Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: N3THQi/gGzCzEk5iAQchHLMm1ElAwNhwOcTOmy/zUUg=
Subject key identifier: 8E:9F:9E:C6:C7:7B:CB:DC:26:6A:93:A5:3E:5E:91:54:30:64:F5:78
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019EC1B70FE7CAF899DEEEFF1DD08B7A0ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0CEC
Signing time: Sat 13 Jun 2026 16:01:00 +0000
Manifest this update: Sat 13 Jun 2026 16:01:00 +0000
Manifest next update: Sun 14 Jun 2026 16:01:00 +0000
Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: /qXbPmbjPpfnX4nvGA1W8+2LSVdU/5H35Td5IEDzW2Q=)
2: xMgS7QD9_G9EOx5x98EDuY-9yGs.roa (hash: hMlsCv6vl96geP53LLF12LxkGDU69mGZggpEWqFm3G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:0f:e7:ca:f8:99:de:ee:ff:1d:d0:8b:7a:0e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Jun 13 16:01:00 2026 GMT
Not After : Jun 14 16:01:00 2026 GMT
Subject: CN=8e9f9ec6c77bcbdc266a93a53e5e91543064f578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e3:ae:12:ac:ea:3e:9e:58:4d:cb:48:d6:58:
fb:40:10:5d:32:2b:8a:22:df:c9:ca:fe:af:ca:51:
2f:a8:4e:6f:db:92:34:ed:22:44:75:9c:ba:07:20:
d2:68:aa:fc:d8:d3:9d:c9:7f:e6:ec:64:78:17:5d:
b4:7b:73:97:3a:4d:a2:35:f8:47:ae:ad:7a:b7:da:
58:5b:f4:09:b4:d1:d3:9a:c6:c2:a6:c6:a3:69:83:
78:d2:52:bd:c5:dd:03:df:d5:d5:9f:3e:df:2c:55:
0d:f1:39:80:f1:f0:ec:72:5a:6d:42:a3:53:ed:9f:
16:b7:18:62:79:bc:26:b4:67:93:6c:63:ab:28:fa:
6a:fd:1c:c6:39:8e:b5:1a:ea:31:04:b0:a7:2b:27:
aa:75:c5:35:3f:5c:c2:d2:68:71:18:50:7e:e8:c3:
81:94:72:e3:58:be:28:c0:c0:4e:b6:c7:45:28:12:
68:33:fe:19:8e:4d:a4:6e:e0:2a:17:46:c6:12:1e:
07:3d:e1:ab:fe:32:e0:09:57:b2:21:41:04:b1:e0:
88:9e:5e:2a:74:dc:5e:7b:8e:a9:f2:0c:d4:33:c3:
80:1b:b6:b1:f1:e0:41:a2:66:c9:c8:46:a3:c5:85:
8e:fc:38:eb:8a:7d:72:8a:05:1f:bf:4f:dc:f6:13:
b6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:9F:9E:C6:C7:7B:CB:DC:26:6A:93:A5:3E:5E:91:54:30:64:F5:78
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:f0:e4:4c:57:c4:8b:23:8d:41:82:58:4f:55:87:a0:8e:9e:
4a:56:8d:e7:e0:ac:75:d4:07:ed:0e:34:1b:a2:cd:9e:e6:b3:
a2:b3:4c:77:10:29:b2:dd:3c:87:51:cc:69:8a:83:e7:23:65:
46:6f:22:e4:e4:41:83:a5:4a:0a:68:49:87:85:65:57:66:68:
9e:70:c4:fc:ba:fc:b6:0a:46:b3:e7:3e:a5:6a:74:c2:a3:19:
9e:47:59:f8:05:02:1b:fe:57:0d:6c:2e:fc:04:02:de:87:2d:
bf:29:35:eb:76:56:d4:b8:03:43:63:ce:58:14:21:29:25:80:
c1:29:3d:1a:0f:aa:81:78:a1:5f:46:c7:d0:ad:ea:4d:88:96:
5a:e5:b8:be:88:ee:62:57:35:16:3c:90:03:b5:b4:45:10:68:
9d:0b:e0:8b:ba:9c:ae:d5:c6:b5:62:eb:70:db:43:b2:04:f2:
f7:b3:53:56:97:c6:8b:66:e2:4e:24:6a:41:f7:ba:c8:91:24:
f8:7e:b9:e8:47:5d:4a:52:ba:95:67:49:de:81:b0:55:80:40:
7c:1b:b2:41:b4:5d:57:b3:38:34:6b:7e:72:56:89:ac:76:39:
b4:85:28:bb:bb:a4:96:a5:6a:44:3d:08:cf:15:3a:c4:77:a5:
19:13:f2:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:39:55 2026 by rpki-client