Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: lbHuwJ97xqQg/tAsZfkOe26N1fI9JVZwlZHlsaaJeUY=
Subject key identifier: F8:22:63:00:C5:1B:47:D3:D9:66:75:B9:8F:52:F2:9F:E1:17:0E:64
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019EC2924F6C9E36468701A4F1020109C969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 0998
Signing time: Sat 13 Jun 2026 20:00:28 +0000
Manifest this update: Sat 13 Jun 2026 20:00:28 +0000
Manifest next update: Sun 14 Jun 2026 20:00:28 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: 5aqLi1oAMo+LbUkxL0caB2lvazQksUx/mIbxuuZfuEc=)
2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:4f:6c:9e:36:46:87:01:a4:f1:02:01:09:c9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Jun 13 20:00:28 2026 GMT
Not After : Jun 14 20:00:28 2026 GMT
Subject: CN=f8226300c51b47d3d96675b98f52f29fe1170e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:11:7d:bd:52:d0:41:f6:22:64:91:7f:d5:52:
2f:4e:7d:8a:cd:fc:ed:10:11:03:83:0c:65:e9:e7:
26:e1:6f:1c:98:db:b9:e2:90:26:e3:d1:79:02:4c:
ed:5d:41:4a:2f:e2:cc:a7:07:58:f3:79:e3:77:96:
ae:b7:6e:a4:e2:c6:f5:65:c0:69:4e:4f:0e:48:3e:
20:03:bc:54:4d:d1:59:79:75:2c:2a:72:4a:eb:cb:
5d:0b:4e:b8:7c:90:66:6b:95:1a:08:3d:c0:f1:9c:
dc:17:39:50:95:e8:2c:a8:37:e8:67:82:98:d8:4d:
6f:b2:98:d1:df:f4:e3:8e:38:6b:8d:c1:b8:8f:fb:
4e:4d:6a:0f:ae:6b:42:08:55:59:26:62:1c:a2:9b:
87:1d:30:28:2f:9f:7d:52:53:b4:59:68:80:fc:57:
cf:97:89:4b:a9:15:bb:fa:10:2a:0d:46:5b:c5:a9:
ab:12:74:db:19:85:a5:2e:6e:ff:a0:5b:68:44:45:
25:52:48:2d:80:5d:51:3d:5c:fb:9c:44:50:2a:47:
84:d5:fa:01:1b:87:6b:21:cd:93:ca:e5:e9:9d:a3:
27:30:27:ff:7d:97:57:05:a1:e2:87:27:bd:7e:2a:
76:2a:cd:f5:7f:be:de:41:19:2e:4f:25:77:f9:2d:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:22:63:00:C5:1B:47:D3:D9:66:75:B9:8F:52:F2:9F:E1:17:0E:64
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:c1:32:c8:c7:51:39:b5:69:2e:6a:36:c1:5d:4c:b6:68:2f:
5f:62:2a:7c:c0:bc:e7:8f:de:08:9f:11:09:cf:20:6e:b1:9f:
a6:ca:c8:39:36:64:1b:d1:42:6c:3a:ab:39:e1:3a:7e:88:5a:
3c:c2:19:06:5b:2c:db:40:f2:4b:c6:39:09:2a:92:36:82:54:
5e:6f:ba:99:38:09:53:7e:58:21:4d:50:0d:5f:54:81:98:ec:
6d:85:48:54:ef:5f:c9:b0:79:6f:39:5b:c5:20:6f:90:fb:a7:
97:ae:e4:49:d8:85:f9:4f:df:ac:63:f2:a1:96:c0:b2:32:46:
34:4c:0a:c5:b1:4c:8c:8f:6c:f4:fc:a2:15:dc:ba:86:96:71:
c1:2d:7a:4d:28:0c:fb:ee:8e:65:00:05:c0:e1:dd:66:45:73:
1c:c9:59:15:11:fe:c0:fc:1c:01:97:ae:1c:f1:57:ca:59:72:
9a:e2:e8:4d:50:07:6c:75:06:71:4b:67:28:7f:95:f1:58:59:
ef:ca:94:0d:f4:6b:a2:0f:61:cf:72:66:19:d8:da:38:6e:03:
01:2d:d0:b9:9e:63:cf:ef:ed:17:59:ac:23:36:72:44:b9:6d:
30:c3:b3:7a:b6:ab:a3:3f:84:ae:33:79:23:d5:08:00:d0:e8:
ec:46:7b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:16:14 2026 by rpki-client