Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: FOmdYq85Zi/PmyutiSsAknRRGGSkZkTLrc68um3hJw4=
Subject key identifier: 33:55:B5:C1:4F:72:23:7B:1F:BA:56:C6:91:CB:8C:BE:CB:D8:8C:63
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019EC1B6921A629D15457333FC7CDA043761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0A66
Signing time: Sat 13 Jun 2026 16:00:28 +0000
Manifest this update: Sat 13 Jun 2026 16:00:28 +0000
Manifest next update: Sun 14 Jun 2026 16:00:28 +0000
Files and hashes: 1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: tLzsJP9/AZcNwUIH3lnivQLspZObgFqMj0ppQ163Sqk=)
2: rTrNf2BtsL1vlw_R__r7UKcCZJk.roa (hash: lQAxfhbBIAhm99xgTizcCxmFSvD0y0yK3pththJkeEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:92:1a:62:9d:15:45:73:33:fc:7c:da:04:37:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 13 16:00:28 2026 GMT
Not After : Jun 14 16:00:28 2026 GMT
Subject: CN=3355b5c14f72237b1fba56c691cb8cbecbd88c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2d:86:00:ff:70:07:7d:41:ea:3b:96:48:df:
3b:db:04:ad:aa:05:88:c0:61:cc:8c:ed:bc:e8:5a:
73:34:c5:fb:d4:2f:9a:89:4e:fa:34:3c:f5:82:dd:
af:5d:ba:c2:12:05:55:82:a7:5a:a6:6f:27:86:4f:
7e:36:e7:0f:9a:f3:10:bc:0c:9d:e9:ec:c7:ae:db:
32:d7:e2:4b:35:5e:48:4d:15:fc:76:06:61:0d:18:
e8:cb:a9:bc:20:cd:6a:e0:7b:4b:fc:6b:a0:0c:35:
fb:04:ff:78:e8:9e:99:0a:85:5d:c6:d1:85:c9:0a:
20:17:0c:74:76:f2:23:4e:3f:ab:e3:6c:06:8c:43:
30:f9:79:90:31:77:c0:6c:be:8d:ea:c2:0c:5a:8d:
44:83:40:32:d5:19:3e:04:a9:b9:da:f2:ab:d5:a7:
e6:76:c3:81:64:59:3b:da:10:ae:1f:90:51:6d:14:
7c:5a:1a:f8:60:4a:47:34:8a:53:02:32:1b:2f:cd:
61:11:d5:22:34:6a:01:89:ea:5c:5d:11:aa:22:00:
30:d3:d5:33:f0:23:c8:32:1a:37:3b:df:61:8a:5c:
9b:86:97:c5:c0:63:c6:0f:eb:24:00:57:a9:07:98:
e3:a8:a8:54:c2:6f:77:1e:67:ae:75:d4:cf:9b:5b:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:55:B5:C1:4F:72:23:7B:1F:BA:56:C6:91:CB:8C:BE:CB:D8:8C:63
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:de:3d:cf:0d:33:1e:82:10:1a:a5:9c:2b:a5:50:a6:92:7a:
f8:32:14:6f:b5:6d:1d:fd:81:4e:ac:6f:cb:d0:d4:f6:44:e7:
d0:15:10:07:3f:16:aa:02:60:73:eb:fd:a8:32:a0:61:e0:3f:
e3:36:84:59:4c:e8:30:04:09:79:1f:27:13:32:df:ba:22:5f:
83:fe:f9:ce:48:f9:a0:da:bc:8a:41:28:9a:a6:65:27:99:9b:
e2:e0:20:ba:9c:5e:21:3e:a4:69:27:d6:c3:94:79:4a:d5:08:
4e:24:fb:ee:ac:07:56:c1:a1:dd:78:62:e1:b6:ac:5b:7b:e9:
22:b4:c7:2f:12:40:7c:36:34:a8:db:15:56:e3:13:7e:8e:14:
31:bd:3b:e1:d1:79:5a:c6:8b:92:f5:3d:81:e5:17:91:d3:49:
d4:0a:e7:58:0e:0c:88:af:2f:da:e1:85:a1:65:0e:1f:14:6c:
39:5f:95:0b:e3:78:47:14:88:b6:4a:96:81:88:a4:0c:2d:40:
53:f9:24:ce:4f:2e:89:da:c4:04:a5:89:28:2b:01:39:2c:57:
3f:2b:04:9c:46:e7:96:60:c0:2d:57:2f:3b:5a:c4:8a:49:b3:
91:d0:1e:22:82:bd:cb:2f:59:ac:3a:b9:28:89:52:35:02:e6:
76:b5:e2:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7BtpIaYp0VRXMz/HzaBDdhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDNkY2E3NjMxOTkwMzE1MmYyNDZlMDVjMDY5ZmQxYTFk
YjVjNTkwHhcNMjYwNjEzMTYwMDI4WhcNMjYwNjE0MTYwMDI4WjAzMTEwLwYDVQQD
EygzMzU1YjVjMTRmNzIyMzdiMWZiYTU2YzY5MWNiOGNiZWNiZDg4YzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyy2GAP9wB31B6juWSN872wStqgWI
wGHMjO286FpzNMX71C+aiU76NDz1gt2vXbrCEgVVgqdapm8nhk9+NucPmvMQvAyd
6ezHrtsy1+JLNV5ITRX8dgZhDRjoy6m8IM1q4HtL/GugDDX7BP946J6ZCoVdxtGF
yQogFwx0dvIjTj+r42wGjEMw+XmQMXfAbL6N6sIMWo1Eg0Ay1Rk+BKm52vKr1afm
dsOBZFk72hCuH5BRbRR8Whr4YEpHNIpTAjIbL81hEdUiNGoBiepcXRGqIgAw09Uz
8CPIMho3O99hilybhpfFwGPGD+skAFepB5jjqKhUwm93HmeuddTPm1tHOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDNVtcFPciN7H7pWxpHLjL7L2IxjMB8GA1UdIwQY
MBaAFIsD3KdjGZAxUvJG4FwGn9Gh21xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQt
MDI5ZTYzZjA4ODlhLzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQtMDI5ZTYzZjA4ODlh
LzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApt49zw0z
HoIQGqWcK6VQppJ6+DIUb7VtHf2BTqxvy9DU9kTn0BUQBz8WqgJgc+v9qDKgYeA/
4zaEWUzoMAQJeR8nEzLfuiJfg/75zkj5oNq8ikEomqZlJ5mb4uAgupxeIT6kaSfW
w5R5StUITiT77qwHVsGh3Xhi4basW3vpIrTHLxJAfDY0qNsVVuMTfo4UMb074dF5
WsaLkvU9geUXkdNJ1ArnWA4MiK8v2uGFoWUOHxRsOV+VC+N4RxSItkqWgYikDC1A
U/kkzk8uidrEBKWJKCsBOSxXPysEnEbnlmDALVcvO1rEikmzkdAeIoK9yy9ZrDq5
KIlSNQLmdrXiPQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 23:28:25 2026 by rpki-client