Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
File: Icc6XY7GO-1lijj1wm8ZH91035I.mft (raw, json)
Hash identifier: ZEPofl73W99xGu/1DKrU5D5gpf30F5hk6eakHCVLBow=
Subject key identifier: C6:0B:6D:13:BE:D9:D7:13:6C:96:73:2B:EA:68:86:78:56:9A:45:92
Authority key identifier: 21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
Certificate issuer: /CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Certificate serial: 019CACB4C5102A8DF38A8B6C5F6C334CFCEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 04:00:53 +0000
Manifest this update: Mon 02 Mar 2026 04:00:53 +0000
Manifest next update: Tue 03 Mar 2026 04:00:53 +0000
Files and hashes: 1: Fs_FP0zOdfmc7rvun5ERONpmOgw.roa (hash: TWq1U2RPZO5KpxgW/s1ezL7KUt27fk4vKRxKtkmjh/c=)
2: Icc6XY7GO-1lijj1wm8ZH91035I.crl (hash: EwWYwhD2XbYSHUV6Fec0qbzEfS4J1GYj7+1nA098XEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:c5:10:2a:8d:f3:8a:8b:6c:5f:6c:33:4c:fc:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21c73a5d8ec63bed658a38f5c26f191fdd74df92
Validity
Not Before: Mar 2 04:00:53 2026 GMT
Not After : Mar 3 04:00:53 2026 GMT
Subject: CN=c60b6d13bed9d7136c96732bea688678569a4592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e1:4c:2d:28:6e:82:64:93:cd:18:79:c8:b3:
96:fe:63:c9:60:a7:13:54:16:50:ee:41:6f:fb:ba:
2f:8f:9d:b1:05:ef:c8:ad:f3:68:b8:92:77:96:38:
85:41:6d:3e:ae:c1:bf:7e:d6:1c:fd:5c:0f:76:ad:
83:31:3b:37:6d:fa:da:d4:a4:22:c5:e6:4b:ea:70:
ac:e8:b6:b4:8b:8d:d9:0f:ae:3e:be:3a:76:79:89:
1c:c5:2e:ec:86:65:20:f3:80:d2:f3:b6:8e:0d:bd:
c2:36:3b:b1:d5:7d:70:4a:a5:f1:b9:2b:63:15:9c:
6a:ed:5b:42:63:7f:18:74:4b:46:76:02:f2:42:eb:
5d:f0:be:63:48:4d:8d:d2:d0:33:36:9c:8f:d7:bd:
d4:55:61:b3:29:e9:4b:60:e2:64:e8:3a:5d:ef:36:
cb:20:1f:e6:36:c8:60:98:0d:30:a2:ed:db:94:c8:
55:cd:3c:2f:64:58:cc:78:82:4b:f7:e8:df:3b:ab:
4a:7e:6e:de:bb:d5:a2:23:d8:52:8f:34:90:e8:f2:
7a:5e:6c:9b:77:12:09:23:b5:03:22:09:11:5f:b5:
b1:b0:18:76:a8:1e:0a:53:11:ae:1e:97:e0:87:59:
93:f4:fb:6c:bb:e9:7b:e3:ae:dc:af:b6:d4:43:18:
6c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0B:6D:13:BE:D9:D7:13:6C:96:73:2B:EA:68:86:78:56:9A:45:92
X509v3 Authority Key Identifier:
keyid:21:C7:3A:5D:8E:C6:3B:ED:65:8A:38:F5:C2:6F:19:1F:DD:74:DF:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icc6XY7GO-1lijj1wm8ZH91035I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f850ec-9954-485c-aa0b-fd120c31da72/1/Icc6XY7GO-1lijj1wm8ZH91035I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:14:e8:bc:18:7d:d6:ee:5e:ae:90:3b:08:9b:8a:dc:2f:a5:
94:f9:e2:62:a4:cf:64:d7:16:e0:cf:5c:4b:39:9c:20:2b:e9:
33:58:4d:d0:1f:3f:a8:52:4c:5b:cd:b1:92:6e:63:1f:0d:69:
aa:e4:2e:82:d7:7e:74:27:58:43:a0:8e:a5:ca:b5:f0:b1:ab:
d5:c7:c6:85:42:30:47:7d:93:94:b4:e4:75:ea:62:8b:86:dc:
c3:ce:86:c3:a7:8f:6f:cb:f4:75:e4:a8:34:6a:2c:33:f3:ea:
7e:a8:59:f5:4c:0e:b9:b2:5c:3b:15:ae:a1:83:4f:91:77:46:
88:fb:85:6c:06:3d:d2:a3:2e:b9:fb:cf:42:ea:07:8b:69:5f:
56:81:8a:a0:9d:e3:33:4f:24:cd:87:d8:39:e0:3f:63:96:09:
1f:9c:48:2e:9a:86:2b:3a:e8:fa:d2:a4:f1:06:c4:6d:74:e0:
a3:45:a8:6a:65:51:95:72:d8:83:65:6e:38:03:9e:58:f0:83:
f8:b7:0c:7b:5e:cc:df:1d:49:8f:d5:8c:e3:ac:34:84:32:7f:
b4:cf:f6:70:ae:df:5a:95:67:0d:e1:e4:58:36:53:7c:cc:03:
c6:85:ac:df:3f:45:e7:cb:7c:f9:b1:6f:b3:b9:4b:23:8d:02:
fe:bf:22:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:51:57 2026 by rpki-client