Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json)
Hash identifier: spMJChcQVbnV6VpjjhV4ORpAEN6EnS7rzHdYiOWq4Hs=
Subject key identifier: FE:02:AA:A2:30:DE:4E:2B:C8:F0:4B:88:44:B7:98:9C:A8:2C:A2:FF
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 019E1DFDEB6A50E9E8085E850043771A5294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
Manifest number: 18DD
Signing time: Tue 12 May 2026 21:00:40 +0000
Manifest this update: Tue 12 May 2026 21:00:40 +0000
Manifest next update: Wed 13 May 2026 21:00:40 +0000
Files and hashes: 1: bze-DpbDaFlTujNEYrBpzXK9-lM.roa (hash: ooe09J/1o8+6+gKFLqTffzTatPXG8lw2mIe4kZHRs+0=)
2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: 7cFSpgcgMP2XXsHCPkH2Na2V6U5GfrHfgaCAlOJS1IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:eb:6a:50:e9:e8:08:5e:85:00:43:77:1a:52:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: May 12 21:00:40 2026 GMT
Not After : May 13 21:00:40 2026 GMT
Subject: CN=fe02aaa230de4e2bc8f04b8844b7989ca82ca2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:12:f8:c3:80:ae:43:64:1c:d6:e0:6b:13:c9:
b0:ad:7d:7f:87:4c:af:9b:58:90:a2:13:61:fd:e9:
b0:8b:61:a7:8d:52:35:91:d0:41:1d:3a:03:dd:12:
c2:d1:ac:9a:4c:35:0c:85:6c:8a:63:4d:1c:bf:d3:
41:29:41:84:9e:38:1a:c3:87:a8:48:11:63:35:39:
87:a4:ee:9b:60:78:cc:4b:e4:5d:55:dc:30:c0:e7:
46:82:69:d2:27:7c:37:41:58:78:23:5a:04:04:31:
05:ed:44:7c:a3:9d:fb:64:46:ab:d4:d9:39:c6:60:
1a:dc:3c:97:40:d9:80:9a:72:1c:38:07:84:a2:fa:
4c:07:4e:0b:6b:9e:b5:90:6c:85:ac:57:6b:69:3b:
3d:65:7f:9b:c7:e3:86:da:69:f7:9d:05:e1:d6:8e:
74:52:a4:56:f0:3e:64:35:e1:65:b5:68:d3:81:9c:
c4:48:ba:69:29:d9:63:b5:c2:10:62:aa:51:62:3a:
80:1e:82:87:c8:2b:f5:8c:44:73:f6:32:ce:79:c8:
14:1f:02:2b:1c:75:c8:0f:88:bc:91:8f:f6:93:12:
e6:44:7b:ea:d4:e7:91:27:99:4b:ca:8f:30:f5:62:
90:99:ac:cb:6d:8b:be:ae:8a:ca:f6:8c:cc:c7:c0:
1b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:02:AA:A2:30:DE:4E:2B:C8:F0:4B:88:44:B7:98:9C:A8:2C:A2:FF
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a5:20:8f:91:cc:48:5c:b7:b8:44:ae:2d:02:09:b5:40:e5:
a9:c7:b2:9a:24:7d:8a:72:71:7e:58:34:05:1d:a5:7f:99:92:
1d:76:91:cc:8a:ac:ff:71:eb:85:54:11:0c:47:81:e9:93:d3:
53:fe:2b:9c:9b:39:d4:28:46:3f:e6:ea:f7:e2:c9:69:3f:5e:
fe:e7:a9:93:dd:fa:07:bb:e7:ee:d6:aa:1a:aa:48:2e:45:fa:
b5:ed:63:2c:40:37:f5:4f:11:9b:cd:ed:ab:a2:b5:3c:5f:85:
ba:fc:84:98:83:f6:82:4a:30:b9:c5:fe:84:07:f8:db:0d:29:
1b:36:c2:ee:3a:b1:9f:d0:14:a2:a4:48:01:d8:f7:b8:c2:e8:
68:24:d5:34:26:7b:c3:92:4c:3d:03:4b:f0:81:79:49:d6:89:
07:23:28:14:82:7a:b6:c5:f0:83:b8:30:84:72:52:bd:c8:12:
f6:22:70:fb:fc:5b:ec:f9:ba:fd:20:49:e4:5b:5a:32:76:c0:
25:e0:ee:35:e8:fb:65:d7:57:1c:45:16:83:e7:f7:68:a6:5e:
e4:0d:04:aa:3f:2c:de:97:73:d3:09:e4:bc:59:0b:60:aa:cb:
86:a1:b6:8e:50:a0:02:5b:91:c0:da:0d:6f:c2:71:2e:0a:46:
a9:d0:0b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:56:28 2026 by rpki-client