:ad:a3:6a:04:ba:a9:7a:d5:aa:fa:
d5:3b:45:32:d0:21:d8:59:9e:11:55:f5:d5:97:44:7a:a3:77:
b9:71:3c:3d:06:21:32:82:7b:1a:c2:bd:3c:ca:28:ad:a4:28:
28:3e:ba:4a:bd:65:ee:66:d5:c3:62:f9:50:46:fa:c8:75:35:
44:b8:10:14:1e:a5:ac:ea:df:bf:0d:c5:91:3f:1e:e2:c6:06:
51:2f:8f:34:cf:38:28:b0:8b:00:ed:8d:01:5c:0e:ca:a0:48:
f0:ae:10:e6:63:d9:80:bc:31:97:65:a2:5e:11:15:c5:e7:a5:
a5:2b:b6:3c:be:46:d5:ea:b1:44:0b:d7:d9:13:5c:d2:ec:a0:
f2:49:94:81:af:2c:39:40:63:de:48:2a:7d:69:16:01:9f:12:
42:2e:d6:94:e3:6d:09:aa:fe:1b:b9:c9:a9:0e:9f:5f:d0:1f:
f3:27:1b:8f:e6:23:a7:ae:85:05:12:41:ef:d3:d6:5c:e2:e5:
81:ed:60:9e:63:6b:dd:01:96:e4:4b:e4:69:57:45:ee:bc:7e:
84:4a:79:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:46:20 2026 by rpki-client