Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: iHzLJwlCq5dEb2HwOiBEEGCf28poYNPiLXidTmOCJAo=
Subject key identifier: 18:49:B4:4F:0B:E9:5E:F2:E6:81:D0:A8:8A:7F:E3:24:07:4E:CB:60
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019ED499AFA881AEBB737BC3C71E20529EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 02F2
Signing time: Wed 17 Jun 2026 08:01:42 +0000
Manifest this update: Wed 17 Jun 2026 08:01:42 +0000
Manifest next update: Thu 18 Jun 2026 08:01:42 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: sp6ONkUCq8QhpVeK7QJL8tl59SCGEjYbbJCawG24lTA=)
2: TJBNoqDJuDXadUHCaSsBuATOWto.roa (hash: gJS3wY/oZsaAW7+2UEGNOUq9JEb/eTtIedw6FlGOizU=)
3: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:af:a8:81:ae:bb:73:7b:c3:c7:1e:20:52:9e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Jun 17 08:01:42 2026 GMT
Not After : Jun 18 08:01:42 2026 GMT
Subject: CN=1849b44f0be95ef2e681d0a88a7fe324074ecb60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:69:0c:08:83:8b:ef:32:47:a2:ea:4a:ec:9d:
30:8f:8e:ba:d4:1f:d9:5e:d0:db:ca:56:e1:e6:75:
ba:8d:2b:51:db:cc:92:9d:cd:78:3d:21:ef:fc:d8:
1d:8f:d0:ce:6b:a0:eb:2e:a1:54:b8:3b:b2:59:7a:
88:12:f1:b3:a5:d8:de:47:d1:75:4f:18:3d:cc:4a:
06:5f:0d:0d:f3:c5:2c:89:31:be:cf:38:26:d8:1e:
82:e3:77:24:da:5c:69:b1:3f:f5:ff:cc:63:f4:bb:
05:f2:b4:50:7a:0b:5b:5c:2f:6b:81:a0:36:ee:50:
0c:7f:6b:76:95:a8:29:c8:33:07:b0:26:d4:94:8f:
b9:f0:f4:e8:62:a1:8e:bf:7d:2e:cd:62:02:5f:47:
d4:f3:0d:37:6c:55:79:cd:6e:32:15:e7:c4:e1:40:
4e:a6:3c:bb:31:bd:66:d0:db:c2:9a:ba:3b:c8:82:
65:b5:17:3e:83:66:7c:a0:49:3c:3b:e1:9f:06:c3:
3b:89:b4:c4:85:13:d4:70:ee:c0:db:30:d9:98:5e:
cb:f8:fb:6d:75:fc:af:e4:73:fe:2d:9a:8c:91:26:
05:43:aa:42:59:a5:92:fb:e8:43:c0:17:8b:8e:58:
a4:6a:ba:d7:82:b3:46:b1:e2:b9:68:6c:55:f5:32:
0d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:49:B4:4F:0B:E9:5E:F2:E6:81:D0:A8:8A:7F:E3:24:07:4E:CB:60
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:94:d2:f2:f9:da:b3:9b:38:86:2e:a8:51:07:bf:a7:14:28:
c6:2c:14:a5:ee:03:a8:14:2e:b5:94:0c:c9:97:46:b7:b5:cb:
99:45:6d:23:ae:0f:3e:8a:78:78:07:bb:9e:23:d5:ba:7c:27:
bd:49:2f:1e:a9:82:bd:79:e5:47:05:f0:b8:79:5d:bf:77:cb:
4d:6b:09:b7:bb:aa:ee:40:64:67:81:d0:d4:fb:16:57:75:66:
12:60:61:0c:d2:56:2b:b5:03:32:b7:7e:8a:8c:82:4b:84:44:
28:fe:fe:95:35:d6:3b:ec:6e:56:9e:54:5c:2a:16:9c:53:f0:
f8:b4:59:12:52:e9:a8:5b:9f:70:e4:1b:bc:06:47:56:ca:19:
8d:1a:23:03:35:20:61:44:12:c8:c9:96:8a:71:ba:cc:17:d4:
8d:77:42:e9:59:9b:04:fb:1f:ba:0c:7d:7e:bb:a0:c8:dd:8d:
8a:ff:26:d4:66:df:3e:ca:1b:8e:0f:d5:67:f2:6f:dc:bd:19:
e8:96:b5:79:59:b7:04:9b:eb:ac:2f:ca:34:0e:52:0c:6c:5a:
11:3d:92:ee:71:0a:76:fa:0c:11:8b:2c:6d:d1:e4:0b:30:17:
4c:0c:b6:90:3f:91:90:38:0d:2f:70:38:27:10:d9:9a:17:2b:
e1:02:29:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:01:06 2026 by rpki-client