Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: iMowuH3wjxo96eBofbhURePJgm0j/qVBf9ECxIvFh+c=
Subject key identifier: 3E:3D:62:DA:90:C7:B3:B1:5A:A2:7D:20:D1:40:49:67:DD:9B:8A:FE
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019E29943FFCBA320EE0BE2F8DB20FEAA412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 18E8
Signing time: Fri 15 May 2026 03:00:41 +0000
Manifest this update: Fri 15 May 2026 03:00:41 +0000
Manifest next update: Sat 16 May 2026 03:00:41 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: 2NyXeY5nvNQF6WUFMvl3EHL3JZ0TLjbKk+q99LtcjX8=)
3: uWfFwS9q_sRjpANNa-JaK4UEmWc.asa (hash: nQ9YKsuw+nwcF+MWLYDHOUM/N4l8CUXGJztg2lw+NgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:94:3f:fc:ba:32:0e:e0:be:2f:8d:b2:0f:ea:a4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: May 15 03:00:41 2026 GMT
Not After : May 16 03:00:41 2026 GMT
Subject: CN=3e3d62da90c7b3b15aa27d20d1404967dd9b8afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:95:77:a3:f3:a6:cc:52:5b:6f:a2:c9:4a:65:
97:1d:76:72:87:d0:92:98:af:30:db:d2:b5:91:b3:
7b:2d:50:24:54:6c:19:7f:6c:ef:da:c0:84:fe:64:
12:79:08:81:5e:3b:b6:24:bd:3f:25:39:6c:b4:7d:
a0:70:d9:14:e6:31:f0:f6:d3:dc:92:bd:41:71:ec:
75:d6:59:fb:aa:02:b4:e9:35:c1:96:f8:29:f1:60:
ea:4d:cf:60:53:8f:8b:ce:a7:d2:29:f0:4c:67:14:
05:8a:61:91:f3:fd:e5:31:6e:27:cd:00:fb:9c:13:
9b:62:69:06:44:3d:5e:ea:65:3b:8e:f0:e1:ec:34:
fc:a4:6b:84:75:24:25:ea:39:de:5b:6d:f6:d8:a9:
6c:bd:8f:5b:dd:eb:75:9e:95:95:7a:60:10:ff:53:
22:23:65:7a:a2:42:fa:1d:90:c1:c6:1a:31:e3:40:
58:08:57:85:16:fd:3a:75:07:dc:51:37:d3:b1:03:
ba:5e:18:8d:5c:c9:e3:7a:16:db:6e:87:3a:29:11:
97:a7:43:02:35:2d:0e:89:63:43:73:ba:7e:88:5e:
47:73:ef:ba:ca:2d:41:e4:13:84:16:52:75:5e:ed:
45:48:1d:af:1e:7f:9a:6d:5a:9f:1f:82:d8:d4:93:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3D:62:DA:90:C7:B3:B1:5A:A2:7D:20:D1:40:49:67:DD:9B:8A:FE
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:e1:15:6d:24:80:cb:95:8e:23:06:c8:ce:e3:b7:4d:f3:12:
50:35:a4:4f:ed:44:11:e6:25:19:49:71:0d:d9:1d:a9:ff:fb:
d6:40:93:92:10:56:64:4f:d8:c3:f3:1e:64:ca:6f:56:36:8d:
1f:69:a0:fc:0d:81:2c:ad:68:bd:03:76:ac:3c:d5:ae:b4:0b:
f6:f4:fd:b0:39:7b:ce:28:91:c4:e7:8e:95:3a:87:67:1c:b2:
1d:69:72:4d:57:ee:c0:18:25:11:f9:e9:c3:71:3d:31:94:3d:
11:96:56:87:d0:92:57:52:c7:96:5f:2d:93:61:f2:40:82:b4:
65:ff:da:82:d6:01:4e:c4:d5:99:99:13:26:3b:6d:88:76:44:
49:36:1e:96:3b:4d:71:95:75:53:7d:42:7c:91:6c:2c:8d:5b:
05:39:bc:bb:1a:62:d5:8b:d2:2f:9a:ee:c5:61:07:58:2c:63:
49:68:da:c4:fc:07:d1:70:c1:10:c1:04:ce:ae:2d:f1:8b:b2:
b4:08:92:31:38:0b:f4:a0:04:b3:fc:5f:81:d1:26:5d:32:ca:
fe:73:82:18:b0:bf:02:d1:5e:64:8f:f5:1e:d3:d3:b6:db:a7:
9f:af:72:de:48:75:31:27:42:db:e6:7a:f4:88:93:37:18:e1:
9e:9d:90:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:01:45 2026 by rpki-client