Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: li6wrLn4WMrMJExGBx2p3zzRwsNJtkb9PvQjKK8psjo=
Subject key identifier: 20:D8:EA:E2:57:DB:1E:A1:DA:F8:F3:0F:CC:2F:F2:69:1C:1B:18:82
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 019E1F10F99E1A303CEDF2C269A42C046FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 13EB
Signing time: Wed 13 May 2026 02:01:06 +0000
Manifest this update: Wed 13 May 2026 02:01:06 +0000
Manifest next update: Thu 14 May 2026 02:01:06 +0000
Files and hashes: 1: V4V1l39T5s1HWbLvpZ_dNNrQqrE.roa (hash: 2VhJQ/68VuS0vWM3hQGdKSnDSrR+nJHlsrGkam4iQlg=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: Rjhbpk3aV7mVLVfriygqKTfHaFYlZIoX3iC27wazV28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:f9:9e:1a:30:3c:ed:f2:c2:69:a4:2c:04:6f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: May 13 02:01:06 2026 GMT
Not After : May 14 02:01:06 2026 GMT
Subject: CN=20d8eae257db1ea1daf8f30fcc2ff2691c1b1882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b5:e5:96:93:e1:f4:20:93:ce:32:76:df:53:
90:c0:f2:43:6f:c2:b0:3f:b7:34:2c:e0:33:9c:bd:
bc:69:e3:45:84:75:9c:17:52:98:23:08:8c:8f:14:
51:fd:8a:cf:87:b3:06:6b:c9:4e:21:52:3b:5f:f3:
04:a0:1b:72:7b:36:29:a1:73:ba:5e:5c:68:9f:00:
6a:22:5a:54:23:9f:36:d0:28:36:63:bd:b3:40:ce:
1d:35:fd:0a:c2:16:b9:87:b6:3c:52:8a:5d:b1:f4:
b8:0c:31:fd:4a:e0:ac:70:c8:5e:23:69:e7:56:54:
e7:b6:d0:42:c3:8b:c9:1d:5d:85:18:05:92:8d:84:
9d:cf:11:50:7c:70:95:5b:5e:1e:8f:60:e2:0b:73:
b4:04:83:2e:01:6d:0b:d0:64:ce:da:93:38:80:ed:
ef:06:cc:9d:6a:46:f7:06:d9:1e:a8:05:d1:27:4d:
b5:e2:88:8e:82:8a:4c:df:64:7d:d5:87:70:ac:2a:
64:7f:46:5b:3f:55:ae:b7:79:56:e8:ce:f1:8d:6d:
4c:5d:b7:40:78:84:3b:c6:74:de:05:7f:e4:8f:cd:
34:bf:5c:28:e2:47:c3:76:75:58:cb:c8:e6:a0:be:
9f:10:9e:c2:8f:64:f2:c4:51:a4:5e:a9:0c:04:3b:
6c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D8:EA:E2:57:DB:1E:A1:DA:F8:F3:0F:CC:2F:F2:69:1C:1B:18:82
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ff:1f:1a:e2:b3:58:34:3a:bc:16:8f:47:18:56:23:64:f4:
0f:fa:8a:d1:5f:41:6f:2b:6e:c3:47:95:09:25:cd:6e:4d:85:
be:fc:ca:86:c9:2f:19:9c:4d:92:a8:52:f1:93:69:31:19:0a:
4b:52:67:e4:60:84:cd:a7:0f:a2:9d:7e:70:31:8a:11:3a:c8:
f2:5f:d1:df:7d:ad:cf:d2:a4:9e:a2:32:3e:64:c7:d8:16:c5:
b6:29:b7:ed:0d:ef:d5:48:a6:58:05:48:05:20:fa:f4:9f:f0:
15:fe:8c:90:9d:8c:af:32:ef:f8:98:43:49:67:61:a3:3e:a2:
31:09:3a:f7:bf:25:f7:62:12:c7:82:35:86:97:53:85:1c:4a:
7a:de:7a:da:a6:dd:34:c9:69:c0:f0:51:72:e6:0c:09:25:98:
f2:3d:a0:60:d6:22:59:49:b3:37:96:bf:01:86:8d:2a:f2:ab:
7e:c0:2a:60:8e:14:71:1f:4e:5e:24:83:15:98:d5:c8:8b:c9:
6f:ca:4e:5d:f0:ea:39:95:5c:90:92:0c:21:d4:ec:83:4a:3e:
85:b1:cd:90:c8:91:b6:2e:a6:00:a0:96:b6:4b:47:64:60:02:
34:10:1b:5c:8c:f7:5c:84:3b:08:24:d6:e4:66:10:e7:66:86:
47:fa:8b:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEPmeGjA87fLCaaQsBG/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTJhMGE4MDlkYzNjZDFmYmQ4OTUxYThmODBmNjk5MjVl
MTE5MDgwHhcNMjYwNTEzMDIwMTA2WhcNMjYwNTE0MDIwMTA2WjAzMTEwLwYDVQQD
EygyMGQ4ZWFlMjU3ZGIxZWExZGFmOGYzMGZjYzJmZjI2OTFjMWIxODgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7XllpPh9CCTzjJ231OQwPJDb8Kw
P7c0LOAznL28aeNFhHWcF1KYIwiMjxRR/YrPh7MGa8lOIVI7X/MEoBtyezYpoXO6
XlxonwBqIlpUI5820Cg2Y72zQM4dNf0Kwha5h7Y8UopdsfS4DDH9SuCscMheI2nn
VlTnttBCw4vJHV2FGAWSjYSdzxFQfHCVW14ej2DiC3O0BIMuAW0L0GTO2pM4gO3v
Bsydakb3BtkeqAXRJ0214oiOgopM32R91YdwrCpkf0ZbP1Wut3lW6M7xjW1MXbdA
eIQ7xnTeBX/kj800v1wo4kfDdnVYy8jmoL6fEJ7Cj2TyxFGkXqkMBDtssQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCDY6uJX2x6h2vjzD8wv8mkcGxiCMB8GA1UdIwQY
MBaAFIgSoKgJ3DzR+9iVGo+A9pkl4RkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJLZ3FBbmNQTkg3MkpVYWo0RDJtU1hoR1FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jOGFhMDktYmRmYi00M2NhLTg1MjIt
ZmE3NWNiZTliZWFkLzEvaUJLZ3FBbmNQTkg3MkpVYWo0RDJtU1hoR1FnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9jOGFhMDktYmRmYi00M2NhLTg1MjItZmE3NWNiZTliZWFk
LzEvaUJLZ3FBbmNQTkg3MkpVYWo0RDJtU1hoR1FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbf8fGuKz
WDQ6vBaPRxhWI2T0D/qK0V9Bbytuw0eVCSXNbk2FvvzKhskvGZxNkqhS8ZNpMRkK
S1Jn5GCEzacPop1+cDGKETrI8l/R332tz9KknqIyPmTH2BbFtim37Q3v1UimWAVI
BSD69J/wFf6MkJ2MrzLv+JhDSWdhoz6iMQk6978l92ISx4I1hpdThRxKet562qbd
NMlpwPBRcuYMCSWY8j2gYNYiWUmzN5a/AYaNKvKrfsAqYI4UcR9OXiSDFZjVyIvJ
b8pOXfDqOZVckJIMIdTsg0o+hbHNkMiRti6mAKCWtktHZGACNBAbXIz3XIQ7CCTW
5GYQ52aGR/qLXQ==
-----END CERTIFICATE-----
Generated at Wed May 13 08:16:22 2026 by rpki-client