Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: o0DPj5f8OV/SJjJwAqcStVXka0kA0vuZguC7NQLVny0=
Subject key identifier: D3:75:38:4B:AD:46:0E:92:CA:02:36:23:BC:26:E7:63:DC:BD:0F:16
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 019D3AF8422B91C80F6EF06FC4D4FB03DB13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 19:00:41 +0000
Manifest this update: Sun 29 Mar 2026 19:00:41 +0000
Manifest next update: Mon 30 Mar 2026 19:00:41 +0000
Files and hashes: 1: 1-SAETGTeaUOj1XdkqRLUPF6Q-1g.roa (hash: J6jUaufkYMrjM7ww1ErRboScW6ZHhG3Zu67b1RodNlQ=)
2: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: YD/8iIR0kK+A2NOASmc9bg0lBG6wdvW9oOdPH3Ikkts=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:f8:42:2b:91:c8:0f:6e:f0:6f:c4:d4:fb:03:db:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Mar 29 19:00:41 2026 GMT
Not After : Mar 30 19:00:41 2026 GMT
Subject: CN=d375384bad460e92ca023623bc26e763dcbd0f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e5:67:e7:ab:5e:db:90:30:9c:c6:f6:31:e8:
42:e1:82:24:1f:47:54:15:27:11:b9:e2:f4:b2:18:
3f:2b:77:5b:7e:cd:36:1d:10:75:b2:1e:57:4e:ad:
54:98:5f:cd:2f:7d:e3:71:b0:81:be:e8:fb:3c:1b:
b8:27:5d:84:eb:22:11:23:6f:b2:23:8b:da:26:4d:
93:08:4f:af:91:52:8b:94:17:63:19:6b:49:18:59:
9e:72:82:7f:c8:b3:17:98:73:00:82:e5:c3:9f:b8:
50:c0:2a:d3:78:07:89:67:7d:4c:4a:59:ac:4a:0c:
41:da:3a:89:86:e3:91:d1:c9:8d:33:31:aa:68:62:
d1:ad:7f:49:0c:07:58:13:4e:92:01:94:ad:fe:18:
ec:45:9c:8c:57:88:d7:ad:f8:8f:a3:1d:c2:cb:38:
96:a4:84:b6:87:34:67:c1:f2:fb:2c:22:06:fd:a7:
e0:dd:d2:b8:5d:24:55:e8:05:15:49:ac:a2:1b:00:
c2:b0:cb:14:1f:29:ca:0e:ad:9a:cf:6f:01:20:f7:
60:f8:da:8a:63:c8:4b:31:fe:66:51:53:d2:20:f1:
96:27:cb:56:8b:9a:e8:5c:d7:83:9a:03:00:13:f4:
61:d0:67:4b:54:aa:db:94:d7:42:bf:86:d6:92:4a:
00:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:75:38:4B:AD:46:0E:92:CA:02:36:23:BC:26:E7:63:DC:BD:0F:16
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:c1:a3:de:19:47:16:dc:2e:46:7a:0f:e0:4f:07:79:c2:1c:
d3:bd:72:f2:b3:aa:a1:ad:8c:d4:27:95:40:9f:4e:56:e5:ef:
b7:66:e4:70:b7:4f:6f:18:c0:db:9d:86:84:91:52:b4:33:41:
71:65:c6:c2:bf:da:b5:71:08:24:19:02:e1:86:d0:2c:64:a9:
f9:23:38:b9:e1:47:62:33:4d:f3:79:22:7e:ab:75:5c:c7:6a:
29:6d:a5:2e:28:0f:d4:92:45:8c:5a:04:68:e4:6b:03:bf:6c:
54:f4:6f:cc:de:9f:a1:dc:d0:0a:66:88:0b:f0:cb:7e:d3:12:
95:25:06:aa:3c:2c:ef:39:5b:e9:b1:46:d0:5d:5d:d6:12:de:
99:0e:8e:05:26:92:4c:c3:8e:fd:d8:06:f5:8d:6b:04:44:0b:
c5:f5:bf:95:a4:57:99:5b:55:4f:2f:ac:df:f8:78:52:5a:c3:
f3:58:9d:4c:21:6e:d5:cb:61:85:d8:bc:1b:ca:cc:60:36:18:
d3:6a:15:b0:45:fb:3f:fc:74:d9:e4:78:f1:60:3f:c5:5a:82:
6f:f9:3e:d6:3a:61:4c:3c:9f:1f:98:37:ae:5e:f4:0c:1b:33:
43:d5:5a:e5:84:8f:41:a1:e3:e7:98:a3:4b:c2:e5:4a:5e:5d:
02:09:7e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:16:01 2026 by rpki-client