Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: tCx9jHKinPLPK8jEt9luWf5U+FD3GCQmD5mRDlrnJCM=
Subject key identifier: E8:F8:C1:CA:DB:97:89:05:3D:1A:E5:07:79:5D:91:D4:3B:20:7C:6A
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019E1E6C6BAF08B6CA2FC5DDC0FA4C6EE8C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 0943
Signing time: Tue 12 May 2026 23:01:22 +0000
Manifest this update: Tue 12 May 2026 23:01:22 +0000
Manifest next update: Wed 13 May 2026 23:01:22 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: NoxeG30Ij5PFwBAg5w5432bxHwUPXrd45UenhET/NTs=)
2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:6b:af:08:b6:ca:2f:c5:dd:c0:fa:4c:6e:e8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: May 12 23:01:22 2026 GMT
Not After : May 13 23:01:22 2026 GMT
Subject: CN=e8f8c1cadb9789053d1ae507795d91d43b207c6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b6:f9:fa:60:49:78:c2:3e:40:70:f5:0d:88:
5b:29:cb:33:15:2e:f4:8b:ae:78:f2:0b:bd:e8:22:
b9:c4:0f:0e:6b:23:f6:ff:c7:4c:b0:7d:15:48:6e:
80:3c:78:74:82:d0:51:81:b0:a7:9f:38:33:c6:51:
40:c6:10:d1:fa:de:eb:8e:38:69:e5:46:9c:08:1a:
89:84:04:7a:3d:39:6c:77:4b:bd:e7:51:17:fe:86:
96:95:07:18:ec:42:c5:23:88:c4:f9:fa:65:ca:36:
9a:29:bc:fa:9f:54:07:79:47:1b:dc:38:d6:ee:3e:
97:9d:ab:cb:a5:25:15:a7:db:22:dc:fe:be:95:8a:
4d:c9:96:46:73:c8:17:9c:9a:6e:c2:3e:9d:c0:68:
14:bc:94:4b:f3:68:14:b3:0e:f4:0a:c6:6f:00:ae:
33:5c:f6:65:af:1d:8d:57:4b:d2:4e:4c:da:05:8d:
ed:b8:fb:03:4e:6d:41:7f:94:a9:da:f9:e2:bb:19:
e8:42:5e:31:81:7b:8b:de:43:11:f4:00:57:b7:9e:
44:18:d6:9b:c6:78:52:43:84:92:a8:a5:1d:01:04:
49:1b:ca:e0:bb:d7:54:8f:99:37:5a:02:c8:2a:78:
bd:1a:d2:47:67:ab:d3:17:b4:f5:a2:27:15:ca:c8:
5c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F8:C1:CA:DB:97:89:05:3D:1A:E5:07:79:5D:91:D4:3B:20:7C:6A
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a3:68:a5:92:6f:89:73:71:06:2b:7f:89:1c:bc:c9:d4:b8:
a5:03:fe:ed:c5:2f:cc:50:5f:97:ef:e8:0b:9d:99:3c:0b:a2:
74:95:b4:98:5c:aa:26:67:5d:cc:98:cd:c6:c7:ed:66:69:ea:
31:74:af:36:0b:49:c8:84:d4:43:83:26:35:c0:65:44:eb:ad:
27:88:f3:90:40:d2:cf:b1:a9:61:02:32:8d:c1:f0:83:97:50:
86:30:4d:1c:60:a3:fa:8f:f3:3b:60:27:f1:c2:34:91:fd:00:
0b:0a:40:1a:1a:3c:bc:01:30:a4:0e:f5:b4:9f:fc:11:46:1a:
59:95:0e:a4:82:45:5a:e8:b6:a4:24:fd:fb:d9:c4:4c:d1:15:
37:76:c6:57:0f:00:54:9b:fe:ef:45:66:40:2c:03:a5:46:d4:
b7:39:06:59:e0:fb:94:df:25:10:39:32:33:c8:c1:09:07:7a:
24:6c:d8:31:54:97:2d:b7:e0:0c:f4:8b:58:79:44:cb:ec:b8:
87:11:fb:47:92:4b:57:eb:aa:bb:c8:26:22:5b:39:9a:0f:31:
37:e7:e2:85:35:fd:f9:85:aa:c1:4d:80:d4:9d:15:35:fe:e1:
18:62:82:57:d9:39:af:97:b2:ba:43:32:ab:e8:9e:1a:01:94:
c4:50:37:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:18:48 2026 by rpki-client