Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: csCNOepvWn6ySJ5G2Pl6k0sZog0GXwuU3xANvFyo5LI=
Subject key identifier: 68:11:99:6D:A9:52:E5:B9:1E:AB:D7:6B:BB:D8:2C:19:41:1A:62:4F
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019EC1B6B8029E5A61D9AB4851608D591BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 113D
Signing time: Sat 13 Jun 2026 16:00:37 +0000
Manifest this update: Sat 13 Jun 2026 16:00:37 +0000
Manifest next update: Sun 14 Jun 2026 16:00:37 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: smGkBHcid2epnwH4vIygrWYsEjMtQTSLm1vGKxcBAI4=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b6:b8:02:9e:5a:61:d9:ab:48:51:60:8d:59:1b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Jun 13 16:00:37 2026 GMT
Not After : Jun 14 16:00:37 2026 GMT
Subject: CN=6811996da952e5b91eabd76bbbd82c19411a624f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:69:d3:7f:4e:7a:3e:ad:2a:3f:56:01:96:e2:
be:49:c6:70:88:a8:72:60:e0:5c:c1:4b:a6:c0:ad:
27:f6:e9:be:47:27:f7:70:a3:67:b4:ba:36:0c:39:
3a:60:0e:ec:6a:81:66:9c:d7:61:38:56:52:23:ef:
8b:21:0c:9f:5e:b2:c9:d8:c9:e8:a6:c6:7f:52:e3:
23:cb:f1:2e:d1:da:99:12:17:5c:c8:57:4f:6a:90:
ac:5f:1e:b6:6e:6d:4f:4b:2a:72:15:b5:40:fb:e9:
09:8a:b4:84:a9:55:ee:a3:85:f4:92:3b:f9:94:09:
19:b9:15:e1:53:78:bc:61:81:53:6b:16:e1:89:58:
6a:8d:96:cf:50:33:6a:15:df:aa:61:fa:8c:ac:c8:
0c:1a:22:33:38:42:7c:a5:d4:2e:58:e7:c1:f7:73:
e7:98:f1:70:a5:ee:39:c0:80:19:21:73:fb:29:df:
bf:54:d2:0c:5a:ce:d4:b9:8c:9f:eb:66:7c:26:f6:
24:00:9a:86:10:f8:11:92:6e:1d:fa:64:bb:cc:af:
fe:95:22:a8:f7:1c:c8:40:71:f7:d7:fb:a7:64:27:
84:81:50:7e:f4:2c:93:a8:e9:aa:a7:34:f0:f6:6c:
79:18:fd:8b:43:c5:35:c4:da:f7:48:4a:39:5d:71:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:11:99:6D:A9:52:E5:B9:1E:AB:D7:6B:BB:D8:2C:19:41:1A:62:4F
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:45:3f:51:c3:c9:57:8c:54:89:50:3a:30:7f:5a:1b:e8:e1:
6b:4a:0e:98:c0:7d:83:f3:58:f5:1e:12:70:3f:5a:5c:b4:8f:
a1:68:23:c2:73:27:d6:97:56:85:83:42:78:dd:df:08:93:bc:
ec:75:6a:53:c9:54:8a:e1:af:2d:38:54:53:8e:c4:29:b5:23:
51:00:7d:4b:3a:ac:71:1b:c9:a1:7c:12:d9:1b:20:13:4e:1d:
9a:10:21:96:fe:6f:db:7e:8d:f6:b3:64:7f:4b:8e:74:c7:44:
76:e7:44:3e:d4:39:db:be:e9:9e:31:0d:81:4c:cf:b3:7e:f7:
83:5c:9a:68:a2:98:2c:73:18:56:90:7c:67:e2:13:48:e2:ca:
9d:d0:f1:fb:69:9f:23:df:cb:d5:73:76:b3:7c:56:0b:94:eb:
c2:1f:08:30:fb:56:28:ad:f1:68:93:a6:ed:34:c3:18:df:20:
c8:1f:60:87:13:63:bc:67:78:08:c0:11:86:d3:a8:8d:90:15:
74:b1:64:a7:f2:e8:19:06:1e:51:92:67:25:aa:38:03:6e:2d:
df:a8:9d:70:11:9a:97:51:24:1c:e2:3c:98:1e:6d:4e:e1:aa:
6c:e1:33:c0:20:8f:1d:a2:5a:6b:aa:f9:59:68:d0:25:4f:64:
90:32:c2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:49:50 2026 by rpki-client