Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json)
Hash identifier: 8rldWngxGXr4Dq7mv7mxR1uvW5kRgwCx/R3F3oBIQug=
Subject key identifier: 2B:8D:B6:7B:33:04:79:E0:5A:57:BB:D3:AF:D6:4A:D5:9F:C6:D2:DE
Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918
Certificate serial: 019EBEEC9DB2EE2BEF029F98BE1FFC12019C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 03:00:38 +0000
Manifest this update: Sat 13 Jun 2026 03:00:38 +0000
Manifest next update: Sun 14 Jun 2026 03:00:38 +0000
Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: tO4hvtJTSkOm3NLXiczo+zGHaGZ7KbpNCKxusKJTSs0=)
2: tcauu97gqx_3OsWJEyJLtylmmP8.roa (hash: g4WoFZgT3MzcoVX/LXrLBBnWdsRJpBrZA+GD6BcfKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:9d:b2:ee:2b:ef:02:9f:98:be:1f:fc:12:01:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918
Validity
Not Before: Jun 13 03:00:38 2026 GMT
Not After : Jun 14 03:00:38 2026 GMT
Subject: CN=2b8db67b330479e05a57bbd3afd64ad59fc6d2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3d:94:55:d1:6f:15:8e:e2:7a:70:1d:b4:ca:
31:75:36:d6:b9:03:93:8d:b3:8a:30:7e:35:8c:e4:
95:73:af:5e:2b:4c:72:86:68:fd:b6:48:e1:fe:67:
83:b2:57:b0:9f:4c:e3:ea:44:d2:a2:e3:7e:d4:4e:
a2:be:7b:3c:91:f0:4b:e1:0e:85:98:a3:93:87:e5:
23:bf:f9:21:36:7c:86:4f:91:a0:c4:7d:4e:c7:15:
a4:ad:9d:7a:95:ff:6b:5f:32:00:5e:3f:60:c5:64:
49:3d:4e:1b:15:53:71:e9:e9:6c:47:a5:c2:b6:30:
fb:1c:83:30:b4:82:76:4f:e0:c4:51:a6:d9:13:c5:
d9:48:b7:92:10:4e:d0:9f:9f:e2:ea:f8:bc:80:ce:
46:03:12:e4:b2:db:04:e9:d7:b3:45:88:4b:3d:7f:
10:67:7e:43:6a:7f:37:9b:3e:ca:df:b3:a5:b8:02:
66:d4:7d:e9:04:70:25:c9:a9:3f:83:2d:47:ff:23:
b7:89:88:c4:8b:d1:d0:72:4f:23:18:12:fc:b3:b9:
df:6a:96:34:b3:40:51:19:63:c5:a9:7b:11:da:7d:
29:f5:45:e5:e8:a3:2b:52:77:5e:0e:de:64:4e:24:
60:ce:07:36:4a:b2:b0:71:ea:39:a3:ec:f5:34:05:
15:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8D:B6:7B:33:04:79:E0:5A:57:BB:D3:AF:D6:4A:D5:9F:C6:D2:DE
X509v3 Authority Key Identifier:
keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ad:8d:cd:ff:53:96:55:9c:be:f8:95:8a:7f:59:da:3a:33:
10:e1:c0:f6:2e:b2:c9:3f:42:90:1c:58:4d:41:4e:80:ed:e0:
7e:58:87:fe:c7:81:7d:9e:5b:e2:a4:94:d6:0d:68:33:8d:45:
60:43:b2:83:49:59:d2:3b:55:70:4a:bd:03:bb:48:69:e7:0a:
30:01:55:e2:f0:00:3e:0f:4a:6b:f3:3e:0e:41:65:08:dd:16:
cc:6b:7f:82:a4:70:f1:7b:40:33:ac:e9:75:f4:ca:2f:8e:c8:
e7:d0:fc:1c:6b:ef:e0:b3:80:1c:1c:ce:0a:a9:3f:f5:0a:46:
f2:0e:c5:68:af:41:93:4f:90:e3:2b:a5:2a:65:45:7c:71:28:
20:fc:19:2d:c9:f4:79:5e:ba:00:76:7a:bc:68:cf:e0:aa:b2:
20:89:d4:89:c9:44:e9:c4:2d:6a:cc:a3:f8:b1:bd:12:15:6e:
08:73:65:1e:42:e1:75:55:4a:9c:f0:ad:73:45:94:ae:4c:52:
2e:1e:4c:c4:af:99:de:d5:b3:92:f4:59:e3:bf:55:bb:e3:13:
10:0d:44:13:49:55:2d:f7:13:cd:e3:32:3e:3a:8e:65:cd:b7:
81:41:3a:d2:a4:ab:f0:fe:02:2c:d9:5a:2e:db:09:c6:22:d6:
ef:73:a5:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:33:15 2026 by rpki-client