Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File: Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier: 6fj3sT2a02d6xmeuw5hDUbw1tSMrvyxcxGQX1OUxsmU=
Subject key identifier: DF:A5:10:ED:D0:DF:CA:B9:11:8B:4B:B9:1E:B7:88:F3:30:38:FB:1B
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer: /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial: 019E1D593A9A759905BAACC6DBF169178E54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number: 04EB
Signing time: Tue 12 May 2026 18:00:47 +0000
Manifest this update: Tue 12 May 2026 18:00:47 +0000
Manifest next update: Wed 13 May 2026 18:00:47 +0000
Files and hashes: 1: 25oZjtsXGt-n2WY2ltVfz0hHWzE.asa (hash: cAJ1A4GbTa/DjrR5J7Hx50xOdea/6PB89hhjqA5MTnI=)
2: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: 8Kp+Caa5YYp/q+bxfkqtWze6FgfHbviwiwI1rnqoq54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:3a:9a:75:99:05:ba:ac:c6:db:f1:69:17:8e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Validity
Not Before: May 12 18:00:47 2026 GMT
Not After : May 13 18:00:47 2026 GMT
Subject: CN=dfa510edd0dfcab9118b4bb91eb788f33038fb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:01:c9:16:54:b5:79:c2:95:30:1b:4e:81:29:
13:13:4c:d4:93:27:19:da:11:ee:92:6d:02:8c:fb:
19:cf:91:fa:19:3b:cf:51:e3:5e:9c:9a:57:41:9a:
c6:05:6d:be:09:9b:e2:57:dd:f1:63:ec:22:92:7f:
75:5c:d5:32:56:e5:fa:82:87:66:c1:07:e5:52:dc:
5e:55:df:44:f3:3d:b4:fc:16:27:8b:e1:bb:4c:98:
3f:c0:43:ce:10:2a:d1:91:d7:76:fe:f4:fa:32:9f:
fc:72:10:8a:0f:6d:3d:fe:46:28:eb:a6:04:0c:51:
df:c2:90:84:c5:20:a9:1c:dd:8b:bc:24:56:27:0a:
51:6c:d9:2c:54:0d:d6:71:d6:50:7f:98:85:7e:37:
fd:16:ca:dc:2c:ce:58:ef:79:58:b4:7c:9c:4c:be:
a2:29:d1:a1:b0:43:ba:93:ca:da:bd:59:09:1d:07:
5c:e0:43:21:0f:d6:46:fc:aa:44:11:92:23:76:3b:
91:77:01:de:d7:20:17:ad:59:da:f3:43:a5:60:d8:
dc:5a:a8:84:21:3b:63:34:65:09:b0:fa:0f:84:a5:
dd:ce:7f:4b:17:84:4f:40:11:07:ef:3b:4c:3f:7c:
de:84:5b:9c:8a:90:df:d7:3c:5c:c7:f6:85:31:75:
04:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A5:10:ED:D0:DF:CA:B9:11:8B:4B:B9:1E:B7:88:F3:30:38:FB:1B
X509v3 Authority Key Identifier:
keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:fe:58:36:da:07:dd:e4:1e:f6:6a:48:35:49:9b:73:10:e6:
7a:9f:f7:98:60:ef:83:27:14:5a:b8:a5:5f:3d:96:c3:11:43:
ed:32:ab:c4:34:77:14:fd:81:fd:f0:ae:2e:87:be:e3:0b:94:
6c:22:2c:c9:12:bf:d6:19:8e:2c:b9:1d:6a:fb:08:2e:9c:65:
74:84:8c:c4:2b:38:d9:07:59:19:35:41:6e:af:c8:dd:92:7c:
3a:7f:0c:21:e8:7e:4c:8a:75:e9:da:97:c3:df:4c:2a:c5:a1:
40:d2:6e:70:65:a3:5d:79:1e:97:04:9e:f0:e4:22:99:45:59:
09:40:c5:e9:4f:6a:fb:94:7c:77:9a:07:ee:aa:7e:0a:6f:e0:
3a:15:72:6b:53:e7:79:da:bf:4d:00:bd:3e:6b:38:65:58:a1:
9e:cc:54:0c:69:01:49:16:64:3d:c5:d6:04:e3:70:44:ce:2f:
da:39:35:0f:90:7e:40:6d:18:ab:6a:b4:fc:a9:bf:49:e2:2a:
c1:f0:6f:31:3d:06:d4:df:f3:9f:4d:df:39:94:9f:bf:b3:63:
1a:ae:8e:95:4b:0e:cd:ca:5d:39:ff:54:66:b8:bb:c7:6f:bb:
97:32:a8:0e:38:70:25:51:8b:c3:77:ed:be:a0:dd:62:5e:bf:
52:74:09:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dWTqadZkFuqzG2/FpF45UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMDlhNGRjMTNhNTMwNGE3YWEyNGJlMWMxNzhiYTQyZTE3
OTJmODUwHhcNMjYwNTEyMTgwMDQ3WhcNMjYwNTEzMTgwMDQ3WjAzMTEwLwYDVQQD
EyhkZmE1MTBlZGQwZGZjYWI5MTE4YjRiYjkxZWI3ODhmMzMwMzhmYjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3wHJFlS1ecKVMBtOgSkTE0zUkycZ
2hHukm0CjPsZz5H6GTvPUeNenJpXQZrGBW2+CZviV93xY+wikn91XNUyVuX6godm
wQflUtxeVd9E8z20/BYni+G7TJg/wEPOECrRkdd2/vT6Mp/8chCKD209/kYo66YE
DFHfwpCExSCpHN2LvCRWJwpRbNksVA3WcdZQf5iFfjf9FsrcLM5Y73lYtHycTL6i
KdGhsEO6k8ravVkJHQdc4EMhD9ZG/KpEEZIjdjuRdwHe1yAXrVna80OlYNjcWqiE
ITtjNGUJsPoPhKXdzn9LF4RPQBEH7ztMP3zehFucipDf1zxcx/aFMXUEUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN+lEO3Q38q5EYtLuR63iPMwOPsbMB8GA1UdIwQY
MBaAFCIJpNwTpTBKeqJL4cF4ukLheS+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9lNDg2MmEtNTExZS00YzBjLTk1MWYt
NjhhZmQ0NzQ1MTQ5LzEvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9lNDg2MmEtNTExZS00YzBjLTk1MWYtNjhhZmQ0NzQ1MTQ5
LzEvSWdtazNCT2xNRXA2b2t2aHdYaTZRdUY1TDRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWP5YNtoH
3eQe9mpINUmbcxDmep/3mGDvgycUWrilXz2WwxFD7TKrxDR3FP2B/fCuLoe+4wuU
bCIsyRK/1hmOLLkdavsILpxldISMxCs42QdZGTVBbq/I3ZJ8On8MIeh+TIp16dqX
w99MKsWhQNJucGWjXXkelwSe8OQimUVZCUDF6U9q+5R8d5oH7qp+Cm/gOhVya1Pn
edq/TQC9Pms4ZVihnsxUDGkBSRZkPcXWBONwRM4v2jk1D5B+QG0Yq2q0/Km/SeIq
wfBvMT0G1N/zn03fOZSfv7NjGq6OlUsOzcpdOf9UZri7x2+7lzKoDjhwJVGLw3ft
vqDdYl6/UnQJ6w==
-----END CERTIFICATE-----
Generated at Tue May 12 21:22:47 2026 by rpki-client