Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: Wo6sxxSVW8yM3z2EMfvmyjk+QubM5LVxoaEn2YjSG+w=
Subject key identifier: D6:DE:AA:42:D0:65:51:1E:EA:FA:67:CA:D8:2A:74:E4:D1:B4:DD:4B
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019EBF23BE76B4F41DFECC4BF4C12E5C0CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0CB9
Signing time: Sat 13 Jun 2026 04:00:51 +0000
Manifest this update: Sat 13 Jun 2026 04:00:51 +0000
Manifest next update: Sun 14 Jun 2026 04:00:51 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: VEkV/aRiC/zWKaacHuv6Ev0chOzEaMRvPd2HP2hlM2Y=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: mi7KJXHo-_cgynjrOEYKa7kVD8I.roa (hash: YGaCcIrn+IZQb5Rq3PZQYSYoXxlLsMVa6xxEh3lbzgI=)
7: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
8: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:be:76:b4:f4:1d:fe:cc:4b:f4:c1:2e:5c:0c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Jun 13 04:00:51 2026 GMT
Not After : Jun 14 04:00:51 2026 GMT
Subject: CN=d6deaa42d065511eeafa67cad82a74e4d1b4dd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9c:9b:6b:f7:76:30:6f:1c:4d:af:66:93:8a:
71:22:5f:8b:18:e8:11:d2:87:51:95:3d:7b:3f:9d:
1d:54:41:80:bd:2f:da:8b:4d:e5:0f:93:2e:81:12:
20:33:0d:49:95:51:9b:e4:ac:4a:4d:ff:82:df:49:
98:43:7e:6b:4f:d3:40:43:63:10:63:95:b1:f7:12:
38:08:4c:75:12:f7:e0:31:0e:b2:6e:6e:d5:ee:18:
1d:4d:ab:cd:27:69:8a:55:da:cb:6c:eb:66:e9:05:
7c:8d:23:f8:27:45:9e:41:18:2f:83:5d:3a:93:46:
58:de:8d:38:2c:b5:7e:94:27:fc:12:43:80:75:85:
ea:b0:d6:06:6b:03:3f:01:9c:f0:1c:d6:91:3d:2d:
21:5c:ec:65:ee:69:3f:4e:0c:99:5d:e5:b3:8a:1f:
7f:18:7f:ec:de:69:cf:59:7f:6a:88:ee:80:31:08:
d5:21:a8:b2:d5:19:c3:cb:50:f3:8e:44:c5:b4:65:
89:40:3a:91:74:1d:d1:c5:7d:d8:c1:38:bb:38:f2:
d9:28:d3:5f:51:6f:fa:a6:64:c4:a6:a2:7d:f9:39:
95:61:77:c3:bd:0d:a6:92:29:e4:6e:1d:20:c2:7f:
f0:3f:51:68:cd:3f:7a:6a:bf:f7:21:9e:8b:62:69:
23:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:DE:AA:42:D0:65:51:1E:EA:FA:67:CA:D8:2A:74:E4:D1:B4:DD:4B
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:a4:90:3c:ca:1f:36:5c:e6:06:57:99:60:b9:10:ed:97:28:
b5:81:84:0a:7d:64:09:15:05:12:e8:d3:0b:30:0b:77:4e:b0:
a1:8a:c4:10:27:fa:5d:5c:83:df:d3:b2:2d:9e:75:e7:ee:81:
fd:38:fb:ad:71:b6:68:97:53:c3:bf:40:bb:fc:c7:68:91:1f:
ed:93:79:5d:ee:41:13:fe:28:ec:81:4f:f5:45:cb:0a:c9:9c:
33:2a:2c:3b:06:f6:b6:44:e0:4e:c6:c7:b0:6c:d8:ef:00:85:
60:0e:65:86:49:b9:e1:46:e8:c4:0a:9a:f8:55:af:cc:c5:d7:
d6:00:c9:80:ab:2c:dd:6f:13:10:c6:c8:e7:da:3d:cf:1a:57:
69:d2:e2:85:98:10:61:a9:1f:81:f0:0e:45:f1:f1:08:ab:a0:
96:cc:df:43:c4:4c:c5:d6:da:c2:8e:74:63:f4:3c:db:be:5c:
0a:ab:e9:bb:59:d6:27:4d:2f:fc:69:9d:17:b3:a8:03:a6:38:
d1:51:b6:d0:ea:e4:5e:26:67:75:4d:3c:3c:fe:f3:c9:6f:8e:
c4:26:af:f2:99:48:2b:06:82:08:39:cb:04:be:06:fd:4e:86:
14:08:32:2a:82:f9:ce:bc:9d:74:62:1d:66:00:f6:1d:6b:fc:
16:9b:3b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:04:40 2026 by rpki-client