Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json)
Hash identifier: 6dhIzysz0WdWlr8u07D3NM/s/+tg5+6J0h0dzIRxX4A=
Subject key identifier: C6:C0:98:07:50:3A:C1:89:2C:55:80:75:86:46:35:AE:86:05:30:C7
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 019D9A3DE00690AADFD22ACEB8E0B97EAEEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
Manifest number: 18C8
Signing time: Fri 17 Apr 2026 07:00:39 +0000
Manifest this update: Fri 17 Apr 2026 07:00:39 +0000
Manifest next update: Sat 18 Apr 2026 07:00:39 +0000
Files and hashes: 1: F9LtIp7aRZvTu10CPCfjgsVeCH4.roa (hash: lyI0E0/eZw0Stmmyys17aMBQvOW4Meb+VaWbd7L0/zA=)
2: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: YvxoOTB/C+awZGUa3/kRzq0ZTMJ2vbxf3KZ2bNN9plM=)
3: UPey1Iuc4KMtyO1x8bek9due93Y.roa (hash: KVMCzWDHAl6h2diMgEjiCZzLxzK2gigmEPW2UtR5si4=)
4: VWwoUGBYya7dT91k9xew3HleyiE.roa (hash: anOodm7+F8Ug5vPU/y7WyVSFPtcBXGPmpebjW6VOHsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3d:e0:06:90:aa:df:d2:2a:ce:b8:e0:b9:7e:ae:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Apr 17 07:00:39 2026 GMT
Not After : Apr 18 07:00:39 2026 GMT
Subject: CN=c6c09807503ac1892c558075864635ae860530c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cb:fa:f8:3e:8a:8b:04:88:07:0c:f6:77:58:
0a:71:f2:38:f8:54:35:c3:7e:ff:7f:54:a8:62:85:
47:fa:17:5d:15:95:70:fd:cb:a0:ad:4d:5c:88:e9:
01:d7:d7:0f:cf:98:47:99:f9:9a:b0:a8:89:6b:06:
bc:59:53:c6:32:56:5e:f7:dc:71:dd:31:f7:43:51:
23:bd:f5:40:71:eb:c7:ef:81:b0:59:b1:bc:41:ae:
cc:7d:4a:d6:69:af:6e:2e:45:a5:71:aa:34:1b:0b:
ef:3b:16:d7:b7:63:07:96:ed:28:ef:af:3b:33:18:
ca:c9:2f:77:f6:93:ae:16:09:f8:b6:cf:ce:da:3b:
43:ff:fd:ed:dc:45:39:73:74:14:84:99:c7:ed:35:
3e:dc:3c:d7:d9:a8:86:b5:a7:b1:48:d1:3b:bd:2f:
0c:3c:a2:93:21:56:ad:be:8a:8e:d9:0e:0d:62:df:
64:4a:cd:52:72:5b:78:ca:45:74:bb:ea:38:a4:f1:
d4:f4:a4:e1:32:6e:8b:62:ab:45:d9:35:ad:7a:3a:
b8:16:1d:da:9b:33:03:cd:2e:fb:70:27:e6:be:d1:
9c:57:0a:ff:07:0f:c2:eb:80:98:ed:5d:9e:42:08:
44:8f:97:f2:4b:4b:70:10:a5:3b:01:43:41:9c:a1:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:C0:98:07:50:3A:C1:89:2C:55:80:75:86:46:35:AE:86:05:30:C7
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:24:2a:c9:e8:1e:5e:1f:af:80:6b:e1:15:24:57:81:09:20:
06:34:e6:52:dd:83:e4:91:24:69:f1:a0:2a:53:ea:f9:81:1d:
70:85:4d:60:2f:98:e7:69:d9:78:ce:68:07:0f:e7:f6:92:3c:
d0:4a:c2:f4:a2:61:ee:4a:33:92:a9:ae:62:56:81:a2:78:10:
48:f6:3e:d0:43:c1:25:f2:78:20:2a:42:27:bc:5b:77:a8:6f:
be:b8:b7:c1:45:2a:4b:ce:0e:09:ef:df:ca:1f:d1:71:7d:0c:
95:4f:6d:4b:03:81:0e:e9:eb:79:48:e7:ae:ca:75:be:50:b9:
13:fa:0c:7f:a3:94:51:75:dc:8d:36:7e:37:68:2d:2d:de:2d:
5e:2e:62:c2:b2:cb:69:cd:4f:c7:0f:80:dd:61:11:dc:52:19:
43:7c:ec:da:e9:66:fd:c9:2c:8e:58:05:15:a8:5b:9c:59:dc:
23:fe:db:70:9a:5a:95:00:47:d7:dc:d6:c7:1b:43:ba:70:05:
48:58:18:a5:6a:1f:e4:44:d3:ec:60:fe:d3:3f:76:d5:5e:4d:
ea:7e:1b:56:65:a0:fd:8b:21:70:e2:b9:eb:5b:c4:e7:fb:1c:
97:48:19:85:d6:b8:7e:09:d8:2d:1f:ee:25:45:bf:f9:7c:e5:
ec:d9:bd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:56:52 2026 by rpki-client