Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: DXpOnihx7C6ykbvhXcwBFu5n3P8nvURQPBtwFo0iuIo=
Subject key identifier: 03:3A:04:7A:B6:1B:C1:AF:9A:37:5F:ED:4C:05:52:92:84:54:B5:F8
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 019EC112379A639A78F3B49774C187F6DDDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 0502
Signing time: Sat 13 Jun 2026 13:00:56 +0000
Manifest this update: Sat 13 Jun 2026 13:00:56 +0000
Manifest next update: Sun 14 Jun 2026 13:00:56 +0000
Files and hashes: 1: CJHjJvBxO_A1o29RU77bYDobb1Y.asa (hash: OiQ96AcIrfdWv9rYq7YRunMZUUkm1k1hxiflexmUSCE=)
2: ZsGtqMxH4nL8S3-yctBXEQDc62g.roa (hash: +ZsU9QUE73+Gn9nFEGhVwL2RW/GlaE2Pf3U5DjyGOtE=)
3: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: Zv8m4IdXsuwxdkz+n0GXpjptpFkAK3CT3MJLe0C7UhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:12:37:9a:63:9a:78:f3:b4:97:74:c1:87:f6:dd:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Jun 13 13:00:56 2026 GMT
Not After : Jun 14 13:00:56 2026 GMT
Subject: CN=033a047ab61bc1af9a375fed4c0552928454b5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e9:da:f7:3a:21:21:19:f0:b8:fc:79:6e:6f:
bb:c9:1e:de:e9:0c:a0:5a:d0:2d:85:bd:51:f5:c3:
9d:70:cd:5c:91:ff:31:b0:7c:54:38:3a:59:38:01:
ef:ef:d7:58:e5:4c:e4:23:77:82:d6:1c:00:53:d2:
c5:e7:15:bb:a1:29:55:f0:bd:6a:cc:3b:6d:42:79:
a0:50:0c:3b:61:65:28:a5:8e:88:73:ca:5a:f5:65:
dd:67:75:73:08:74:5e:83:9e:42:94:03:16:da:d9:
1d:f3:8b:ae:8c:29:eb:a1:7b:5a:f7:26:8a:d0:61:
e1:35:ab:0a:bd:af:7f:56:74:3a:b5:ec:50:78:a4:
c8:68:a0:3f:30:12:c8:72:b8:04:b1:7c:7a:c6:a7:
7b:59:2e:54:95:be:f3:f0:76:60:8d:71:4d:68:6b:
3a:ba:f4:0f:e1:31:56:95:f6:31:cc:f8:11:be:e0:
00:01:34:0e:06:98:c7:67:83:a9:c2:95:64:a6:d9:
ef:3c:e5:32:13:29:73:19:0c:ca:53:55:73:65:33:
64:0a:40:06:d3:a2:02:9d:5c:9e:d3:9a:54:87:01:
ae:37:8d:1c:dd:48:5b:ae:3d:cb:9d:62:84:08:2c:
d9:de:f4:cc:7c:bb:dc:9e:df:d8:29:87:ae:bf:e7:
0c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3A:04:7A:B6:1B:C1:AF:9A:37:5F:ED:4C:05:52:92:84:54:B5:F8
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:30:ae:06:74:67:70:10:da:9e:e6:39:d5:29:14:c5:20:b9:
be:ab:dc:33:12:a1:93:1e:e8:27:87:87:62:85:70:60:f0:6b:
24:e2:a7:79:d2:05:25:b1:72:da:60:bf:47:18:f0:8b:28:26:
72:2e:0d:1d:15:48:c1:cd:f4:f4:82:e2:0c:dc:78:34:e8:51:
02:29:ed:12:97:54:02:89:c1:49:b0:d0:9e:9a:f4:c4:c3:48:
d8:8f:f3:6a:90:10:5b:28:70:1f:c5:c8:80:c5:d4:e8:50:3d:
e7:91:61:68:2b:18:26:a6:f1:70:b8:48:8f:77:37:b0:90:12:
26:bc:51:f6:e3:4a:60:7d:e1:a0:29:8d:86:d0:63:84:c8:26:
52:d5:2c:d1:7d:aa:f5:c4:3f:72:79:95:70:94:3a:77:59:99:
04:e2:1a:1e:c3:b6:03:46:ed:3c:79:b9:d7:dc:18:ab:e6:c8:
e7:b5:52:a8:8a:f5:04:bd:b2:ee:75:9a:24:42:a1:4f:20:72:
6b:eb:79:a8:62:0b:d6:4e:ab:f8:af:7e:f2:33:67:40:c7:23:
b7:8c:da:a7:ed:f8:39:16:50:f8:59:9b:c3:56:d3:32:ec:1b:
aa:f0:cd:bc:44:c6:4d:b7:86:e1:80:58:04:d3:f4:d6:68:59:
85:65:a8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:43:19 2026 by rpki-client