Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: 9Is7LiciMMdpWF2iVtUAFf/nsYUdyIgGahTVC5l2T0U=
Subject key identifier: 10:F2:42:AA:60:F1:4B:B3:1E:80:B0:8E:62:31:DC:59:C2:4B:B5:C0
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 019EC1B6E375C5A7A9A2337392040E41B9B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 16:00:48 +0000
Manifest this update: Sat 13 Jun 2026 16:00:48 +0000
Manifest next update: Sun 14 Jun 2026 16:00:48 +0000
Files and hashes: 1: FzaSctWTm436xTaHu7cLIoR3zuI.roa (hash: ZWQNCmBRzSOXikzbY8uxPHONXN2ergkv72vrvK6pGEg=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: yCum454IhhphOg0k2RddljZF34GTzpHk2bvF3ZPgwoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:e3:75:c5:a7:a9:a2:33:73:92:04:0e:41:b9:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Jun 13 16:00:48 2026 GMT
Not After : Jun 14 16:00:48 2026 GMT
Subject: CN=10f242aa60f14bb31e80b08e6231dc59c24bb5c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:cb:c4:4b:f0:60:ce:2b:fb:be:e2:30:ac:0d:
8c:af:f2:9c:b2:b4:c9:7c:3a:af:88:f5:12:7c:e8:
36:73:4e:35:39:81:3e:a7:cc:68:46:3f:31:40:cd:
40:72:9b:08:c7:c4:f2:0f:c6:1d:51:b9:bf:01:52:
83:9e:f1:6b:7a:44:e6:37:a1:21:08:7c:43:43:69:
73:e0:cb:42:d5:27:ee:48:91:e2:ac:04:38:51:bb:
49:50:c3:77:e3:f7:ef:13:08:01:27:32:ec:23:da:
0b:80:a6:4e:d3:78:8c:9f:38:31:8f:dc:34:45:1b:
60:14:27:b6:65:41:50:43:4c:2f:a4:da:4c:ff:ab:
db:d5:af:ab:83:08:02:bf:93:b2:9d:13:ae:d5:60:
21:04:3c:ae:a5:64:d0:64:aa:4a:c7:95:25:fb:1d:
6c:26:a3:12:54:c1:bc:b9:80:1e:1f:0b:0d:50:35:
29:69:88:3c:59:c9:96:63:ce:13:27:9f:d0:58:a7:
b0:a2:a6:23:81:a3:5f:79:da:d4:c8:ff:e5:64:95:
0a:51:22:1b:82:bb:d8:73:49:51:a6:68:e2:33:c0:
07:5b:f2:37:98:a5:47:e5:21:b1:92:5c:24:9d:87:
a3:c3:1b:39:d7:90:16:0b:4a:64:da:8e:5b:62:f6:
52:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F2:42:AA:60:F1:4B:B3:1E:80:B0:8E:62:31:DC:59:C2:4B:B5:C0
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:65:ad:53:ae:0b:f7:cd:b8:33:59:74:23:e4:7c:6b:c6:51:
72:0a:46:bd:37:40:f2:c3:5e:f2:b8:a4:81:18:7e:4e:6c:5b:
81:c6:01:81:d7:eb:c9:ea:e8:21:61:64:08:e4:59:3a:94:14:
0d:e6:60:51:36:ec:03:a2:3f:6a:f8:01:7c:ba:15:c9:c3:67:
9d:ca:e0:84:2f:8a:e6:72:a9:f3:08:b8:3c:d2:b5:4d:21:67:
d3:fd:f3:ca:f2:b7:0e:16:7b:9c:fc:54:31:31:f2:89:f8:ae:
f9:83:73:c3:90:6f:80:cc:43:81:1c:7a:c4:3c:f5:a4:92:f8:
0b:3f:47:29:a4:4a:d4:0c:d7:27:e5:f1:e5:ec:82:e5:50:dc:
d7:6a:c8:ae:d9:4f:5c:dd:b5:d5:8b:a9:43:ab:15:bb:98:27:
e4:51:74:70:9f:45:77:95:5d:c2:66:72:3f:45:4d:02:e2:a5:
fb:c9:e4:15:70:6b:ac:29:19:70:6a:23:da:52:52:94:52:c7:
39:83:f7:d2:4c:58:9f:ff:49:b7:9e:4a:25:f9:90:f2:ca:6f:
ee:7b:88:7e:51:b8:19:46:49:1b:9a:09:9f:70:c6:b3:92:96:
3d:f2:16:e0:45:ef:1a:f2:71:e1:a6:6d:9f:e1:b2:0d:0a:11:
93:d0:e1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:58:12 2026 by rpki-client