Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
File: IMjVw3OmvzurIpOUNguG0Alq7L0.mft (raw, json)
Hash identifier: HnD85KPIAz8//P2sr8C1ZyPE2E27D3A2W3pPpCc5AiM=
Subject key identifier: 30:FB:A7:7C:09:7B:08:70:D3:26:88:23:6F:B5:E6:7A:1B:15:97:83
Authority key identifier: 20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
Certificate issuer: /CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Certificate serial: 019D31F4D5C9C558971B068D7B09CEF6E845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
Manifest number: 1427
Signing time: Sat 28 Mar 2026 01:00:22 +0000
Manifest this update: Sat 28 Mar 2026 01:00:22 +0000
Manifest next update: Sun 29 Mar 2026 01:00:22 +0000
Files and hashes: 1: IMjVw3OmvzurIpOUNguG0Alq7L0.crl (hash: eXhULX7SGGCBsy/6gTW717fRGCbll/XUcaznFLdYYTg=)
2: O8aab7ETvqqwSTW9yBuIrVx21zA.roa (hash: bF8gQPkhavadSZ42TEdRPqMvaurgxudJuIdc/vCC8/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:f4:d5:c9:c5:58:97:1b:06:8d:7b:09:ce:f6:e8:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20c8d5c373a6bf3bab229394360b86d0096aecbd
Validity
Not Before: Mar 28 01:00:22 2026 GMT
Not After : Mar 29 01:00:22 2026 GMT
Subject: CN=30fba77c097b0870d32688236fb5e67a1b159783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:90:93:d1:83:1e:4b:19:c3:b1:24:85:6f:3d:
f7:85:3e:aa:94:58:88:02:a3:71:2f:60:8c:3a:fd:
10:7c:1f:04:c9:b5:a4:7b:d8:f4:22:fb:ff:db:a1:
dd:17:d0:ce:96:b6:4e:99:f0:6f:6a:36:8c:bf:bf:
0e:39:f9:f9:7c:2f:74:a6:30:df:1c:8f:57:a4:10:
10:e2:0f:f3:1c:b8:3e:48:6e:f8:42:d8:3f:8f:53:
b7:9a:47:56:62:c3:72:cb:b3:3d:7b:1c:a8:2e:1e:
c2:86:b3:01:d0:5e:38:2d:a3:4a:b8:6a:87:08:83:
72:3a:ee:a3:3d:42:a2:ed:33:be:0b:dc:46:c8:8c:
45:d3:f5:4f:a8:4c:70:1c:15:81:bc:10:1b:1a:a5:
95:34:9c:56:af:f0:a5:ce:ae:b1:16:8e:13:a7:6a:
79:5d:72:6f:ef:c6:b6:03:d6:f1:08:b1:3b:db:0b:
06:64:1d:d7:ed:4d:31:0a:a6:48:5e:dc:b1:6e:37:
9b:0c:39:fa:c8:d9:99:62:12:dd:2e:b4:65:c4:ba:
ef:2f:4e:1e:e2:89:e3:82:6a:94:d2:3f:95:2a:fb:
14:ba:33:8d:31:97:1b:f0:a1:0d:d3:96:1d:8a:d4:
0c:b5:fa:04:4e:3c:e0:03:84:4d:90:e6:12:99:9f:
4f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FB:A7:7C:09:7B:08:70:D3:26:88:23:6F:B5:E6:7A:1B:15:97:83
X509v3 Authority Key Identifier:
keyid:20:C8:D5:C3:73:A6:BF:3B:AB:22:93:94:36:0B:86:D0:09:6A:EC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IMjVw3OmvzurIpOUNguG0Alq7L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8e9855-5989-486e-9436-50a7c92591d0/1/IMjVw3OmvzurIpOUNguG0Alq7L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:34:a7:54:9c:7d:d5:8c:12:8e:4d:17:35:3b:ca:2d:ae:5b:
70:79:11:e0:81:d5:7f:44:36:51:78:c0:a4:2e:cc:4b:1f:23:
e3:8b:ff:99:b7:c1:ab:b2:1b:b0:d7:a2:5d:43:e4:43:23:92:
d9:06:b6:6e:a5:9e:c5:73:a0:6c:4d:9b:5a:67:85:0f:d2:38:
9d:0c:e0:bd:7d:cd:6e:f8:28:a0:f4:ee:a2:0b:b6:fb:44:bd:
df:cb:c4:98:6d:e5:e9:8e:7d:7c:cb:77:fd:83:a0:00:33:ed:
99:96:58:8e:00:8d:f5:ce:58:a6:d4:23:c4:fc:e9:c1:a5:9a:
1d:3c:8e:d9:97:1b:39:cc:14:01:3b:0f:59:7a:2c:5a:0a:9f:
ea:83:33:b9:36:22:94:42:be:c5:30:60:7c:c5:00:46:84:82:
a9:e2:3c:b7:8e:f8:b0:7e:6a:81:4b:24:d8:88:28:d9:74:f5:
61:a3:15:94:0e:1d:a3:19:04:ec:9a:62:df:ff:5a:40:07:3a:
15:ea:54:cb:35:95:90:3a:84:ff:aa:b9:49:f6:43:50:38:6d:
99:d3:e3:51:ae:d6:39:83:b7:7e:21:15:08:86:e6:1c:c7:82:
33:3c:7a:ae:93:05:4f:2b:0f:4c:c1:6a:4a:39:12:96:c7:93:
23:48:11:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:33:26 2026 by rpki-client