Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
File: Ihm1ncLp80slUjDlYqPMph2usVU.mft (raw, json)
Hash identifier: 7nWc9K/X4mHnFbxuGmNCPBH7uzyi/W4L430pBCfUqUs=
Subject key identifier: 1E:CC:93:1C:59:47:B1:91:FD:12:63:B7:DC:33:F9:61:13:33:6E:B5
Authority key identifier: 22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
Certificate issuer: /CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Certificate serial: 019D3977BF8DC43E17668F487381FE716F31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
Manifest number: 1561
Signing time: Sun 29 Mar 2026 12:00:42 +0000
Manifest this update: Sun 29 Mar 2026 12:00:42 +0000
Manifest next update: Mon 30 Mar 2026 12:00:42 +0000
Files and hashes: 1: F2AboFEdlaFvK2ZJ7KRuOMnHGR0.roa (hash: zP2rYzTQoCT69vsmw+me7/QeUt3Rf6MGFTqklsAOqU0=)
2: Ihm1ncLp80slUjDlYqPMph2usVU.crl (hash: 7EbkkMBAv7fj6vmdxw4Szq1RpL6i1Fc1F2UwXjasacg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:bf:8d:c4:3e:17:66:8f:48:73:81:fe:71:6f:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Validity
Not Before: Mar 29 12:00:42 2026 GMT
Not After : Mar 30 12:00:42 2026 GMT
Subject: CN=1ecc931c5947b191fd1263b7dc33f96113336eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:47:81:8c:53:7e:72:a0:13:af:dc:eb:0b:0d:
d9:72:d6:d2:2a:17:36:d7:7b:a6:01:e6:fc:50:c6:
e2:20:c4:71:c4:bf:37:c0:9b:3e:7d:3e:a3:8e:4a:
79:28:fc:93:28:fb:f9:b4:af:43:4c:db:10:69:d6:
ef:e9:57:8a:23:9d:94:6b:91:85:49:ee:76:19:b2:
6b:94:55:e1:b4:76:da:a3:17:7d:0a:c8:5f:39:7b:
78:21:c8:63:74:9b:5d:b7:13:e9:6e:80:19:ce:06:
d6:fd:58:33:2a:8e:7f:a0:87:05:b2:28:ee:73:b7:
ba:59:ed:15:d3:f1:65:0b:ff:4d:d4:90:6d:ce:ba:
d0:ca:7f:69:5a:87:74:a5:63:01:62:60:4d:8d:1d:
df:d9:49:ff:d4:34:5d:82:aa:a7:f4:f7:11:62:4f:
e8:09:33:bd:d6:22:ed:2a:cf:b6:66:53:1d:fe:18:
a9:ee:ef:37:93:00:38:e8:e3:e5:0c:0c:bc:50:a3:
2b:2b:e4:af:1d:ea:56:1f:a8:32:8b:4d:a4:c1:74:
bd:fd:ff:bc:0e:15:fb:df:f0:49:36:b1:26:7b:13:
09:da:ad:8c:d2:19:9b:7f:c0:15:21:1a:e3:24:fc:
98:63:d1:fc:09:63:ba:a1:38:c2:e9:49:56:88:e5:
91:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CC:93:1C:59:47:B1:91:FD:12:63:B7:DC:33:F9:61:13:33:6E:B5
X509v3 Authority Key Identifier:
keyid:22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:03:08:9f:af:e6:b8:bd:37:91:6f:f3:ef:ae:6a:35:dc:dc:
2d:54:a5:51:fa:06:d4:e1:28:76:6b:6a:a5:ba:1d:35:80:07:
27:6a:0d:6d:54:b3:3b:cc:03:92:08:65:45:26:e5:75:65:69:
f6:4c:81:9b:d0:d0:b2:00:da:98:e1:e7:68:87:b3:05:72:e2:
65:0f:0a:0a:5f:79:e0:bf:c4:de:90:72:f3:21:e5:ee:88:31:
0b:bb:60:6e:03:1d:b6:17:bf:d8:df:65:85:d5:40:82:1d:5e:
e2:7c:a1:e1:f1:cf:bb:d0:ba:71:0c:d2:a8:0e:a8:60:65:1b:
09:76:7f:9b:59:9b:42:b6:a2:85:47:3d:b7:bb:e7:79:35:5b:
2d:39:a5:6d:ff:49:42:05:3f:70:86:f8:a4:b6:c9:62:1a:0b:
6c:80:9f:08:0d:9f:46:3a:a2:d6:c0:d7:30:2e:43:ca:26:80:
a5:f5:fc:b1:12:53:1f:f0:92:64:44:b5:5b:3d:42:2a:d8:04:
43:7f:c8:ec:39:59:36:54:9e:b9:5e:8d:33:6e:1d:60:52:4f:
e5:40:33:76:c6:72:f3:15:09:f6:43:85:20:e3:10:4c:58:8d:
0b:b7:de:3c:a3:77:e4:86:81:73:22:3c:e3:cc:1a:2a:04:c3:
45:88:55:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05d7+NxD4XZo9Ic4H+cW8xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMTliNTlkYzJlOWYzNGIyNTUyMzBlNTYyYTNjY2E2MWRh
ZWIxNTUwHhcNMjYwMzI5MTIwMDQyWhcNMjYwMzMwMTIwMDQyWjAzMTEwLwYDVQQD
EygxZWNjOTMxYzU5NDdiMTkxZmQxMjYzYjdkYzMzZjk2MTEzMzM2ZWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UeBjFN+cqATr9zrCw3ZctbSKhc2
13umAeb8UMbiIMRxxL83wJs+fT6jjkp5KPyTKPv5tK9DTNsQadbv6VeKI52Ua5GF
Se52GbJrlFXhtHbaoxd9CshfOXt4IchjdJtdtxPpboAZzgbW/VgzKo5/oIcFsiju
c7e6We0V0/FlC/9N1JBtzrrQyn9pWod0pWMBYmBNjR3f2Un/1DRdgqqn9PcRYk/o
CTO91iLtKs+2ZlMd/hip7u83kwA46OPlDAy8UKMrK+SvHepWH6gyi02kwXS9/f+8
DhX73/BJNrEmexMJ2q2M0hmbf8AVIRrjJPyYY9H8CWO6oTjC6UlWiOWR7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB7MkxxZR7GR/RJjt9wz+WETM261MB8GA1UdIwQY
MBaAFCIZtZ3C6fNLJVIw5WKjzKYdrrFVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8zYmIzYTgtMWMzZS00MTU0LTkwYTkt
MDA2ZGUwZmE1MzQyLzEvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8zYmIzYTgtMWMzZS00MTU0LTkwYTktMDA2ZGUwZmE1MzQy
LzEvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKAMIn6/m
uL03kW/z765qNdzcLVSlUfoG1OEodmtqpbodNYAHJ2oNbVSzO8wDkghlRSbldWVp
9kyBm9DQsgDamOHnaIezBXLiZQ8KCl954L/E3pBy8yHl7ogxC7tgbgMdthe/2N9l
hdVAgh1e4nyh4fHPu9C6cQzSqA6oYGUbCXZ/m1mbQraihUc9t7vneTVbLTmlbf9J
QgU/cIb4pLbJYhoLbICfCA2fRjqi1sDXMC5DyiaApfX8sRJTH/CSZES1Wz1CKtgE
Q3/I7DlZNlSeuV6NM24dYFJP5UAzdsZy8xUJ9kOFIOMQTFiNC7fePKN35IaBcyI8
48waKgTDRYhVUQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:27:29 2026 by rpki-client