Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
File: iWsznbz4QR1YQAjPAptHyIqzedU.mft (raw, json)
Hash identifier: ADDWS0nLWCacY2eBjUxxMOVGv0pbnOrd0Vq5r8wOtbs=
Subject key identifier: F9:9B:5E:3D:5E:BB:1A:47:6E:83:BB:B1:5B:CD:38:76:C2:EF:86:56
Authority key identifier: 89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
Certificate issuer: /CN=896b339dbcf8411d584008cf029b47c88ab379d5
Certificate serial: 019EC148949FD4510DDB7C1EC9309656A6C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
Manifest number: 0137
Signing time: Sat 13 Jun 2026 14:00:19 +0000
Manifest this update: Sat 13 Jun 2026 14:00:19 +0000
Manifest next update: Sun 14 Jun 2026 14:00:19 +0000
Files and hashes: 1: _01xdN9b6VGiDq8TdVfHkv4nsNA.roa (hash: cof+3EhtbeAEqNmK/OvBSq8ShRaGyYdb9JejvgRl8nA=)
2: iWsznbz4QR1YQAjPAptHyIqzedU.crl (hash: /YTfGBBwkj9kFnDtr0ZfZm7jtIeleOWB/2Cgb+3SLt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:94:9f:d4:51:0d:db:7c:1e:c9:30:96:56:a6:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896b339dbcf8411d584008cf029b47c88ab379d5
Validity
Not Before: Jun 13 14:00:19 2026 GMT
Not After : Jun 14 14:00:19 2026 GMT
Subject: CN=f99b5e3d5ebb1a476e83bbb15bcd3876c2ef8656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cb:b1:07:4c:4f:46:d1:36:74:5a:ba:08:8c:
92:36:b8:02:66:24:01:5f:27:9e:7e:f6:64:bb:ec:
07:73:1e:7d:13:d5:b2:8f:14:d8:34:73:5d:b3:2e:
b5:49:e1:22:83:b4:3c:3c:9b:b4:76:82:1b:b8:e8:
6a:f4:58:00:61:41:d0:a0:ef:64:bc:cc:91:ed:f0:
4a:87:0e:6a:67:12:f7:0a:d2:bd:89:63:d4:f1:60:
21:04:b3:07:e6:59:e0:e2:fe:b3:e0:43:f6:10:42:
b3:3d:d1:23:9a:1d:01:2a:18:ec:8c:73:e6:74:26:
9d:20:c6:1a:70:55:cb:98:f2:66:f3:cc:77:d3:bb:
82:1d:d9:fd:15:48:3a:2f:88:06:2f:a4:bf:6d:42:
20:65:1a:ea:e5:3e:07:8b:fe:ab:2f:78:b8:06:16:
01:eb:7c:2d:96:b7:5e:e5:f5:0a:da:22:fa:0b:b7:
49:4e:71:51:28:39:4a:3d:5a:e5:80:04:ae:81:6a:
6f:41:bc:d4:60:80:e0:41:00:bb:d8:e7:17:9b:a7:
71:ce:05:31:2c:99:1d:ef:3e:c0:09:48:90:72:bf:
03:5b:29:39:9a:2f:85:a7:1f:b9:26:c1:93:47:41:
66:3e:4b:72:da:d6:3d:25:25:84:3b:cd:23:3e:25:
41:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9B:5E:3D:5E:BB:1A:47:6E:83:BB:B1:5B:CD:38:76:C2:EF:86:56
X509v3 Authority Key Identifier:
keyid:89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:80:86:45:1e:97:67:dc:c5:77:3a:b9:8d:0c:77:c3:f3:7e:
7a:f9:5b:14:93:6a:5b:ed:88:31:13:48:f6:9c:95:01:27:10:
65:8e:7f:26:57:72:89:e0:c2:6b:4d:ba:4e:0f:66:a9:cb:00:
2f:48:5e:5f:f7:87:19:3d:cf:14:73:99:77:8f:0a:04:58:b8:
ef:de:6c:2b:cd:4b:96:c8:33:26:80:74:25:9d:89:0c:d7:b0:
0f:c4:0b:32:f7:dd:4c:e7:c7:57:ca:88:f4:85:0f:73:ef:99:
70:92:9f:5e:76:d2:ff:e2:0e:85:b9:4c:2d:46:cd:7b:8d:29:
6e:6f:5a:f3:5f:dd:36:63:58:94:8d:c4:f8:ec:ab:7f:26:67:
e5:f9:14:e9:ac:28:a6:4c:4a:61:3f:88:75:94:e8:cd:10:28:
87:51:d2:99:bb:bb:a3:27:54:6b:04:12:b9:44:77:db:e0:65:
87:b7:e0:5d:78:0f:f2:f6:31:bf:34:c9:ae:e3:13:d3:70:83:
e1:6a:07:5e:40:a3:ac:d1:a9:d8:aa:6a:cf:e8:9c:93:61:09:
4a:cf:bb:54:11:c3:04:27:fc:4f:81:eb:d2:b8:3d:b9:f3:6f:
83:04:d1:e8:c4:6d:f9:a8:82:a0:32:53:49:05:d0:1f:e5:11:
5f:20:3d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:59:05 2026 by rpki-client