Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: wuFZ/vIWMms4UkHW7h++bAMZkK0aRRwlU9DDms7aaUE=
Subject key identifier: 3E:AF:B9:61:E7:5F:5A:52:8D:B6:09:45:7B:C2:59:EA:B9:28:5F:A7
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019EC2C992C12E55B4BBEFB681C54C40DC4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 1378
Signing time: Sat 13 Jun 2026 21:00:50 +0000
Manifest this update: Sat 13 Jun 2026 21:00:50 +0000
Manifest next update: Sun 14 Jun 2026 21:00:50 +0000
Files and hashes: 1: 3kj2IZUmhg4c3fn_vDNshjS1bYM.roa (hash: F1j+Rw7AK0w/RfaxR+vC5zwL/WwgyQ05RgO+QAvekpY=)
2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: xFeaXoOjd+y8+8tsRrgi19QjnFpwfIamQwBONMw2x1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:92:c1:2e:55:b4:bb:ef:b6:81:c5:4c:40:dc:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Jun 13 21:00:50 2026 GMT
Not After : Jun 14 21:00:50 2026 GMT
Subject: CN=3eafb961e75f5a528db609457bc259eab9285fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2d:cd:34:a7:6e:6c:da:33:5b:29:da:c9:84:
3d:3d:73:5d:55:8b:43:d5:14:7f:a6:bc:86:fa:7a:
f1:d7:83:a5:51:7b:62:da:2a:72:a9:38:9f:0b:d9:
3f:c3:30:b6:9c:d8:0e:ba:e9:68:5c:61:86:dd:6a:
f5:17:5a:e5:a0:55:ef:8a:d5:e6:5a:fc:91:fa:e2:
05:1f:cb:ea:24:94:56:07:ef:85:4d:22:c4:26:34:
15:cf:ee:b0:bf:bc:9a:17:3e:3f:5d:f1:0a:9b:66:
35:6c:90:92:3c:e5:89:ed:dd:9b:9c:78:14:bb:c2:
c1:a8:5c:42:0d:e8:ac:0f:17:90:a1:e4:5f:93:56:
57:7c:bd:01:62:e1:c4:6f:d6:35:0d:8f:e4:86:e5:
2e:7e:86:4b:45:9a:97:83:87:7b:c2:42:68:1f:d6:
79:bc:de:67:bd:30:a0:a9:51:c7:6f:ca:3d:9f:38:
64:ff:82:d9:d6:9b:6a:19:c9:20:cf:51:0e:2b:93:
34:58:1a:64:d5:86:d8:49:81:1f:33:ea:ed:d0:6c:
2b:38:c6:97:a6:2b:a9:4a:fa:a3:17:03:31:64:e2:
1f:c6:82:94:8d:38:ae:f1:5b:92:5f:01:58:a0:ff:
7c:d4:c4:e2:00:8f:04:94:62:10:ef:cf:dd:f0:12:
21:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AF:B9:61:E7:5F:5A:52:8D:B6:09:45:7B:C2:59:EA:B9:28:5F:A7
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:7d:15:e5:1e:ca:7c:b0:ed:26:51:26:a5:89:01:d4:5c:d6:
24:8c:cb:f9:e0:bf:1f:9b:6d:7f:08:07:0c:d5:78:b1:ab:25:
64:ad:57:29:47:f9:47:da:b3:42:67:a2:74:f3:24:e9:85:82:
64:8c:15:cb:18:72:bc:c1:a1:e2:57:6f:27:78:af:f9:a7:fa:
71:f4:4b:ef:91:98:4e:e6:7e:42:36:c4:5b:f2:c9:83:1f:d9:
22:39:82:09:ec:14:9f:68:c4:4f:20:e6:53:20:4c:cb:e1:86:
cd:5d:df:28:47:2b:5b:7b:db:4b:2e:f6:7e:ee:31:32:ba:0a:
79:35:e0:25:50:ee:2c:ec:5a:c3:ec:cd:8a:9a:f3:99:2c:35:
3c:a3:5b:30:8e:53:b2:52:58:49:77:cd:1e:e9:f5:43:e6:f9:
93:9b:e6:29:39:1b:7b:ac:cc:4e:cf:cc:61:c5:03:af:0f:14:
1d:25:b1:43:2a:13:7c:46:d7:b6:e5:e1:54:bb:6a:4b:94:1f:
96:87:cf:e6:c9:58:cd:55:65:81:cc:37:af:c7:a8:73:ad:c5:
eb:3f:b5:d7:12:a5:61:a5:39:5e:60:e8:7a:f1:dc:f5:26:9a:
b1:09:c5:00:e1:8b:b2:5d:ea:ba:9d:fc:af:08:59:fc:32:26:
09:5f:43:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:43:09 2026 by rpki-client