Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
File: iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft (raw, json)
Hash identifier: 2QkaZ+3wLEUiNywAVbZWXIcgj0Zn6tIwH5VekQFoX8o=
Subject key identifier: 01:99:06:0E:39:AA:90:BD:6D:5E:89:8E:8B:6D:DC:BB:CC:BA:1B:22
Authority key identifier: 88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
Certificate issuer: /CN=887fa37371d7d4593ba290ef45669ea0de293782
Certificate serial: 019E1DFE6EB54D16C653FDE5900D5E9AD9BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
Manifest number: 0A28
Signing time: Tue 12 May 2026 21:01:14 +0000
Manifest this update: Tue 12 May 2026 21:01:14 +0000
Manifest next update: Wed 13 May 2026 21:01:14 +0000
Files and hashes: 1: iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl (hash: 9XfS3HuyUFPaVs0p7yV8IxAxuH+TdbVPAZCGqbiRBTc=)
2: tFxvsrCqJ_cpCZ3yrGcf9YiNSVg.roa (hash: he9pYZaiWZg80bEFSYp2yYFaMXPObGV75JnhpVutWqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:6e:b5:4d:16:c6:53:fd:e5:90:0d:5e:9a:d9:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887fa37371d7d4593ba290ef45669ea0de293782
Validity
Not Before: May 12 21:01:14 2026 GMT
Not After : May 13 21:01:14 2026 GMT
Subject: CN=0199060e39aa90bd6d5e898e8b6ddcbbccba1b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:84:e7:7b:e3:3c:3f:47:47:72:62:f6:fe:
7b:0a:ab:db:59:2c:37:c6:af:58:29:cd:16:91:2b:
24:17:69:94:4c:be:3f:6f:84:98:6d:90:63:b8:b4:
09:4f:dc:3d:08:dc:02:4d:6e:53:b2:6a:57:64:51:
33:0e:f4:14:97:cc:34:45:38:a6:72:fe:24:1a:2b:
56:0c:d3:fa:38:36:cf:fd:c8:9f:fb:f3:d2:f8:f3:
d0:42:1a:fe:48:bb:76:12:89:65:1d:1b:56:36:c7:
34:08:da:73:e7:c6:3d:b2:e7:c1:ac:03:dd:e5:92:
f0:9c:1a:21:6a:0d:ea:e8:d0:ad:c9:72:a8:a4:2c:
d2:69:21:75:ff:0f:2f:85:f1:76:39:9f:6b:a8:b6:
3f:70:00:83:fe:09:b9:37:26:6a:21:54:df:f0:ac:
c8:9b:50:0f:5d:3c:7a:e0:20:44:f7:b9:4d:a2:ee:
91:1e:e7:f0:e1:88:ba:ff:04:04:b8:89:75:31:b0:
33:0c:70:6a:11:b4:13:2b:a9:a9:10:0b:bd:16:09:
54:58:be:4e:10:8d:e9:1f:5d:47:70:aa:78:21:33:
7e:c6:8c:52:e9:78:75:1e:01:00:ec:64:77:6d:a8:
d6:af:eb:14:db:11:7b:94:64:53:1c:d7:ad:98:6d:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:99:06:0E:39:AA:90:BD:6D:5E:89:8E:8B:6D:DC:BB:CC:BA:1B:22
X509v3 Authority Key Identifier:
keyid:88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:86:2c:ad:75:5a:47:b6:a5:79:15:97:9e:b5:67:53:38:b5:
15:ea:b0:ed:12:21:1f:8b:41:44:e5:ee:cc:16:85:26:ac:0c:
35:12:f9:7e:f9:a3:ed:db:53:48:83:41:a7:19:a9:d2:0b:dc:
d9:c8:cc:96:a5:75:96:46:52:dd:02:07:2a:26:7c:b3:04:6c:
21:e1:10:c9:79:1a:67:89:c2:d7:13:40:6a:f0:02:5c:93:f6:
2d:7a:69:30:ee:35:fa:c8:2c:8d:be:85:af:39:28:f7:74:15:
87:a8:a6:8e:a2:86:67:40:a8:82:e7:7a:e5:29:86:11:2d:82:
86:bf:bd:c0:b1:df:46:03:01:62:96:e2:ba:5a:7b:45:3b:b1:
ed:ba:b3:56:a9:18:5f:9d:a6:99:72:7f:00:f4:86:9d:17:d1:
d0:48:fb:3b:ba:60:d0:4d:8f:9b:4c:f5:2c:de:69:6a:e7:a2:
48:8f:ce:4f:8d:60:b4:ce:b6:dd:c5:52:63:cd:a9:40:9f:ec:
3f:c8:d6:dd:3d:2b:cc:06:a0:9d:6f:37:a3:13:f1:58:23:20:
7d:08:ce:2c:0b:67:62:1c:53:9f:5c:c1:26:f7:c2:9d:df:8b:
fc:6a:36:dd:af:21:58:30:75:a8:da:e1:7b:7d:cc:f0:a3:a2:
f3:38:c4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:13:44 2026 by rpki-client