Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: Oe/0HVhQFSkRJA/HWo+nPNTjmZLJstnkoXEYpO64rZw=
Subject key identifier: 21:09:56:52:66:CE:3A:35:30:97:9C:97:33:42:E6:C6:F8:4D:60:7B
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019E20912D3D91C3E5C0D586AB134643C4E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 164D
Signing time: Wed 13 May 2026 09:00:45 +0000
Manifest this update: Wed 13 May 2026 09:00:45 +0000
Manifest next update: Thu 14 May 2026 09:00:45 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: Q1X0BNJ7v2lIZq4Q2nlhEmnpX8aMLj+fmJc0SN16yuc=)
2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=)
3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:2d:3d:91:c3:e5:c0:d5:86:ab:13:46:43:c4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: May 13 09:00:45 2026 GMT
Not After : May 14 09:00:45 2026 GMT
Subject: CN=2109565266ce3a3530979c973342e6c6f84d607b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d6:b4:5c:18:d3:87:9a:bc:b9:9c:f6:9d:ee:
3d:1a:58:8e:99:6c:11:7e:4e:23:63:ba:7c:0e:15:
2f:8f:15:e0:18:ea:a7:ee:7a:00:77:7a:8e:c8:7e:
c0:19:ad:17:8b:4e:2b:a5:47:dc:2b:b2:02:9f:53:
bf:c8:b4:13:c4:49:ab:f8:03:73:12:10:5b:c8:2d:
e9:62:60:ab:9a:84:e0:31:61:c4:2b:41:6a:4e:89:
e1:9f:6b:ab:27:76:50:e5:42:65:a7:43:cb:f3:73:
2e:2a:a3:84:94:47:87:09:5b:7f:55:cc:53:74:91:
c9:fe:f6:e7:a8:5c:d5:76:c1:09:b5:15:c9:fa:5b:
af:b1:a3:b4:89:08:2a:b2:b1:f5:ef:9b:68:d3:b5:
46:75:70:a7:49:5c:80:d7:ce:72:e8:67:aa:47:89:
74:e5:de:7d:cd:9e:5f:45:2e:51:8c:a8:db:20:85:
65:72:43:5f:54:50:f0:cb:7d:2e:72:10:3c:88:52:
90:f9:fc:ab:1c:48:57:10:cd:59:98:be:b3:2b:75:
27:6d:00:c8:fe:3d:26:80:98:22:65:0a:82:d7:4d:
64:d5:92:c8:19:97:b5:22:31:6c:38:04:3e:61:e6:
0d:7f:4c:4c:86:83:d8:39:e8:fe:b9:f8:73:0f:30:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:09:56:52:66:CE:3A:35:30:97:9C:97:33:42:E6:C6:F8:4D:60:7B
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:e0:2e:93:0d:ed:71:b5:4b:b8:03:cd:c8:9c:42:36:68:a0:
93:b0:41:bd:16:2f:74:fd:05:3a:42:6b:5c:bb:36:fc:44:f3:
24:be:4e:8a:c7:2e:c5:3e:69:0e:20:59:d3:90:0b:8d:ea:67:
7b:9a:80:a0:c3:d3:fe:ad:0f:54:5c:ec:cc:29:97:8f:14:81:
2e:8c:84:ce:39:3a:4c:b4:99:79:ce:ae:06:19:36:4f:95:ca:
14:67:6c:64:1f:28:2e:75:6c:47:2c:51:48:53:31:ad:42:74:
99:9e:7f:e5:ed:2d:3a:fd:cd:d4:20:d1:b1:71:ff:c0:a6:0c:
34:09:f4:be:fe:c1:4d:46:8b:e1:a2:02:24:7a:86:26:22:d8:
da:4f:c6:f1:42:f5:2e:2d:ac:19:1f:97:06:11:9b:ef:95:97:
87:38:26:d1:51:64:00:9d:f8:30:75:9d:fa:00:65:10:20:bf:
65:ee:9c:23:58:a6:fe:b5:a3:bd:f6:57:7b:2e:19:98:1a:6a:
5e:87:88:ff:3b:3c:66:d8:0e:12:85:37:62:c1:1e:2b:3d:44:
07:2e:2e:c0:b4:86:18:aa:79:f0:fa:40:12:13:96:cc:6d:f8:
57:9f:e3:c7:a5:b3:95:7f:72:0f:54:00:81:49:55:fa:c0:99:
62:77:ab:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:52:17 2026 by rpki-client