Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: kq+Qhhx9Df3m/9+KdtOMbsh9b5VgvMa3Ve/GSQyYz3Q=
Subject key identifier: 5B:AA:EC:1E:B5:BC:52:F0:44:81:12:E2:83:4D:83:A4:7F:30:D1:81
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 019EC1B6B6C8D6C3C2B076F8279DC905BDED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 18EE
Signing time: Sat 13 Jun 2026 16:00:37 +0000
Manifest this update: Sat 13 Jun 2026 16:00:37 +0000
Manifest next update: Sun 14 Jun 2026 16:00:37 +0000
Files and hashes: 1: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: jw7RaE+EoFGaBY0fwyHZ0f40mgxkMYGPL0HQLWDwTKg=)
2: TlCjshw48MI80zaCqZRdp10HXmU.roa (hash: IUaeg0F1EJZvlebFMhAdUjihSrKer72rVZfI7a/WmYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:b6:c8:d6:c3:c2:b0:76:f8:27:9d:c9:05:bd:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Jun 13 16:00:37 2026 GMT
Not After : Jun 14 16:00:37 2026 GMT
Subject: CN=5baaec1eb5bc52f0448112e2834d83a47f30d181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5c:37:4a:87:f9:08:c5:7d:e4:45:02:7d:f0:
65:bc:5d:02:36:8f:b1:b3:3c:f6:52:af:06:97:4e:
25:f4:aa:77:b6:1c:90:6e:8f:75:ec:58:00:3a:a9:
69:49:47:89:05:07:17:0c:75:fe:4f:d4:0f:31:ab:
50:aa:ff:d8:20:4c:60:8e:0e:1d:cb:84:d2:e9:c5:
98:c6:a5:ce:2a:f9:8d:fd:e6:6d:0b:44:4d:dc:53:
65:07:4f:f4:7d:ee:eb:f1:fd:1d:41:b0:f5:ed:78:
cd:1f:7e:e2:77:9e:7a:2c:47:d0:cf:85:a2:09:e5:
c6:b6:b1:88:62:49:ca:05:7c:ea:f2:e3:69:f6:83:
f4:ea:ac:9e:80:8f:79:15:03:e7:36:04:12:e9:5f:
a7:06:69:6a:67:23:03:12:fb:e9:a2:dd:25:cd:0d:
1b:61:a7:7b:52:b0:44:25:62:1f:73:87:29:09:20:
3c:3a:bd:c5:3b:ab:be:fa:79:9a:e2:d9:b5:71:6e:
b1:03:ec:5d:21:c7:55:19:6f:36:5f:d3:a8:fb:b0:
2d:b6:d1:ae:43:11:02:24:bf:35:64:10:05:65:6f:
45:99:96:1c:f9:c5:ba:c8:aa:13:16:ea:79:ff:93:
f1:b9:f5:af:00:62:10:f4:54:57:1d:f3:47:b5:8f:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AA:EC:1E:B5:BC:52:F0:44:81:12:E2:83:4D:83:A4:7F:30:D1:81
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:6d:57:13:4e:b1:28:a0:23:df:1a:ef:33:4c:04:9d:50:56:
b0:ae:d2:b2:df:a3:7f:59:c8:65:65:2b:a8:25:4d:89:c2:e2:
61:0b:93:b5:64:e5:e5:ac:32:8e:8d:59:e7:38:1d:93:5b:3f:
97:94:0f:83:fe:df:1d:a4:e2:07:01:be:07:56:84:8d:b2:2a:
47:a3:f4:0f:11:37:fd:7e:be:09:62:3b:13:e7:44:6e:6d:8c:
28:f3:ec:eb:1b:f1:6f:5f:ac:f5:56:02:48:bd:0b:43:06:85:
dc:86:57:a8:54:a2:b2:f5:a5:53:00:8b:25:b9:6a:24:df:13:
63:75:69:bb:16:af:27:2c:93:57:5a:2d:34:82:8d:77:d6:08:
11:90:e2:a5:1f:0a:a9:7b:ad:ca:5c:68:f4:84:b7:96:a2:10:
65:5f:24:53:46:5d:28:11:d6:67:a2:14:d7:24:d3:e9:ae:9c:
11:3b:b3:1a:20:bc:30:b9:7c:b2:71:55:e0:d2:6d:98:84:a4:
12:f0:3b:f8:ce:fe:2d:a9:07:de:af:e6:1c:56:b3:89:a0:22:
2e:9b:42:47:73:3a:ae:87:b2:e2:26:20:ea:cc:68:0e:fe:60:
01:cb:9c:20:e6:4a:b3:72:5e:96:01:d9:91:d4:09:03:de:de:
95:31:84:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:53:18 2026 by rpki-client