Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: wt+BH6YjDPBQ02piIe1eHK1By4wKJ9vt/9RDJm+srYo=
Subject key identifier: 33:7E:3D:9B:48:CF:8F:53:9F:F4:D6:3A:3F:2B:1D:DA:D6:BE:E2:24
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019D382E60252992981C291F9EE74A428CDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 186B
Signing time: Sun 29 Mar 2026 06:00:56 +0000
Manifest this update: Sun 29 Mar 2026 06:00:56 +0000
Manifest next update: Mon 30 Mar 2026 06:00:56 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: tL85E8Xn4OhhabmTGamyJ8TlDMd6q5+VnYpcU82muas=)
3: uWfFwS9q_sRjpANNa-JaK4UEmWc.asa (hash: nQ9YKsuw+nwcF+MWLYDHOUM/N4l8CUXGJztg2lw+NgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:60:25:29:92:98:1c:29:1f:9e:e7:4a:42:8c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Mar 29 06:00:56 2026 GMT
Not After : Mar 30 06:00:56 2026 GMT
Subject: CN=337e3d9b48cf8f539ff4d63a3f2b1ddad6bee224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1a:02:4d:37:01:3e:15:c3:f1:53:63:ca:41:
c8:d6:7a:ea:af:76:f2:44:88:86:35:d2:fb:cc:e4:
c0:2a:40:ef:ac:ed:98:eb:a7:1a:5f:1f:53:fd:99:
b5:05:c1:7c:23:e1:dc:04:43:9c:c9:53:9a:d0:d1:
f1:60:57:a0:c8:e5:00:d8:ee:c7:74:a2:4a:a4:cb:
50:9c:48:0e:66:51:dd:48:07:3d:28:a7:f1:c2:6c:
83:23:b5:15:ed:10:6b:63:39:9f:a0:9e:e7:5b:dd:
4b:7d:7a:78:8f:9b:f2:31:4c:b6:c1:83:c4:28:a6:
dc:ab:44:8c:e3:ab:78:d9:92:cc:b5:55:49:5b:51:
8b:73:12:d7:87:6d:a8:ca:a6:fb:f2:9a:b1:32:60:
31:7d:ed:4c:7b:44:05:76:01:d9:d1:a0:93:d1:18:
69:b6:ed:71:75:b7:7a:6a:aa:42:2f:a1:ef:ae:ab:
64:eb:2e:72:db:35:bf:76:29:4d:2f:aa:e8:4e:ab:
66:6f:8a:bd:50:4c:74:7c:be:a3:cf:0e:2c:27:81:
79:ef:00:72:b8:77:ee:51:25:4c:01:d6:ac:49:d6:
c3:5a:da:19:27:ac:22:99:9c:da:80:c9:d5:6a:29:
fa:d8:7f:52:8e:ee:44:8d:7a:72:d8:d5:1b:61:a4:
b3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7E:3D:9B:48:CF:8F:53:9F:F4:D6:3A:3F:2B:1D:DA:D6:BE:E2:24
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:90:3b:c6:0c:b2:8d:a0:73:eb:62:cb:3f:2d:5b:fe:cb:a8:
a6:e0:ca:9e:b4:7b:8e:a7:70:9f:95:20:f5:9a:cd:6b:9b:a1:
98:0a:e2:a0:f8:fd:f1:b4:2d:7a:fd:31:f1:30:68:8c:0f:c8:
4e:c7:9f:ce:7a:a5:32:0e:df:4f:fc:82:cd:5a:4e:21:84:6f:
2b:53:40:0a:a3:88:b6:a2:1b:5c:ec:98:78:d1:07:e6:1c:da:
bd:07:32:a9:54:74:da:4f:8a:da:4c:34:5b:cd:7d:6a:46:93:
4a:5d:db:36:0f:ab:fa:5a:86:3c:30:9e:c6:2b:c3:8f:0c:b5:
bc:fb:7e:a3:75:4d:2d:ed:67:c1:22:97:66:35:79:83:9c:6b:
f0:6a:78:59:36:ba:76:18:22:86:0b:ae:29:47:a2:7c:2d:ee:
cf:c1:26:2e:3b:ab:70:e8:8e:88:31:93:43:ac:fa:7d:e5:dd:
db:02:92:ed:e6:a4:db:e2:19:df:87:ea:07:c1:03:33:10:e4:
cf:dc:7a:ec:9e:86:7f:64:47:4d:d8:39:fa:4e:c6:55:7d:c6:
b8:21:25:aa:a8:58:8e:96:91:96:dd:22:00:be:69:d6:72:d3:
c1:c6:a3:4a:37:9f:a7:cb:d4:0d:37:c7:dd:13:65:00:58:dd:
36:cc:cd:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LmAlKZKYHCkfnudKQozaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhM2ZlMGI5YzYzMGEzM2UxNzFhMGE1Yzc5M2YzNDBiNDM0
NDY5MzIwHhcNMjYwMzI5MDYwMDU2WhcNMjYwMzMwMDYwMDU2WjAzMTEwLwYDVQQD
EygzMzdlM2Q5YjQ4Y2Y4ZjUzOWZmNGQ2M2EzZjJiMWRkYWQ2YmVlMjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hoCTTcBPhXD8VNjykHI1nrqr3by
RIiGNdL7zOTAKkDvrO2Y66caXx9T/Zm1BcF8I+HcBEOcyVOa0NHxYFegyOUA2O7H
dKJKpMtQnEgOZlHdSAc9KKfxwmyDI7UV7RBrYzmfoJ7nW91LfXp4j5vyMUy2wYPE
KKbcq0SM46t42ZLMtVVJW1GLcxLXh22oyqb78pqxMmAxfe1Me0QFdgHZ0aCT0Rhp
tu1xdbd6aqpCL6Hvrqtk6y5y2zW/dilNL6roTqtmb4q9UEx0fL6jzw4sJ4F57wBy
uHfuUSVMAdasSdbDWtoZJ6wimZzagMnVain62H9Sju5EjXpy2NUbYaSzkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDN+PZtIz49Tn/TWOj8rHdrWvuIkMB8GA1UdIwQY
MBaAFIo/4LnGMKM+FxoKXHk/NAtDRGkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMt
NTNhYWI0MmY0NzZlLzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMtNTNhYWI0MmY0NzZl
LzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl5A7xgyy
jaBz62LLPy1b/suopuDKnrR7jqdwn5Ug9ZrNa5uhmArioPj98bQtev0x8TBojA/I
TsefznqlMg7fT/yCzVpOIYRvK1NACqOItqIbXOyYeNEH5hzavQcyqVR02k+K2kw0
W819akaTSl3bNg+r+lqGPDCexivDjwy1vPt+o3VNLe1nwSKXZjV5g5xr8Gp4WTa6
dhgihguuKUeifC3uz8EmLjurcOiOiDGTQ6z6feXd2wKS7eak2+IZ34fqB8EDMxDk
z9x67J6Gf2RHTdg5+k7GVX3GuCElqqhYjpaRlt0iAL5p1nLTwcajSjefp8vUDTfH
3RNlAFjdNszNyQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:06 2026 by rpki-client