Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json)
Hash identifier: G+usszoetY7+LuovC1AVJC3KfokaohT7LsFrcA3LQms=
Subject key identifier: 67:B5:9D:C2:F6:0A:25:16:9F:DB:72:6D:0C:6D:49:92:18:8D:60:A8
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 019EBFC9058B88FBCA0054E1F49C9A5C42EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
Manifest number: 1960
Signing time: Sat 13 Jun 2026 07:01:22 +0000
Manifest this update: Sat 13 Jun 2026 07:01:22 +0000
Manifest next update: Sun 14 Jun 2026 07:01:22 +0000
Files and hashes: 1: F9LtIp7aRZvTu10CPCfjgsVeCH4.roa (hash: lyI0E0/eZw0Stmmyys17aMBQvOW4Meb+VaWbd7L0/zA=)
2: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: wezWrWAPY1Unq3zq6LtAI0gf4Uv9aja1KVtr71sMx9I=)
3: UPey1Iuc4KMtyO1x8bek9due93Y.roa (hash: KVMCzWDHAl6h2diMgEjiCZzLxzK2gigmEPW2UtR5si4=)
4: VWwoUGBYya7dT91k9xew3HleyiE.roa (hash: anOodm7+F8Ug5vPU/y7WyVSFPtcBXGPmpebjW6VOHsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c9:05:8b:88:fb:ca:00:54:e1:f4:9c:9a:5c:42:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Jun 13 07:01:22 2026 GMT
Not After : Jun 14 07:01:22 2026 GMT
Subject: CN=67b59dc2f60a25169fdb726d0c6d4992188d60a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c5:8a:0d:12:af:22:19:42:0c:52:cc:33:90:
84:2d:78:63:25:2f:71:10:95:09:5e:60:e6:6a:96:
b0:e7:06:74:e1:43:96:18:ca:ef:2c:a5:19:29:62:
95:fa:e9:d2:1e:50:c8:74:96:24:29:3f:65:36:26:
6b:87:87:bf:6a:81:88:d7:1d:3e:96:df:da:48:39:
51:15:35:d9:5a:d0:4f:28:bd:ba:b6:e7:24:94:f6:
9e:64:1e:91:7c:da:6f:8b:ef:88:d7:b1:d9:d3:6f:
69:54:e3:9b:fd:bf:4c:55:11:f2:d0:3c:f9:d8:32:
2a:54:21:cb:d9:13:ac:9f:7f:58:dd:89:de:86:b7:
69:90:87:e5:09:11:1a:c5:70:bd:6c:1c:20:be:c8:
f4:6b:40:14:38:e8:a3:66:e1:b9:13:8b:75:b4:f2:
57:0b:f2:ac:11:cc:e5:a6:e7:88:7f:12:e7:05:3f:
10:94:af:ce:95:d6:ba:19:f4:9c:18:c1:50:1f:ae:
88:51:ac:17:a3:56:cc:fd:99:5f:eb:22:98:73:b5:
ea:ff:20:14:1a:0c:4a:46:81:ba:40:8a:0d:15:1a:
15:23:f6:8f:8d:e6:14:3c:e7:d6:c4:e1:8a:5b:cf:
26:9f:f7:5f:87:74:93:61:45:55:6d:db:2b:3e:f3:
28:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B5:9D:C2:F6:0A:25:16:9F:DB:72:6D:0C:6D:49:92:18:8D:60:A8
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:2e:66:00:fe:be:ec:05:cc:38:c0:40:6b:e2:3c:df:ec:ba:
0a:58:97:da:65:cf:fd:75:2d:b2:97:00:c6:25:f7:92:76:82:
73:cc:a6:bc:36:17:00:e7:c8:ba:df:b9:d1:28:e4:fb:bf:71:
33:04:0c:38:89:e5:09:93:25:c4:e7:0f:f3:a2:51:7c:47:b8:
b4:74:5e:97:95:1e:7e:0d:01:73:be:ae:62:71:20:ca:09:6c:
bd:af:cb:73:81:79:cc:e1:66:a8:70:15:19:eb:01:79:50:30:
c5:70:67:1a:19:66:51:15:e0:2a:31:2c:49:91:fd:16:93:f2:
1a:71:66:f8:ac:89:ba:5e:54:62:5d:5d:7e:e6:c4:fa:2b:6f:
0e:23:08:d7:a8:18:e4:0e:2b:11:2d:62:09:85:ae:8b:e2:d1:
86:1c:c2:15:3c:0f:95:ce:9c:02:e4:3f:fb:a1:40:e0:77:2b:
19:e4:50:e4:c7:25:19:32:4f:62:ea:02:63:cf:9f:76:00:f9:
74:95:01:ce:f0:39:e1:d4:9e:9b:95:3d:2c:41:5d:09:18:63:
e9:49:8a:b2:82:c0:4e:f5:47:d0:72:95:4c:de:21:7e:dc:77:
cf:57:4f:cc:1f:44:60:9a:b5:a6:76:3d:12:ec:fa:6a:4d:bf:
ee:1a:02:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:19:48 2026 by rpki-client