Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: UR6HxpHeKtYfb9WoYpT7wNffdFnGyqnX4Pq1sAv1gZc=
Subject key identifier: 0C:67:09:C5:AC:41:BF:AC:43:B1:54:78:03:08:38:8A:8C:F5:82:1F
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 019E1EA3281B45A1C144FC69CB6565473BE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0CEE
Signing time: Wed 13 May 2026 00:01:09 +0000
Manifest this update: Wed 13 May 2026 00:01:09 +0000
Manifest next update: Thu 14 May 2026 00:01:09 +0000
Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 7Ukv5LDrS87vjtoXmCZQVbuUcQPq6Wsv9csYddBydE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:28:1b:45:a1:c1:44:fc:69:cb:65:65:47:3b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: May 13 00:01:09 2026 GMT
Not After : May 14 00:01:09 2026 GMT
Subject: CN=0c6709c5ac41bfac43b154780308388a8cf5821f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2e:44:b9:25:a1:26:5e:18:82:c7:35:f2:2d:
17:d5:8f:f9:8f:25:a2:a0:8b:6a:90:51:52:09:d3:
df:67:03:12:c9:d2:7e:2b:d8:7e:dd:c1:dc:bf:cc:
43:b8:4c:1a:6a:9b:6b:71:b5:76:df:91:43:47:91:
ab:eb:39:df:c4:4a:5f:76:cd:43:ff:50:25:0a:35:
75:6b:cd:79:b1:72:f9:bd:1d:fd:ee:50:81:62:ed:
30:44:0c:8b:ba:f4:71:14:88:66:a7:7f:13:15:2f:
03:74:f1:8b:22:14:f8:f1:58:31:cf:69:92:93:49:
9b:48:68:07:e2:97:6a:58:07:14:bd:22:d5:24:51:
08:5b:3d:e9:4f:2e:f7:b1:8b:a4:25:28:b6:97:04:
60:53:9e:c1:ca:21:2b:8d:a8:81:bc:2d:9c:18:a4:
1a:00:bf:17:fd:b5:ab:80:62:10:d8:21:52:81:b4:
62:ac:d9:e4:93:1a:6d:37:0a:a3:aa:87:a7:3d:be:
a1:86:69:c0:d6:5b:0c:ca:64:14:17:bf:31:62:36:
50:6a:ac:c8:7b:26:1f:5f:fd:1b:7c:34:e4:a3:e7:
58:d1:43:f9:87:78:83:1a:52:db:75:b3:8e:d2:ed:
ad:ef:3b:1c:a5:85:08:78:ff:db:2b:03:4d:93:4f:
28:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:67:09:C5:AC:41:BF:AC:43:B1:54:78:03:08:38:8A:8C:F5:82:1F
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:fc:ab:20:52:f3:e1:ea:98:8b:f4:cb:c9:55:96:3e:9f:d4:
94:75:fc:9d:e3:c1:d5:27:8c:52:05:d3:49:a3:56:6a:01:40:
75:8a:63:c3:7a:a3:65:27:2b:f1:55:2a:90:7b:ab:3a:75:db:
31:f9:74:63:7f:63:6c:37:46:0f:f9:64:37:ad:1f:94:91:7a:
0f:ef:44:10:34:4b:1c:a2:77:d4:7d:90:0d:cc:4b:47:91:ea:
a9:f4:57:1e:9f:db:d4:f4:9c:22:fb:64:b6:5a:0b:d0:eb:17:
03:4b:a8:16:58:61:4a:59:db:7f:00:2f:e5:5b:dc:83:10:b8:
c1:60:56:65:52:8f:5a:6c:53:54:d5:4b:df:15:c1:31:79:2a:
a6:e2:24:3f:8e:84:ea:e5:69:95:53:c5:c7:05:77:5e:0d:bd:
46:cb:90:15:52:d8:41:8d:5e:05:16:30:4f:c9:99:ce:20:59:
3c:cc:e3:70:eb:3a:4d:f8:d3:de:c3:81:55:5c:26:2c:6d:fb:
20:28:20:17:a3:de:70:8c:00:bf:5f:a8:d3:e0:3c:aa:69:e6:
18:13:fc:a2:ba:b0:88:12:eb:5d:bc:f8:c4:13:59:ee:ef:09:
ce:d9:fc:d3:d5:2d:4c:3d:87:ed:f3:79:50:67:b0:6f:ee:6b:
47:61:56:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:41:37 2026 by rpki-client