Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: yw/Bw3kQloHjSMBvp0eHivirksR6e9Y9dU0GPf/3OkA=
Subject key identifier: 6D:A0:B6:52:D6:07:C5:4A:ED:B2:9C:7F:25:D9:95:9A:9D:E6:84:1D
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 019E1D90C7F0EFF51E9DAF5006A663AAB19A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 1315
Signing time: Tue 12 May 2026 19:01:27 +0000
Manifest this update: Tue 12 May 2026 19:01:27 +0000
Manifest next update: Wed 13 May 2026 19:01:27 +0000
Files and hashes: 1: FLemcIiElnlySDQ8j4MbhOGXKNY.roa (hash: +hFqqy7o9aLIrhPQ+Vl9O2F3JN7zKRwx0wl2/DYV2As=)
2: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: h7ZAD/UFKlhRBUPxaUctkGrF8iW+FiwnJ1U1Sj3H+mY=)
3: zL0BeH3r9AkOxhITJlCW5Ja8LGo.roa (hash: oLz5pL1eqyWTu6AOPoAU4vUbkw5hVQwpWZe1I3Dg04k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:c7:f0:ef:f5:1e:9d:af:50:06:a6:63:aa:b1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: May 12 19:01:27 2026 GMT
Not After : May 13 19:01:27 2026 GMT
Subject: CN=6da0b652d607c54aedb29c7f25d9959a9de6841d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a1:36:ec:36:06:fe:7e:a8:24:ea:25:72:b8:
64:06:92:26:d5:72:d5:c3:08:92:f3:9f:a5:be:2c:
c8:67:b1:8e:5f:b1:4e:9f:8d:6a:a0:f8:ae:a2:fd:
68:e8:3e:15:a2:30:11:5b:e6:0a:7b:ae:a0:df:c2:
2f:e8:1a:ca:aa:66:ef:46:62:8e:96:f2:1b:a4:31:
97:d1:ff:0a:25:d5:b6:1b:a3:a7:d7:0a:65:69:f5:
90:bc:e9:db:17:c3:50:94:00:73:5b:c5:3d:be:46:
25:42:95:9f:46:22:a4:90:34:2b:88:23:9f:bd:6f:
2e:b1:f9:1d:41:24:d5:9f:5b:d1:f9:1d:fb:ea:98:
2b:43:61:98:89:90:be:00:ee:26:60:15:a7:da:f4:
d0:42:f2:f2:59:d4:84:df:1c:02:b4:92:78:18:32:
4d:d1:c3:37:91:10:74:94:69:6e:73:1f:a6:19:23:
a2:f4:8e:4a:2f:a2:59:c7:39:54:36:ea:fc:62:59:
0f:a7:df:ef:ed:8b:d4:d1:0e:1b:fb:d6:75:4f:18:
84:ca:01:52:8d:7e:18:f9:da:fb:81:f3:a9:b4:b0:
5d:b6:eb:a4:c9:04:dc:35:c9:35:e7:74:75:ad:d5:
27:27:52:bf:29:9a:54:36:7f:93:5b:99:06:ed:e7:
15:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A0:B6:52:D6:07:C5:4A:ED:B2:9C:7F:25:D9:95:9A:9D:E6:84:1D
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:b4:5f:23:88:6c:54:74:39:07:76:5e:1f:33:3a:7f:3a:0a:
01:d7:85:ff:17:2e:b5:e6:33:fe:20:54:5a:75:2d:f3:f9:7b:
f9:6b:8f:ba:9d:72:d6:2f:ff:05:41:b1:be:61:ca:32:af:2c:
46:a2:4f:7f:52:e0:25:01:b5:82:a2:3d:0c:a7:c4:1b:6e:fb:
87:db:46:03:10:78:82:03:cd:44:f8:fa:34:a3:28:ff:75:06:
16:ce:6c:26:9c:a6:af:58:69:07:e3:06:e9:b4:cc:a2:13:95:
64:87:36:ff:03:0a:10:fa:79:0d:c8:f4:1a:71:ad:57:ce:10:
ca:cb:ae:24:a2:3e:b7:0b:6a:e9:4c:c3:8f:43:7b:39:ee:ad:
d9:0b:ef:bd:8c:5c:db:65:c1:1f:60:b9:c2:aa:48:03:ff:45:
31:f6:78:87:00:5d:5f:19:df:17:46:c6:da:91:1f:18:ed:31:
5e:30:c9:13:f7:0d:07:05:99:24:b6:3e:40:c9:d6:00:11:27:
3c:9e:92:b8:e1:72:e4:ba:89:40:9a:26:7d:29:8b:5c:0f:87:
32:d4:35:c6:8c:06:f3:90:29:de:6b:4e:17:28:61:74:84:ca:
6e:70:87:b0:85:8b:f1:de:39:cc:93:fa:ae:9e:cb:52:92:3c:
16:e2:a3:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:06:38 2026 by rpki-client