Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: FeGcztrK7dSq44pM3jr+cTS9HV8A2DKusr6etuhPj9s=
Subject key identifier: 65:48:B5:D5:46:BB:9C:4E:6D:59:4F:74:27:44:A4:20:A7:25:88:58
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019EC11226871E034271002BD82B42F0A3CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0CBA
Signing time: Sat 13 Jun 2026 13:00:52 +0000
Manifest this update: Sat 13 Jun 2026 13:00:52 +0000
Manifest next update: Sun 14 Jun 2026 13:00:52 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: H8JapJeZEkVBNW3XlI9Ga2AIRJzhPDBtQfAp3x/UoUM=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: mi7KJXHo-_cgynjrOEYKa7kVD8I.roa (hash: YGaCcIrn+IZQb5Rq3PZQYSYoXxlLsMVa6xxEh3lbzgI=)
7: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
8: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:26:87:1e:03:42:71:00:2b:d8:2b:42:f0:a3:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Jun 13 13:00:52 2026 GMT
Not After : Jun 14 13:00:52 2026 GMT
Subject: CN=6548b5d546bb9c4e6d594f742744a420a7258858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e8:b6:8a:ec:3f:1e:d3:25:0e:fd:c0:8d:2a:
53:91:87:47:22:ce:2a:bd:e1:d2:99:02:ec:14:33:
4d:b7:b1:e4:a8:d1:85:1a:bd:20:63:fd:62:c0:ae:
0b:23:e5:ac:a4:54:39:bc:cf:20:e9:a3:f8:7d:e7:
ea:3e:96:e7:d9:bb:c6:32:10:ba:c5:b6:b0:3c:58:
fe:63:d1:5a:49:79:60:b7:80:4b:68:63:f0:d5:2d:
b8:e8:f8:98:2a:92:f4:93:ce:b1:a9:f8:dd:23:1f:
c9:e6:53:1d:f9:e4:14:e4:a5:8d:99:cc:f3:7e:b9:
d8:df:ab:0f:d0:a9:e6:0f:4b:1a:e3:4c:d9:79:c1:
21:57:12:7e:ad:e6:51:f0:33:f8:90:8f:ba:ae:f2:
c6:13:0c:f1:11:41:58:26:8f:72:85:75:f3:73:99:
4a:c8:55:81:85:de:79:7f:f2:b6:c5:6c:5e:f2:ea:
f5:f8:e5:b5:f1:a9:86:4c:89:d5:9e:d0:ac:1d:97:
ff:13:08:60:9d:94:86:91:33:c3:87:6b:69:02:53:
e8:14:05:f2:17:de:11:f5:5e:22:ae:44:0d:a7:dd:
af:f5:08:60:c8:62:9e:59:d3:9d:54:2f:29:ea:33:
2b:99:5a:24:c2:12:61:0d:0f:ce:d9:61:8c:0e:7f:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:48:B5:D5:46:BB:9C:4E:6D:59:4F:74:27:44:A4:20:A7:25:88:58
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:0b:b0:36:cb:c0:5d:86:77:c1:23:ea:3f:d3:72:46:be:b2:
15:35:76:bb:b9:3c:95:bf:cd:2a:d3:ea:36:8c:1d:69:3b:04:
e8:50:47:e0:c1:b8:fe:09:6d:94:58:9a:78:21:52:88:a8:56:
5d:f2:b3:3b:f6:bc:5f:07:a1:36:34:50:bb:0d:3d:75:c2:34:
74:68:5e:fb:7c:ba:8b:16:c5:32:de:00:b8:2c:3e:e9:b3:5f:
fe:38:48:75:5d:f4:80:e7:c3:ab:de:a4:00:4d:35:01:b7:d2:
09:58:85:c7:2b:73:f3:3c:16:ff:a1:b6:ad:61:93:b6:ab:fd:
46:1f:03:1c:9c:c9:2f:af:75:da:8c:10:5c:ab:87:9a:8b:bb:
c5:40:44:dc:3d:fb:6b:5b:88:39:77:50:de:d5:44:da:48:ca:
99:7f:26:3d:3f:d1:71:3c:3b:6c:ed:47:6b:96:c5:5f:18:80:
09:1b:5a:69:14:e3:15:39:bb:32:a3:ae:bd:a8:f1:6b:e5:3e:
dd:40:20:7c:80:3e:2a:6d:da:ae:47:59:73:3a:ef:e7:4f:91:
cc:3d:f5:c7:c3:d7:ec:d0:a3:49:2b:05:26:4e:62:68:b5:c1:
f7:df:0e:77:5e:76:7a:e9:da:fb:15:98:58:c3:5c:34:80:9b:
91:92:22:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:57:48 2026 by rpki-client