Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
File: IMz236cJVzqCG2PEy2lWBf0maAs.mft (raw, json)
Hash identifier: fNJoLZ1LMPRa5UVUPhhyk+C8/i9ZeuuKmji8W6lex+Y=
Subject key identifier: 95:EE:10:3F:0F:CB:2A:7C:D0:19:34:6D:DC:E5:4D:C2:A9:3A:8A:94
Authority key identifier: 20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
Certificate issuer: /CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Certificate serial: 019D281670C9CCB79D0AEA30D992CA159A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
Manifest number: 058D
Signing time: Thu 26 Mar 2026 03:00:52 +0000
Manifest this update: Thu 26 Mar 2026 03:00:52 +0000
Manifest next update: Fri 27 Mar 2026 03:00:52 +0000
Files and hashes: 1: IMz236cJVzqCG2PEy2lWBf0maAs.crl (hash: SCeiTn6c1+Yw4skpOQ8LnWh2S/T1boTTi75LCzMMJmc=)
2: wyv5vBa47PAsnMwdHNximNKw3Uk.roa (hash: 7tiep6Gb67cUku8Kl/ICbKHtHb5PWFafeqQ40Zk2Vqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:70:c9:cc:b7:9d:0a:ea:30:d9:92:ca:15:9a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20ccf6dfa709573a821b63c4cb695605fd26680b
Validity
Not Before: Mar 26 03:00:52 2026 GMT
Not After : Mar 27 03:00:52 2026 GMT
Subject: CN=95ee103f0fcb2a7cd019346ddce54dc2a93a8a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:66:b3:e4:9b:82:f5:e8:62:d3:2a:a1:a6:6f:
58:e8:38:dc:5f:42:8a:f9:89:7e:e2:50:41:1a:0a:
89:b7:34:2f:c5:c1:ee:20:48:b9:76:af:6b:a7:dc:
6a:ed:80:df:f5:2f:31:32:9b:4f:dd:f8:a0:71:1f:
9a:14:df:d3:63:cf:fe:48:e7:68:8d:ba:2d:32:c5:
3a:ab:ca:b5:4d:2e:e7:2e:3c:e5:f0:56:ab:13:b3:
91:80:f2:1c:45:0b:d5:64:31:dc:bc:75:f3:97:5f:
41:35:8d:86:85:58:08:e1:d6:b0:dc:64:0f:6c:c8:
e3:62:e9:1b:4b:22:79:ba:d9:2d:e1:9b:d6:d2:34:
c0:c0:36:50:89:e4:73:1c:ed:15:b3:c2:4b:3b:91:
e2:7f:03:ca:ba:af:4f:a0:5e:61:c6:a0:cb:4a:65:
67:79:8d:ba:af:4c:45:58:13:44:35:e5:26:9a:27:
d3:bc:53:fd:8b:0a:a1:9a:b8:3a:cc:22:9e:69:ed:
6d:d2:bf:86:cc:f3:00:4b:dc:e9:8b:f8:84:f1:ce:
54:4f:34:5d:75:21:ed:56:68:bc:94:e2:04:3c:8f:
c5:46:d0:38:f5:b2:8f:17:c9:33:2f:cb:38:b3:23:
5f:60:44:c4:84:a8:ca:d4:67:c0:2c:57:eb:f7:5d:
68:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EE:10:3F:0F:CB:2A:7C:D0:19:34:6D:DC:E5:4D:C2:A9:3A:8A:94
X509v3 Authority Key Identifier:
keyid:20:CC:F6:DF:A7:09:57:3A:82:1B:63:C4:CB:69:56:05:FD:26:68:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMz236cJVzqCG2PEy2lWBf0maAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/19269c-9d5b-4f09-97eb-3a28f8a9c707/1/IMz236cJVzqCG2PEy2lWBf0maAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:36:e7:d2:d9:64:6e:58:77:0f:21:a6:a5:f0:a3:f5:08:6b:
f1:1f:58:7f:ca:d9:c3:9d:19:99:96:ec:a1:c5:52:ef:eb:cb:
52:a6:f0:fb:d2:13:82:fb:ca:86:49:7d:85:fb:31:66:47:e8:
a8:10:b5:40:84:27:cb:5b:7c:c9:a2:a8:09:9a:26:4b:8b:96:
f5:f9:0e:c2:39:1e:b9:0a:05:5f:2c:d7:89:31:a4:04:72:92:
44:f8:cb:5b:a2:fc:9f:d2:e4:23:e3:20:ef:e6:eb:a8:61:ee:
f8:e4:ff:45:54:99:6a:4a:45:16:95:e0:53:4d:4f:55:86:37:
ea:77:7a:fc:80:b1:72:01:58:07:92:4e:31:02:4d:ab:ea:9e:
b2:c8:7d:b9:48:53:50:16:5d:c8:05:8b:a8:bc:2e:0a:f2:e9:
f0:e0:86:68:64:c7:bc:97:5d:16:0e:0e:9e:0e:57:36:48:c7:
6f:9f:29:0b:80:b2:e2:81:85:21:6e:bd:42:50:19:f6:d3:59:
33:e8:38:b5:4d:6e:42:11:0e:11:81:18:b9:cf:11:c7:10:f4:
b3:83:61:d3:bb:86:c5:79:e4:f7:1e:81:b7:2d:73:3f:80:8e:
5e:83:48:5e:11:87:13:4a:77:5f:18:65:41:f4:33:bd:5d:40:
cc:3d:2a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:28 2026 by rpki-client