Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: IOUPGdPAJAnyVkPbFXPe6XHNtP5y9OwFBIAI6n6VFZQ=
Subject key identifier: 76:2A:50:A0:9C:60:DE:D5:A3:CE:72:57:D4:DA:C7:05:06:30:D6:20
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 019E1F7FBB9F5983EA6646D887C620729F0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 10E9
Signing time: Wed 13 May 2026 04:02:05 +0000
Manifest this update: Wed 13 May 2026 04:02:05 +0000
Manifest next update: Thu 14 May 2026 04:02:05 +0000
Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: fQxCQAhkD0eTdPu6f9TK3jIc4xlM0MxGtclIdg0a+HQ=)
2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:bb:9f:59:83:ea:66:46:d8:87:c6:20:72:9f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: May 13 04:02:05 2026 GMT
Not After : May 14 04:02:05 2026 GMT
Subject: CN=762a50a09c60ded5a3ce7257d4dac7050630d620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f4:3d:1d:52:f8:46:55:ca:3e:53:5d:bf:e9:
c2:2d:f5:e5:11:ed:e9:8b:b3:ac:94:35:c9:70:71:
e0:b6:27:01:07:a8:66:a5:7e:aa:91:0e:dd:12:9f:
88:b1:47:af:45:48:f3:ac:13:0f:87:75:03:53:e3:
dc:0f:8e:79:50:52:89:a7:b7:55:9e:b0:ab:b2:e9:
56:47:19:94:49:38:a3:ea:fd:30:ec:ad:91:f1:04:
99:94:74:1b:ff:e5:45:f7:e0:a0:ef:f7:4a:b1:28:
2b:8c:d8:ca:7c:35:b4:23:77:32:74:ed:0a:b2:f6:
06:1b:40:15:e9:5f:9a:24:72:a4:56:cc:fc:b7:7d:
0a:18:4e:0c:42:76:7b:d3:33:77:c9:39:ab:53:51:
44:ea:9f:ba:24:21:b5:bd:c2:07:df:75:9a:6d:95:
63:a1:e8:8b:ca:a6:a3:37:35:c1:3e:a5:04:e7:aa:
6a:57:e8:d2:bf:a8:75:a4:d1:2e:92:fb:33:40:c4:
aa:79:5b:ce:6c:dd:37:ca:b3:6a:97:b4:d0:5f:51:
54:d4:ab:77:dc:66:60:d9:d9:76:a0:07:c6:aa:33:
65:b1:ab:f7:cc:5a:de:4c:d2:c6:25:f8:9b:e4:56:
c9:21:3b:9b:77:9d:5e:bc:1d:e3:85:b1:be:82:d5:
ce:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2A:50:A0:9C:60:DE:D5:A3:CE:72:57:D4:DA:C7:05:06:30:D6:20
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:0a:b9:ff:47:7b:42:87:37:ed:96:fc:0e:b3:51:70:fc:16:
7c:31:fa:10:b4:ff:cd:78:53:29:53:04:a0:7d:b9:bc:2a:51:
ec:fd:f7:1d:0f:cf:ba:d8:a9:d2:18:f1:f8:09:d7:cf:fd:ab:
68:26:9d:30:85:d2:08:3a:99:c1:4b:ba:04:72:86:2a:cd:a7:
c5:4a:31:f6:c6:e3:ca:bb:f0:a1:91:cd:15:8e:4e:72:2b:cf:
e0:95:ce:8b:78:de:b3:36:85:6a:10:c1:fc:42:98:85:c7:cc:
38:61:1c:e1:f5:36:d8:09:c2:9d:ee:2e:60:07:85:93:ca:af:
eb:c5:b1:65:9b:06:3a:6f:2f:7d:3c:94:e5:4b:6d:57:77:2c:
3c:56:28:80:85:76:12:b1:08:e3:84:5a:bf:cb:3d:80:b8:04:
ba:32:3c:fb:e0:5e:b4:7a:0e:65:69:3f:00:2a:7a:37:f5:dc:
aa:30:d1:2b:8b:f0:98:ba:ee:24:19:79:e8:34:7e:d5:0a:99:
19:38:65:1d:77:81:44:cf:73:0b:f0:4a:06:4a:8b:6f:d1:ec:
89:1d:39:6b:0a:a1:a6:0d:40:52:46:6e:48:30:5f:04:ff:2d:
cd:2c:0b:ea:bd:07:66:a6:5a:c8:ca:99:d4:0e:20:c3:f2:39:
58:e2:60:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:34:40 2026 by rpki-client