Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: ewGDK3QslAoHFkCoKBw/OY12QhoBssujXGYPxYweP4g=
Subject key identifier: 97:86:C1:2A:30:2A:3B:45:D6:25:F9:3E:43:73:C2:36:22:6A:CD:06
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019E1EDA342600AF60D900E16EB567E8BEA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0C66
Signing time: Wed 13 May 2026 01:01:17 +0000
Manifest this update: Wed 13 May 2026 01:01:17 +0000
Manifest next update: Thu 14 May 2026 01:01:17 +0000
Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=)
2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=)
3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=)
4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: joR2Jm9EDnApiZNE3Dq/cKXz5AX03Zoi4lcQTOZONeQ=)
5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=)
6: mi7KJXHo-_cgynjrOEYKa7kVD8I.roa (hash: YGaCcIrn+IZQb5Rq3PZQYSYoXxlLsMVa6xxEh3lbzgI=)
7: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=)
8: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:34:26:00:af:60:d9:00:e1:6e:b5:67:e8:be:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: May 13 01:01:17 2026 GMT
Not After : May 14 01:01:17 2026 GMT
Subject: CN=9786c12a302a3b45d625f93e4373c236226acd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:fa:39:0e:84:5a:be:ed:98:64:df:08:1e:4a:
1c:80:48:72:61:1b:91:a7:bf:df:fb:83:ce:e2:dc:
6b:6e:c7:27:c1:06:cf:e4:e5:0b:a2:dc:92:05:f1:
da:40:cb:6a:66:40:59:54:66:d5:6e:84:0b:a5:e6:
a8:43:52:18:45:eb:0d:ab:91:08:fd:33:2d:88:bb:
7e:d6:48:c1:53:63:e2:42:06:59:58:b6:ad:3b:4e:
ce:85:a1:a2:1d:37:f9:bf:64:1e:b0:a0:be:17:b1:
87:ca:b1:33:3d:b0:38:07:45:d9:3a:09:a5:8c:79:
a4:b7:a1:6f:0d:57:cd:6b:75:fb:7e:5a:7d:0b:17:
1f:f9:04:de:ee:6c:7b:5b:1d:ac:49:31:0b:3e:6e:
73:96:f2:9e:1b:36:a9:7b:92:c8:c8:57:63:df:a5:
05:a4:4f:00:88:39:27:63:a6:06:e0:cc:e9:0d:8e:
db:29:56:25:be:09:68:12:d4:a6:99:a5:b9:12:10:
7d:eb:52:80:2a:11:7a:7c:bf:98:66:17:95:5e:91:
51:cf:e9:ff:26:7a:90:f5:7b:69:4a:86:ea:f2:80:
d1:f2:17:d2:40:e3:cf:c8:f7:6c:06:85:be:81:43:
d1:e6:1f:b0:ab:1d:f2:01:0b:1b:42:00:4a:5f:60:
62:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:86:C1:2A:30:2A:3B:45:D6:25:F9:3E:43:73:C2:36:22:6A:CD:06
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:33:c4:29:b9:f8:04:3d:2d:e2:d2:bb:53:d5:c2:7c:94:a9:
06:ae:51:af:9f:55:ac:44:87:1f:fb:fc:34:cd:3c:71:13:a6:
ca:78:06:8e:80:a2:da:41:38:d6:26:71:6d:dd:8c:8b:58:37:
d9:8e:ad:aa:72:73:77:f6:12:26:1d:25:a9:5b:13:0d:90:b2:
ef:4e:b1:63:4d:18:16:55:72:d3:7e:39:1a:de:01:82:79:f1:
e8:3c:cb:dc:89:86:22:c3:30:cb:f5:3a:e2:c3:52:a9:50:96:
4f:3c:33:b9:23:26:38:9a:da:4b:44:d5:25:9b:e4:69:1f:76:
b6:b8:68:11:02:7e:a4:31:04:8e:7f:8c:92:18:0a:51:ae:47:
fb:a7:9d:bb:34:98:44:85:f1:56:a0:75:5f:f3:e0:a3:bb:7c:
39:d0:51:f9:b9:b8:e2:d5:5e:2d:ee:19:c9:8f:e4:50:81:83:
4a:f2:fd:2c:fb:5a:10:d5:cc:1e:51:cd:22:4f:82:9e:54:84:
a7:37:42:9e:d8:4e:24:15:f3:f7:d8:20:0d:3a:20:aa:b7:bf:
f6:8e:5b:4d:b5:8c:0d:88:f6:f1:46:0a:d7:bc:68:79:2b:79:
18:5a:0c:09:68:b9:18:c8:e6:1f:38:7f:a3:f9:20:ae:ec:f1:
e2:1f:f7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:40:35 2026 by rpki-client