Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
File: IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft (raw, json)
Hash identifier: e/FLRhwqzWQ1Z8Z22kj8twnibd+Vh4EaSpv25kIFehE=
Subject key identifier: 7F:0E:22:9F:D6:86:84:1D:AD:BE:85:65:EA:29:44:BA:09:95:89:37
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 019E1EDA6D9CB2B02373A4A0B6222D8D2BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
Manifest number: 08F7
Signing time: Wed 13 May 2026 01:01:31 +0000
Manifest this update: Wed 13 May 2026 01:01:31 +0000
Manifest next update: Thu 14 May 2026 01:01:31 +0000
Files and hashes: 1: IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl (hash: ktKRa6ptu5xEnf7gcq1paF9rymwTuBz2vhN5+cBGI7o=)
2: hwKJwCCAFCL_7LuTGUs9t1cSL7E.roa (hash: 8W8T46xmoGGEFuN0xJIwYy5B+d+w5bYaaExN07s/4nM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:6d:9c:b2:b0:23:73:a4:a0:b6:22:2d:8d:2b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: May 13 01:01:31 2026 GMT
Not After : May 14 01:01:31 2026 GMT
Subject: CN=7f0e229fd686841dadbe8565ea2944ba09958937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:da:88:dd:63:8a:d3:f8:40:8f:57:c4:dd:80:
61:7e:6b:fd:12:4b:55:e3:0f:af:a2:36:03:3d:ff:
e6:c7:46:f2:c1:30:d2:71:69:ef:4f:53:7b:1d:94:
72:de:98:27:19:fd:92:5f:79:21:d2:fa:fd:b7:48:
7d:5b:8f:62:3d:28:0d:7b:c4:9c:6a:a8:ea:b1:28:
aa:a3:1c:4a:3d:a4:d7:15:76:93:32:e7:4e:79:f2:
82:f4:71:bf:2d:71:17:cb:94:fa:a0:55:10:74:59:
f3:c1:15:e2:f5:09:76:c0:a5:48:aa:7c:b7:94:bb:
00:07:12:26:24:9d:8f:f8:5e:c0:23:df:84:02:2f:
58:44:7d:50:66:d5:6f:06:d2:20:1d:23:56:e5:8e:
38:ed:0e:a9:09:c8:fd:7b:af:b8:7f:26:50:72:90:
9e:ee:4e:d8:12:2a:11:1a:47:c7:ca:9f:7b:de:5c:
0f:a5:b6:5c:b9:7d:ba:bd:7b:50:b1:17:cd:8a:da:
9c:25:39:3a:55:b6:cd:3b:b8:11:e1:9b:31:57:b8:
43:a8:c1:7f:0d:30:cc:9b:66:82:58:d9:ea:de:d6:
0f:c1:50:39:35:a3:29:90:40:b5:40:a8:4c:b6:62:
2b:1f:95:62:ff:2c:b3:a0:00:50:72:f2:68:d3:24:
19:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0E:22:9F:D6:86:84:1D:AD:BE:85:65:EA:29:44:BA:09:95:89:37
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:0f:6f:a6:04:49:bf:f3:54:74:af:92:b0:34:17:c6:92:e1:
d6:0a:7f:ba:c0:c4:ab:07:28:4d:02:ba:40:dc:43:34:fc:4f:
65:4c:e3:2b:a8:cf:e1:b4:63:c5:bc:e1:c7:fb:92:ae:eb:79:
c9:bc:57:e3:71:28:78:f3:7f:0e:a5:93:2c:82:0a:33:d4:50:
0b:76:40:ee:cf:24:41:aa:d9:44:9b:40:e0:d0:67:ec:e0:26:
29:c9:70:ce:be:fd:e1:21:ee:27:df:73:cf:6f:43:09:f9:d1:
2b:28:be:a7:17:f5:b6:2f:b1:e3:e4:3e:2c:60:ee:b2:73:8d:
35:d9:2a:d3:bb:af:e5:4d:65:96:7d:19:04:c7:d4:53:3c:6e:
42:9a:13:e6:fd:93:5b:fe:93:8e:6e:eb:eb:f5:5f:f0:1b:22:
44:e9:10:d4:4b:02:d0:2d:76:31:b2:5f:b6:1a:9d:b5:47:24:
7d:71:d5:99:eb:74:ee:87:78:5e:df:29:9a:d5:f9:e5:22:f7:
59:b4:b3:2f:e0:71:55:10:94:40:92:73:df:58:03:ec:68:9f:
dc:25:bd:af:cd:7a:f0:14:1c:01:72:77:0a:3f:fc:06:53:73:
aa:8b:b1:b3:d9:12:ca:a7:16:75:70:b5:19:b0:86:88:bf:4f:
b9:7d:84:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:32:02 2026 by rpki-client