Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
File: IMZhH8hUYvC8yscvPfTFNRvlEN4.mft (raw, json)
Hash identifier: tpF2E0GvqS/egzj3kVc2LOJZCnKTD9jbIG/LQOl92iY=
Subject key identifier: 7B:6B:E5:81:AA:CC:19:19:D3:78:72:94:1B:CD:7B:34:BF:E1:84:D1
Authority key identifier: 20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
Certificate issuer: /CN=20c6611fc85462f0bccac72f3df4c5351be510de
Certificate serial: 019D262828880292058E5A95C6A984D89EB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
Manifest number: 0266
Signing time: Wed 25 Mar 2026 18:00:59 +0000
Manifest this update: Wed 25 Mar 2026 18:00:59 +0000
Manifest next update: Thu 26 Mar 2026 18:00:59 +0000
Files and hashes: 1: IMZhH8hUYvC8yscvPfTFNRvlEN4.crl (hash: PDpi77J6LXwc6p3C+v867sod0umjEuLrTRJ0BKzcGXQ=)
2: qF2ZodUY37J4i-OZIa3cfOgc5Rc.roa (hash: wDYZQhbUNMQIgvk6fTW/5tpDGzxiDdiDkVT4f+UU/qM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:28:88:02:92:05:8e:5a:95:c6:a9:84:d8:9e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c6611fc85462f0bccac72f3df4c5351be510de
Validity
Not Before: Mar 25 18:00:59 2026 GMT
Not After : Mar 26 18:00:59 2026 GMT
Subject: CN=7b6be581aacc1919d37872941bcd7b34bfe184d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7b:df:58:65:3f:e0:a4:fa:04:92:1e:35:f9:
3e:bf:af:71:b7:25:82:76:72:ff:4b:72:fc:58:90:
92:6e:df:17:cd:11:9a:f8:57:4d:0f:5b:e6:26:a4:
eb:a1:8b:05:49:51:8b:9b:1a:7f:6b:e6:8e:c6:8d:
cf:83:2c:2e:98:f8:33:68:21:59:b3:b5:7f:24:63:
df:ee:7f:52:31:31:bf:58:68:80:90:3d:37:85:95:
e5:26:21:68:62:26:b7:4b:af:d4:24:ef:40:3e:26:
67:37:8a:bb:37:cd:5b:af:89:e3:da:ee:db:43:85:
46:9f:ef:2a:fb:b6:b0:5b:90:e8:aa:a9:af:6d:ba:
cc:73:41:7e:fa:e3:6e:21:cf:29:89:7b:de:91:c4:
ed:5d:f6:8d:86:93:c6:02:f4:47:3e:62:ac:ad:70:
c2:27:a7:e5:bd:f4:e9:7c:61:bc:05:bd:ea:bb:4b:
92:8d:07:9e:8a:59:2b:bd:d4:6c:0d:05:43:9d:09:
f5:ff:0f:17:b1:99:84:f1:3f:44:2b:95:67:5c:ee:
fb:63:75:a5:2e:20:bd:de:f0:9b:45:e3:54:ca:2c:
0a:1a:4a:54:11:8e:30:a6:02:27:ce:48:7c:29:98:
0f:c0:6b:62:f6:06:9d:a1:b8:8f:54:fd:05:ad:12:
66:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6B:E5:81:AA:CC:19:19:D3:78:72:94:1B:CD:7B:34:BF:E1:84:D1
X509v3 Authority Key Identifier:
keyid:20:C6:61:1F:C8:54:62:F0:BC:CA:C7:2F:3D:F4:C5:35:1B:E5:10:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMZhH8hUYvC8yscvPfTFNRvlEN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3841fe-dc49-4b9c-af9d-daa23ffb4cbf/1/IMZhH8hUYvC8yscvPfTFNRvlEN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:43:24:ed:3d:66:1b:29:e1:59:d3:71:40:0a:62:56:31:82:
48:20:cf:10:40:2b:b1:71:f5:66:26:69:8a:89:ab:52:14:ea:
cf:2a:33:07:6b:ce:52:65:59:23:9d:5c:56:44:14:d2:02:14:
2c:f0:50:78:6b:a4:18:f9:da:56:af:aa:2d:3b:8b:6b:c8:42:
2b:f2:35:5b:03:24:2b:a2:93:7b:e5:bc:29:bd:35:8e:bf:be:
07:a4:99:ce:d6:af:85:5f:c8:12:3d:63:1c:1a:e0:38:45:05:
66:ef:87:4d:95:9d:e6:5f:13:ca:e4:76:f0:85:e9:cb:03:47:
7d:32:32:0f:73:5c:45:37:d9:b8:33:d1:67:ab:06:27:ca:78:
be:12:9f:2e:bb:fc:17:ad:1d:db:bd:60:f3:92:12:4c:8a:87:
55:9b:7a:4f:b9:77:54:43:e6:6d:66:27:91:34:6e:2e:b6:16:
b7:2a:25:4c:e4:de:d1:ae:bc:79:83:d2:22:26:91:06:b2:41:
ad:53:60:ae:2c:dc:4d:ef:bf:1e:4d:30:b2:f9:0a:61:83:e7:
87:20:fb:8c:cc:19:15:6d:e3:55:a4:53:3c:f3:00:c8:8a:73:
9b:9a:17:d5:0d:6e:df:09:74:08:5d:d3:d8:9d:1d:5f:c0:63:
1d:48:d2:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mKCiIApIFjlqVxqmE2J63MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYzY2MTFmYzg1NDYyZjBiY2NhYzcyZjNkZjRjNTM1MWJl
NTEwZGUwHhcNMjYwMzI1MTgwMDU5WhcNMjYwMzI2MTgwMDU5WjAzMTEwLwYDVQQD
Eyg3YjZiZTU4MWFhY2MxOTE5ZDM3ODcyOTQxYmNkN2IzNGJmZTE4NGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HvfWGU/4KT6BJIeNfk+v69xtyWC
dnL/S3L8WJCSbt8XzRGa+FdND1vmJqTroYsFSVGLmxp/a+aOxo3PgywumPgzaCFZ
s7V/JGPf7n9SMTG/WGiAkD03hZXlJiFoYia3S6/UJO9APiZnN4q7N81br4nj2u7b
Q4VGn+8q+7awW5DoqqmvbbrMc0F++uNuIc8piXvekcTtXfaNhpPGAvRHPmKsrXDC
J6flvfTpfGG8Bb3qu0uSjQeeilkrvdRsDQVDnQn1/w8XsZmE8T9EK5VnXO77Y3Wl
LiC93vCbReNUyiwKGkpUEY4wpgInzkh8KZgPwGti9gadobiPVP0FrRJmtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtr5YGqzBkZ03hylBvNezS/4YTRMB8GA1UdIwQY
MBaAFCDGYR/IVGLwvMrHLz30xTUb5RDeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQt
ZGFhMjNmZmI0Y2JmLzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS8zODQxZmUtZGM0OS00YjljLWFmOWQtZGFhMjNmZmI0Y2Jm
LzEvSU1aaEg4aFVZdkM4eXNjdlBmVEZOUnZsRU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAREMk7T1m
GynhWdNxQApiVjGCSCDPEEArsXH1ZiZpiomrUhTqzyozB2vOUmVZI51cVkQU0gIU
LPBQeGukGPnaVq+qLTuLa8hCK/I1WwMkK6KTe+W8Kb01jr++B6SZztavhV/IEj1j
HBrgOEUFZu+HTZWd5l8TyuR28IXpywNHfTIyD3NcRTfZuDPRZ6sGJ8p4vhKfLrv8
F60d271g85ISTIqHVZt6T7l3VEPmbWYnkTRuLrYWtyolTOTe0a68eYPSIiaRBrJB
rVNgrizcTe+/Hk0wsvkKYYPnhyD7jMwZFW3jVaRTPPMAyIpzm5oX1Q1u3wl0CF3T
2J0dX8BjHUjSPQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:33 2026 by rpki-client