Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
File: iDg0C7z4K84GXO6zeMuqR7mjLN0.mft (raw, json)
Hash identifier: oHOx1Ib8tGeR9PzAKaMSZjwiiduC/1jyjWp3eHrNPRY=
Subject key identifier: CD:5A:8C:D2:8E:D9:16:12:C4:39:F3:53:B3:20:4E:05:72:B2:CB:54
Authority key identifier: 88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD
Certificate issuer: /CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd
Certificate serial: 019E216CFEF71C41744169668CE527F7456E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
Manifest number: 0154
Signing time: Wed 13 May 2026 13:00:51 +0000
Manifest this update: Wed 13 May 2026 13:00:51 +0000
Manifest next update: Thu 14 May 2026 13:00:51 +0000
Files and hashes: 1: 82yqy0aGJzKzR4R_K7jhO-MXZ48.asa (hash: QLpjtYyVJWNod7Hjm1qgZ6D0o3OhLnBCKHSjT6fQXEI=)
2: iDg0C7z4K84GXO6zeMuqR7mjLN0.crl (hash: C5lOqreLDD6KqOd3Q1cRnTTBIeRO0kirOPSL++SCjkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6c:fe:f7:1c:41:74:41:69:66:8c:e5:27:f7:45:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd
Validity
Not Before: May 13 13:00:51 2026 GMT
Not After : May 14 13:00:51 2026 GMT
Subject: CN=cd5a8cd28ed91612c439f353b3204e0572b2cb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:25:1f:c7:27:a9:02:84:a7:07:af:47:3e:79:
78:d7:e9:0a:a9:2f:eb:7c:62:92:d0:bc:fb:b5:c2:
e9:b6:41:40:0d:13:b1:4d:6d:a1:e9:d8:6a:09:11:
68:a9:2e:65:e7:40:b1:a5:a2:d1:d0:c4:94:75:f4:
c3:c3:0a:e7:21:48:3f:bf:ea:6a:68:04:01:00:f3:
f6:ba:f8:18:52:cf:6d:f0:f7:0d:4a:77:2a:04:2a:
91:93:34:c2:31:aa:87:95:81:59:e6:d2:b7:10:82:
32:18:2c:15:b5:34:e5:1b:92:d8:ce:9c:0e:78:b9:
44:f4:e5:f2:00:18:7e:75:f3:1c:69:0f:1d:48:db:
3e:ec:ef:14:63:ba:f1:f0:13:60:46:5a:10:85:55:
06:7d:82:fb:fe:2a:d0:fe:15:38:30:76:43:0d:a6:
d3:ab:48:37:d6:8e:4c:68:fa:0e:b2:6c:79:17:07:
db:53:a0:18:74:04:98:41:a7:b6:1c:9e:1e:96:5a:
93:ea:a0:75:99:bb:91:ed:93:63:99:9a:b1:c9:8d:
ca:83:85:34:12:8d:53:b4:59:34:4b:c0:fc:98:65:
5b:d8:0d:e1:62:55:46:19:29:79:d0:9c:c4:ab:0a:
48:74:88:a4:a4:a8:da:f4:c1:65:1d:27:97:e7:08:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5A:8C:D2:8E:D9:16:12:C4:39:F3:53:B3:20:4E:05:72:B2:CB:54
X509v3 Authority Key Identifier:
keyid:88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:3e:0b:a1:31:64:9a:c9:8c:1c:66:7c:ec:66:af:57:21:62:
5a:2e:28:f5:ba:b4:84:83:a7:f0:2d:15:24:e7:2f:7b:da:7d:
d8:95:bc:36:0a:5f:a4:93:a6:65:74:62:6d:a4:70:fc:a0:d9:
6c:5b:ee:2a:89:6d:66:b3:c6:29:0b:03:bc:bd:25:eb:9b:e7:
ac:66:09:3b:90:31:20:f4:08:54:45:24:63:d5:18:29:b0:89:
83:9b:6b:c7:09:fd:56:b6:1b:46:8d:98:cd:01:6f:40:26:b1:
10:01:ba:43:d5:9e:a2:ea:a3:b9:0e:94:65:1a:19:34:c2:44:
dd:f3:4c:6e:88:b9:a5:ab:8a:4e:f4:6b:37:8b:d6:11:9e:98:
31:4d:65:84:8f:59:a4:79:9f:b7:29:da:8c:08:c8:92:b2:f7:
f3:7e:63:36:ae:fa:99:7e:97:06:42:54:e6:7e:14:fc:01:57:
6c:69:2d:58:e2:e8:b9:1c:fb:2a:e0:aa:fc:18:fc:f1:5a:b0:
ae:bb:40:59:56:e6:e9:c4:80:c1:5b:5e:70:fa:3a:76:ae:0f:
f7:8d:b5:24:ce:1c:77:fd:85:9f:67:c3:db:2c:01:32:08:57:
42:ba:2f:fd:50:43:24:60:70:6c:ec:5c:dc:f6:0d:42:30:bb:
ef:4d:98:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:12:52 2026 by rpki-client