Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: FIIX5j4610wm1ZC4+R8sm8iTaDFC2HfG2SJShAwhCJQ=
Subject key identifier: 53:19:D8:F1:D2:D6:E6:4E:6B:C8:A9:1D:8A:A4:05:82:13:48:2D:11
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 019E1F7FB0B254C25E2DE5DC863995666990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 04:02:02 +0000
Manifest this update: Wed 13 May 2026 04:02:02 +0000
Manifest next update: Thu 14 May 2026 04:02:02 +0000
Files and hashes: 1: FzaSctWTm436xTaHu7cLIoR3zuI.roa (hash: ZWQNCmBRzSOXikzbY8uxPHONXN2ergkv72vrvK6pGEg=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: MUZOLjQYF0FSJCfXxS4TZ9+rHJmMVT0uUP2M2Kgptc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:b0:b2:54:c2:5e:2d:e5:dc:86:39:95:66:69:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: May 13 04:02:02 2026 GMT
Not After : May 14 04:02:02 2026 GMT
Subject: CN=5319d8f1d2d6e64e6bc8a91d8aa4058213482d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:df:a6:ce:01:f2:df:cd:93:5f:46:f0:d1:
2d:6d:04:8a:9d:da:fc:83:a8:38:fd:4c:70:02:21:
dc:04:02:54:20:0b:8c:ab:87:9f:03:6b:45:35:75:
c8:d6:44:33:e3:41:23:79:37:38:54:1b:75:86:3e:
47:99:b5:0b:3b:2f:22:f2:2c:9a:10:dd:67:bc:fb:
9f:7d:62:d9:0b:eb:29:fb:c1:b0:5e:c5:a5:34:62:
e0:05:7b:94:20:04:12:3d:3b:60:56:63:c0:6c:23:
d8:48:93:80:48:68:32:24:e4:2b:05:7b:62:cf:b5:
63:6b:67:c4:5d:7d:27:b5:79:e3:d9:f0:97:5f:bc:
1c:01:af:68:64:5c:ca:4e:71:93:62:67:1c:b0:4f:
ee:64:6c:d2:78:ad:9f:6c:8b:b5:db:b4:37:11:a9:
3a:8f:0d:61:29:ea:9d:48:5e:dc:33:6d:43:cb:03:
f7:42:8d:5b:97:91:1b:a3:61:43:c7:74:ce:70:53:
92:54:9b:67:c9:a7:08:bf:e0:2b:80:ec:84:13:4d:
f2:b4:99:a1:ed:02:40:d0:80:da:2a:5a:8f:4c:f4:
bf:cf:73:7d:10:c6:33:d5:f6:cb:0d:eb:2c:c6:6d:
bc:e0:3c:39:ac:4a:bd:6d:b2:8a:45:b3:59:e6:56:
27:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:19:D8:F1:D2:D6:E6:4E:6B:C8:A9:1D:8A:A4:05:82:13:48:2D:11
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:3a:83:1f:18:50:ac:3f:fb:5f:b7:05:21:d9:90:e3:00:c3:
26:42:ad:33:76:06:2f:0d:b4:4d:91:ef:28:fe:6d:37:2a:1e:
4e:ca:ae:18:99:9d:04:ac:d4:ea:dd:63:9e:15:a9:1d:97:69:
ce:c2:10:de:ac:dd:a0:91:7b:a1:74:a3:07:92:fe:f2:03:92:
5c:9c:ef:e0:9f:ed:89:d4:58:fb:88:58:3f:f7:4a:81:05:23:
58:d1:26:f2:fc:78:27:51:83:52:00:2d:e0:6c:42:5e:37:e2:
a9:9f:50:02:08:96:17:44:d6:7a:e2:ee:5d:aa:aa:50:5d:85:
b1:13:b5:dd:0e:dd:39:0e:25:df:e6:7e:7a:ba:0f:77:98:30:
ac:89:38:ff:64:91:10:50:b6:5c:8f:c1:ef:c5:b5:9f:6b:75:
31:4f:66:b1:ea:8d:0b:da:03:02:15:1c:6b:c5:5f:e3:62:8e:
f0:aa:06:96:67:ca:56:ca:50:54:3b:d2:4a:db:fe:02:44:b5:
38:f6:bd:04:b0:23:c7:ad:7a:65:f9:4e:47:20:9b:1d:97:97:
d4:e8:b9:fc:1a:74:9e:c2:64:4e:ff:ea:4c:13:4a:86:bb:92:
ee:8c:50:75:ac:e6:b3:fa:74:f1:50:d0:a7:e6:d7:83:fb:b1:
34:47:9d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:00:11 2026 by rpki-client