Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json)
Hash identifier: TrCmO2ysfaYeZeobU1DILooKB/XI+r9am4HzHGE5hxk=
Subject key identifier: 59:C2:96:AB:CE:57:9B:D5:20:00:EB:96:79:B5:B8:2B:00:91:9A:A5
Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de
Certificate serial: 019D3789746A6F9BC3B6BC2516C899E53A1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
Manifest number: 026F
Signing time: Sun 29 Mar 2026 03:00:48 +0000
Manifest this update: Sun 29 Mar 2026 03:00:48 +0000
Manifest next update: Mon 30 Mar 2026 03:00:48 +0000
Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: VTImQlwKpg3T/jAh6uIee3eJcZGXj2jewCvVKWhEDJI=)
2: qF2ZodUY37J4i-OZIa3cfOgc5Rc.roa (hash: wDYZQhbUNMQIgvk6fTW/5tpDGzxiDdiDkVT4f+UU/qM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:74:6a:6f:9b:c3:b6:bc:25:16:c8:99:e5:3a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de
Validity
Not Before: Mar 29 03:00:48 2026 GMT
Not After : Mar 30 03:00:48 2026 GMT
Subject: CN=59c296abce579bd52000eb9679b5b82b00919aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b8:fe:5c:bf:60:25:92:f1:db:d3:82:ce:16:
cf:52:43:5c:3e:a3:cd:c6:c7:27:96:8e:8a:88:79:
3b:7d:44:3c:54:5b:7c:e5:6f:11:f8:41:46:38:f5:
9b:92:92:25:1a:78:7b:d6:7d:8d:92:5e:1d:3c:d7:
75:03:99:c0:ae:68:7a:86:8a:27:bf:04:0f:e1:a4:
e3:06:23:c1:89:7e:81:15:4d:9d:da:51:11:2b:4c:
53:c9:fe:96:13:07:9a:06:cc:11:e5:54:dd:c5:55:
cf:d3:c1:83:12:53:b7:9a:21:05:5e:23:80:a4:9d:
17:dd:1c:39:18:fb:74:12:94:25:05:4c:54:31:48:
06:4d:a6:99:f4:a9:16:a0:40:4e:81:ca:4b:d1:47:
da:ac:f8:f4:37:62:95:0c:88:c5:80:7c:6e:c2:98:
05:b8:94:4c:e7:df:fe:83:7f:5c:fe:61:02:1f:dc:
a8:37:ab:f2:12:ff:37:da:ad:51:fd:e2:1b:fd:9e:
9d:ad:f1:a7:d9:1c:f6:3b:4b:96:a4:19:59:67:86:
66:17:3e:a2:44:ef:a9:e2:61:7f:d6:02:db:c6:89:
ea:83:a0:60:6b:3c:fe:29:02:68:05:ae:70:32:46:
07:0a:78:c7:3d:4a:90:f2:e7:f1:41:64:10:da:f8:
d9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C2:96:AB:CE:57:9B:D5:20:00:EB:96:79:B5:B8:2B:00:91:9A:A5
X509v3 Authority Key Identifier:
keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:24:69:1d:cd:c3:d1:53:fd:04:67:09:05:51:da:53:cc:46:
b4:80:7e:1a:d6:d3:b3:93:38:a5:85:c5:9f:13:b8:bf:09:51:
2a:41:ff:49:3e:d6:ac:ea:07:ec:e1:d6:82:fd:e7:b0:90:34:
50:00:16:63:97:e4:b3:50:f7:03:c9:5e:66:36:9b:ab:ef:af:
f5:c9:bd:e8:6c:be:e2:19:e7:12:bc:db:d6:ef:e2:65:39:38:
0b:4c:5c:b3:20:58:3f:f8:6a:72:47:5f:19:6e:dc:52:42:f6:
3f:84:74:5a:41:94:7f:d6:03:46:a1:d0:0d:27:9f:16:38:b8:
94:45:d0:fb:69:06:c5:25:54:5d:fd:75:41:3f:3c:39:a0:5a:
c5:40:f7:f9:8a:85:4b:50:90:8a:fe:fc:fd:50:d1:7a:74:a0:
0a:59:af:6c:ae:5e:14:fd:fe:74:4d:12:1f:4c:e5:d2:a0:0f:
eb:22:e6:e1:7a:df:36:52:ff:69:cd:40:b6:28:d6:ac:71:e9:
06:55:95:58:22:a9:ae:19:10:da:3f:85:37:36:a1:00:60:bc:
63:c2:32:ed:c0:d4:32:bb:6c:79:e0:11:ca:75:8a:e9:92:b5:
f7:96:c5:17:a0:06:87:0a:41:98:3d:8d:0a:eb:11:9c:df:d4:
ba:4d:98:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:20 2026 by rpki-client