Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: TzHk82HZNhOw/HVJqSCN/EdihFO3OXBAwmVL44/BiN0=
Subject key identifier: 37:52:EE:83:63:1E:8E:DF:04:96:F4:4B:64:70:75:F1:86:61:EB:87
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019CABD8E55AB02873AD7A7CEF215CD77813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 158C
Signing time: Mon 02 Mar 2026 00:00:44 +0000
Manifest this update: Mon 02 Mar 2026 00:00:44 +0000
Manifest next update: Tue 03 Mar 2026 00:00:44 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: V4Q7NMKIDb6nM1Gm87E1Z/ELxUT6Y1tDDYnNLUeoNCw=)
2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=)
3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:e5:5a:b0:28:73:ad:7a:7c:ef:21:5c:d7:78:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Mar 2 00:00:44 2026 GMT
Not After : Mar 3 00:00:44 2026 GMT
Subject: CN=3752ee83631e8edf0496f44b647075f18661eb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:38:b5:ab:ac:c1:25:6c:cc:7a:7e:74:2b:77:
aa:27:3c:a1:dc:f3:58:47:7e:29:95:55:46:2b:f2:
13:93:00:ff:87:ae:c8:a1:8c:7c:74:ff:ec:f3:86:
f7:d1:af:f4:87:d3:da:b8:62:3e:61:36:c4:7f:f4:
2a:ae:2d:be:dc:36:e5:fb:e3:98:04:2a:5d:15:ee:
d1:16:58:e9:5c:93:b3:7a:f8:7b:da:b7:a5:26:4b:
73:22:a2:1d:56:61:b0:79:f8:0d:8d:73:83:98:91:
39:96:a0:9b:33:5c:88:6f:66:b5:54:94:0a:7e:46:
87:51:48:ed:1a:4f:0d:fb:6c:c0:4f:e3:25:93:98:
db:22:8c:6d:e4:b4:5a:40:e7:81:bf:d6:a8:40:67:
5e:dd:f0:6d:26:b2:60:b8:0b:a9:71:e5:7e:1d:49:
6a:ef:d9:e5:c0:c9:65:4a:5b:71:75:2e:98:af:65:
87:90:9a:07:94:b3:9c:34:ee:21:c2:fa:62:0f:97:
95:37:b8:9e:6b:5b:40:06:76:14:cc:30:2c:0c:bc:
10:d7:f1:a8:e2:ef:11:bc:21:54:35:01:fe:2c:a4:
04:96:cb:cf:f3:07:64:8d:d8:69:58:c2:03:2a:5c:
19:55:90:35:2c:6c:b0:cf:bf:4a:c6:4d:5e:6b:ac:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:52:EE:83:63:1E:8E:DF:04:96:F4:4B:64:70:75:F1:86:61:EB:87
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:84:da:de:92:f5:73:c1:c4:f5:7c:e1:53:7e:e7:e0:c8:44:
04:77:5e:ad:53:04:33:f2:75:81:87:2b:90:22:4f:bf:a1:e5:
24:d8:72:d8:09:d7:09:33:2b:04:b2:73:8f:e4:f6:32:cd:66:
88:71:bc:35:5c:e9:0e:59:1a:d4:f5:55:70:b7:3e:5a:10:77:
8c:a4:67:f8:2d:47:6d:31:e2:88:96:bb:e7:ed:ee:13:d6:a9:
9a:55:01:29:5e:c3:73:5b:cc:a8:cc:48:5a:12:19:d8:93:09:
c4:76:c0:9e:5c:f0:2f:78:31:15:43:c4:6d:88:57:c0:e7:b5:
fa:8e:ea:d3:91:6d:0b:f7:97:e5:c2:7a:35:4b:38:ec:42:e5:
3b:ea:66:b6:e7:eb:3b:ef:2c:0d:ff:3f:b2:47:5d:88:87:81:
50:92:ac:08:e2:7d:ef:40:af:bb:aa:57:34:23:57:9f:55:0a:
b4:81:8a:86:2d:d1:6a:e6:61:91:be:49:0b:f5:97:7d:c0:4e:
e6:2c:92:92:b3:b1:72:ff:3e:33:48:dd:3f:6b:1f:41:37:9d:
8e:79:71:6b:82:4e:bc:ce:92:c3:17:9c:f8:0c:8a:a7:ce:13:
7b:1e:85:48:84:b0:67:c4:c6:78:1b:2c:1a:a7:40:99:08:4f:
a4:91:69:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:41:11 2026 by rpki-client