Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: x/WcQqoG+GiBX+2hrSF7w/RwVVLjciM4Z25akUYxD+E=
Subject key identifier: 80:63:F4:D5:43:7C:48:53:AA:31:8F:D7:3F:F6:D7:E6:77:6E:24:C8
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019F115268D7E09D2BD7D176E5620AD04206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1960
Signing time: Mon 29 Jun 2026 03:00:41 +0000
Manifest this update: Mon 29 Jun 2026 03:00:41 +0000
Manifest next update: Tue 30 Jun 2026 03:00:41 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: TR7h+riyT+No/qC/x2xsZ3lQWJWF9uIPeUQfo3sdZSU=)
3: uWfFwS9q_sRjpANNa-JaK4UEmWc.asa (hash: nQ9YKsuw+nwcF+MWLYDHOUM/N4l8CUXGJztg2lw+NgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:52:68:d7:e0:9d:2b:d7:d1:76:e5:62:0a:d0:42:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Jun 29 03:00:41 2026 GMT
Not After : Jun 30 03:00:41 2026 GMT
Subject: CN=8063f4d5437c4853aa318fd73ff6d7e6776e24c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4e:a1:36:58:e8:c5:3f:05:bf:bf:b5:7f:9f:
93:66:bd:8b:f5:ec:f0:10:0e:cf:fc:62:c8:17:6d:
3a:b2:6b:3e:12:38:5f:3f:67:92:a9:38:5a:10:f8:
63:e0:ab:2d:0a:8a:e3:67:86:f6:95:d4:68:4e:9a:
8f:1e:f0:84:2a:d6:4e:10:bf:31:57:23:95:28:ee:
55:26:bb:10:9f:82:a1:5c:85:42:99:0d:9f:75:0c:
6b:3d:33:4e:09:5a:c2:be:d4:53:5c:33:1c:1d:b6:
ad:d1:15:0c:76:0a:13:4d:10:96:76:27:4c:bf:4f:
78:71:59:d9:66:e5:78:6a:c2:6e:dd:21:27:fd:9e:
3b:08:ae:76:92:69:37:fa:07:e5:15:c6:4c:91:86:
ce:16:54:f4:a4:ea:88:c2:cd:2e:52:c9:29:04:7d:
45:54:6a:62:ad:03:a9:52:d3:d3:83:e4:1a:6c:c6:
81:80:ea:a2:5e:af:11:c9:76:a4:16:be:ce:21:0f:
d9:f1:41:98:b3:c6:97:a0:29:aa:07:5e:e1:87:a6:
85:a4:2e:12:26:98:7d:e1:49:6b:8a:e8:b4:77:48:
61:dc:48:63:58:3a:ef:7a:0d:21:fe:ac:1b:8c:10:
f2:1d:3e:fe:bd:13:4f:4e:a8:14:24:ed:2b:c9:8d:
01:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:63:F4:D5:43:7C:48:53:AA:31:8F:D7:3F:F6:D7:E6:77:6E:24:C8
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:72:6b:87:27:8a:3c:51:43:00:07:99:34:92:92:7d:49:03:
ee:3a:20:53:92:d5:34:86:f8:52:5b:29:87:0f:a9:8a:db:75:
35:3b:56:93:b0:59:63:b9:f4:d0:6c:30:a3:19:e5:c2:a2:82:
47:47:55:33:ea:a9:92:b4:46:eb:51:11:8a:91:08:82:0f:2d:
f4:e8:89:58:84:56:de:c8:3a:f7:e5:53:d1:66:28:09:fe:26:
42:83:36:b5:c2:05:22:4a:98:98:44:cd:f6:4e:df:46:4a:bb:
30:a0:78:49:a6:ce:99:b5:5e:42:ab:6f:70:ff:0f:9c:46:f7:
4e:cb:10:8c:9b:13:b4:dd:d6:0d:8f:f6:31:49:fb:fa:95:64:
fd:3c:a6:d7:0b:07:30:bc:5a:9c:7c:1d:d1:1f:68:5a:c9:23:
6a:e9:f9:3d:b6:84:73:47:15:22:d7:0b:c9:76:34:4f:4f:81:
df:0a:d3:01:42:a0:c9:f5:52:16:5c:f0:28:22:aa:de:29:36:
2e:32:e8:17:81:ad:5e:ad:4f:cd:a3:a6:ea:f5:77:3b:3b:c9:
e2:33:1d:48:2c:d2:9f:b0:d6:b6:c4:66:57:49:ee:c3:76:ae:
62:07:b1:ec:f4:86:a5:47:17:f5:09:4f:e0:7e:3d:01:f7:c1:
b6:df:27:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RUmjX4J0r19F25WIK0EIGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhM2ZlMGI5YzYzMGEzM2UxNzFhMGE1Yzc5M2YzNDBiNDM0
NDY5MzIwHhcNMjYwNjI5MDMwMDQxWhcNMjYwNjMwMDMwMDQxWjAzMTEwLwYDVQQD
Eyg4MDYzZjRkNTQzN2M0ODUzYWEzMThmZDczZmY2ZDdlNjc3NmUyNGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6U6hNljoxT8Fv7+1f5+TZr2L9ezw
EA7P/GLIF206sms+EjhfP2eSqThaEPhj4KstCorjZ4b2ldRoTpqPHvCEKtZOEL8x
VyOVKO5VJrsQn4KhXIVCmQ2fdQxrPTNOCVrCvtRTXDMcHbat0RUMdgoTTRCWdidM
v094cVnZZuV4asJu3SEn/Z47CK52kmk3+gflFcZMkYbOFlT0pOqIws0uUskpBH1F
VGpirQOpUtPTg+QabMaBgOqiXq8RyXakFr7OIQ/Z8UGYs8aXoCmqB17hh6aFpC4S
Jph94Ulriui0d0hh3EhjWDrveg0h/qwbjBDyHT7+vRNPTqgUJO0ryY0BFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIBj9NVDfEhTqjGP1z/21+Z3biTIMB8GA1UdIwQY
MBaAFIo/4LnGMKM+FxoKXHk/NAtDRGkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMt
NTNhYWI0MmY0NzZlLzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMtNTNhYWI0MmY0NzZl
LzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY3JrhyeK
PFFDAAeZNJKSfUkD7jogU5LVNIb4Ulsphw+pitt1NTtWk7BZY7n00GwwoxnlwqKC
R0dVM+qpkrRG61ERipEIgg8t9OiJWIRW3sg69+VT0WYoCf4mQoM2tcIFIkqYmETN
9k7fRkq7MKB4SabOmbVeQqtvcP8PnEb3TssQjJsTtN3WDY/2MUn7+pVk/Tym1wsH
MLxanHwd0R9oWskjaun5PbaEc0cVItcLyXY0T0+B3wrTAUKgyfVSFlzwKCKq3ik2
LjLoF4GtXq1PzaOm6vV3OzvJ4jMdSCzSn7DWtsRmV0nuw3auYgex7PSGpUcX9QlP
4H49AffBtt8nHg==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:18 2026 by rpki-client