Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: th6QTbf+tkcMX1+oPhrxpLECGaETHygyevmOtzktRug=
Subject key identifier: 42:A0:33:FA:68:1C:97:E2:29:9C:24:C5:D1:9B:D1:D6:1B:40:C8:89
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019EBB0F8778255BA6E946E519B02397F107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 169D
Signing time: Fri 12 Jun 2026 09:00:17 +0000
Manifest this update: Fri 12 Jun 2026 09:00:17 +0000
Manifest next update: Sat 13 Jun 2026 09:00:17 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: SmvEU1RzovsJmFQ9vEdb0mgO7/UHAgY1ok0ixULErHI=)
2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=)
3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:0f:87:78:25:5b:a6:e9:46:e5:19:b0:23:97:f1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Jun 12 09:00:17 2026 GMT
Not After : Jun 13 09:00:17 2026 GMT
Subject: CN=42a033fa681c97e2299c24c5d19bd1d61b40c889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b7:7e:ab:64:23:b2:0c:f5:a6:6a:96:85:07:
9c:10:23:47:06:3d:af:b7:dd:f8:9a:d2:65:2e:1e:
70:2b:d3:bc:c9:82:3f:be:22:56:5d:04:15:29:99:
fd:c3:7a:70:41:e2:01:c2:e0:63:40:23:a2:de:17:
d9:a3:e1:0f:c0:e7:04:dc:62:a7:98:f3:6a:31:38:
c5:d4:12:3d:08:cd:bb:eb:08:c0:be:da:74:1e:e9:
b7:1d:09:b0:8f:48:81:23:f3:71:2d:f3:28:26:5a:
b8:49:e7:ce:20:a8:79:04:f0:0c:ba:c9:cb:b9:77:
61:c0:c8:e9:29:73:df:62:4e:a8:25:6a:7e:6f:2e:
f1:62:df:99:44:51:0d:0a:d5:4f:82:2f:fe:0e:14:
84:e3:a9:05:00:b6:32:39:de:b9:ad:ac:c0:62:da:
c5:e8:b9:60:5a:76:33:4a:1b:5f:e2:44:2f:fe:7f:
1a:43:a9:e6:b2:d6:27:24:a9:c0:70:d9:dd:e4:97:
47:bc:f5:51:b5:64:9e:66:c5:1c:0c:14:a6:cb:8d:
fb:38:34:ea:e7:6e:50:53:35:48:fa:2a:f6:2a:a9:
26:f2:a3:dc:fa:01:d2:67:1a:d4:68:6b:8d:41:35:
07:84:2b:b8:4b:2b:07:75:9e:fc:03:54:f9:5c:2c:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A0:33:FA:68:1C:97:E2:29:9C:24:C5:D1:9B:D1:D6:1B:40:C8:89
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f0:44:94:93:8a:58:87:67:ea:cf:2a:de:59:c5:eb:01:18:
30:a7:7d:d3:e7:f2:fc:ec:53:68:a4:6a:b5:8e:fd:a3:3a:13:
0e:f9:11:3b:f7:eb:59:9a:71:b1:08:c5:49:1c:ef:30:fd:65:
06:c3:c8:49:53:07:87:1d:59:38:fe:e0:5a:35:c9:90:09:d0:
41:53:6d:af:eb:e1:f1:19:c7:86:be:40:47:88:9e:9e:74:f4:
11:cc:4e:66:3a:12:ab:54:ca:e1:39:01:8e:2e:02:c6:5d:58:
90:72:59:d3:70:f8:25:e0:64:d8:c0:5c:ec:51:6c:a6:53:a9:
16:a5:bb:da:20:aa:32:69:7f:51:ec:14:67:25:2e:0c:fd:b8:
99:77:4a:37:ef:6d:b6:12:fa:2d:ca:25:8e:ad:5f:23:b7:80:
12:a4:be:af:24:5c:ff:74:a7:3d:f9:e2:92:85:c2:61:ba:95:
50:a9:f7:3c:fd:0a:6b:11:0b:58:cf:1b:d4:d1:fa:ca:15:8d:
ab:d5:fd:06:57:cb:fb:31:af:03:fb:8d:a6:b7:73:aa:4e:e8:
5d:a9:17:6a:2d:3a:27:1d:79:c6:bc:69:10:56:c1:23:ab:13:
9a:1c:b2:45:88:28:b5:39:6a:f1:c9:98:ab:02:8e:59:86:20:
23:0c:65:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 15:08:28 2026 by rpki-client