Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File: iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier: t5Hd3vVjQSXBZe+IL+aeUYj089griLXZWap1xsLS7K8=
Subject key identifier: 71:7A:3C:5E:53:8F:BA:85:79:68:1D:E5:95:BC:16:E5:39:8B:AC:3F
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer: /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial: 019D9818DAEA2E9C0E776ABAFE563FF055FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number: 0F60
Signing time: Thu 16 Apr 2026 21:00:58 +0000
Manifest this update: Thu 16 Apr 2026 21:00:58 +0000
Manifest next update: Fri 17 Apr 2026 21:00:58 +0000
Files and hashes: 1: 1-tufXICD9zpH9q97ukUAVzwwHjE.roa (hash: +wtE5yDBNjZJrgkiWy0XjsbVbjlePoHSNbtSgcMLmc8=)
2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: Cpu80ZnRO/njRr1N+36PLMSTjh1sv07Pg5aFhbByO7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:da:ea:2e:9c:0e:77:6a:ba:fe:56:3f:f0:55:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Validity
Not Before: Apr 16 21:00:58 2026 GMT
Not After : Apr 17 21:00:58 2026 GMT
Subject: CN=717a3c5e538fba8579681de595bc16e5398bac3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:73:66:c4:0a:93:48:7b:42:61:8d:46:44:a9:
10:34:d4:38:ee:02:6d:50:cf:a3:e4:c6:a1:cf:1a:
75:ed:7a:12:16:02:24:1d:d5:24:b7:6f:e7:7a:96:
ec:51:e1:df:e6:e1:3c:7b:99:d1:13:20:aa:16:e8:
96:d5:dd:cd:c4:b7:7f:92:b2:be:d6:3a:36:59:dc:
42:e0:f7:ab:46:e6:bf:c7:3d:25:3e:55:4c:79:75:
c4:12:d1:6f:ee:f5:fa:f9:d6:4b:da:61:e0:e7:a7:
a5:49:55:c9:63:03:1a:64:eb:1d:6f:c6:0c:1a:0d:
2d:40:75:0c:85:09:30:5f:b5:5f:f9:e7:aa:05:b2:
de:cc:54:a0:e5:21:b4:e7:23:f4:c6:bb:03:f4:92:
4e:0f:47:5d:6d:91:f7:1d:0e:68:ad:32:3d:78:46:
cd:33:e2:3b:25:ae:88:b9:b6:da:a5:3e:97:91:ed:
8e:2b:83:62:04:d7:10:50:d6:8a:8e:a7:82:41:fb:
52:73:ad:c0:ab:49:c0:b8:4e:66:59:bd:26:a3:3b:
08:93:6a:2e:09:da:d1:b4:b7:06:7c:dc:32:6b:00:
23:b4:64:51:e9:2b:42:8e:85:fe:25:0e:83:1e:4a:
89:c1:e0:dc:e7:89:b7:fa:01:68:42:17:c1:b6:c8:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:7A:3C:5E:53:8F:BA:85:79:68:1D:E5:95:BC:16:E5:39:8B:AC:3F
X509v3 Authority Key Identifier:
keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:5c:39:7a:a2:c9:4a:9b:28:16:9c:ad:03:b3:c1:16:75:79:
35:7d:76:b7:80:b6:a6:e0:64:5e:10:f1:15:04:60:69:35:38:
e9:c6:f1:ff:ea:74:ab:27:19:c2:a9:ef:b6:07:33:8f:6d:3d:
80:96:ec:81:ec:43:88:10:67:ed:8b:3f:3c:93:d3:6e:15:ca:
9a:a7:84:39:04:d4:49:6e:e1:0e:42:1b:ad:df:da:fc:9f:6a:
7e:58:58:64:9a:13:72:83:21:8c:dc:34:a0:9f:92:4f:1d:78:
10:d0:33:7d:1b:ba:b5:72:fb:a1:62:97:ae:89:c4:09:e2:0f:
4e:48:f1:e9:a7:7d:43:a3:b2:4a:7d:e9:de:52:3a:6e:f0:9b:
a7:56:70:bd:59:2a:4c:f3:53:fd:09:87:97:bd:ef:a5:67:18:
20:ef:cf:e6:a2:8d:61:35:55:8e:18:f7:41:9f:b5:78:41:04:
36:3d:43:dd:38:df:0d:9e:01:8a:8f:ae:37:18:65:45:8a:cb:
15:b0:ca:02:89:0f:d6:a9:ef:77:fa:19:e6:97:a9:9a:84:7f:
8d:33:ce:25:b8:4a:5b:7a:70:f1:f1:36:5c:71:ee:aa:fa:44:
79:8d:0d:c7:cc:0d:41:85:d6:ff:96:64:d3:f3:b4:c7:c8:ee:
ec:ff:a6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:22:43 2026 by rpki-client