Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: 44OOOh4jiYBh+qm3GWJ6j3QinIrQ+WTJu38S9IGj+vo=
Subject key identifier: 22:2A:96:2A:95:91:FB:4B:1F:D1:79:C1:9A:0D:EB:AC:78:6B:DE:43
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019D996206434235244FB80C0FE3F95C3F64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 1607
Signing time: Fri 17 Apr 2026 03:00:31 +0000
Manifest this update: Fri 17 Apr 2026 03:00:31 +0000
Manifest next update: Sat 18 Apr 2026 03:00:31 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: dopJEYIUhBRjeULD9x/bVOjj735a3YTudv0XGF26CiI=)
2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=)
3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:06:43:42:35:24:4f:b8:0c:0f:e3:f9:5c:3f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Apr 17 03:00:31 2026 GMT
Not After : Apr 18 03:00:31 2026 GMT
Subject: CN=222a962a9591fb4b1fd179c19a0debac786bde43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2f:5d:bc:b5:74:36:56:1b:5a:ce:4c:f1:f8:
54:89:1a:ef:7e:c2:9b:ca:82:32:41:5c:e1:2f:d7:
c0:2c:37:07:d4:9b:c2:62:ea:1a:b3:2f:fd:28:03:
f2:eb:99:5a:96:60:4b:fb:83:65:ee:ab:f5:4b:99:
e8:18:58:18:50:b6:1d:d6:8e:98:8f:8e:65:c0:b5:
b4:b7:c3:1a:4f:3e:8f:1c:98:f6:46:a6:39:0d:04:
bf:30:7c:6f:92:03:75:86:f8:d7:3a:ee:bc:55:5a:
c6:c4:3b:00:8c:6e:3d:27:08:0f:58:21:99:f9:18:
3b:b3:90:0d:8f:ec:80:52:51:6e:c1:82:03:41:5c:
1b:42:6b:78:70:50:fb:3c:6a:e7:4c:cb:83:23:6e:
97:fa:81:d3:b5:92:1f:33:15:ba:64:1f:04:78:51:
66:91:76:af:8a:a5:61:a6:ea:ec:05:07:d5:6d:62:
ba:ba:ad:2a:62:38:cc:3b:01:f0:70:c4:b3:88:e9:
85:f1:eb:06:32:c2:1f:ec:aa:52:d2:8e:4d:50:cc:
b9:1f:d5:d8:b0:4c:2d:58:1c:3f:d0:b9:d8:e3:31:
4c:5f:7f:8a:c2:01:c4:62:21:80:7c:7d:61:84:b5:
3e:37:0f:08:02:bb:b5:2a:73:61:f4:ea:ac:ba:13:
dc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2A:96:2A:95:91:FB:4B:1F:D1:79:C1:9A:0D:EB:AC:78:6B:DE:43
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ef:ee:7c:90:41:2a:9e:8f:31:84:6b:40:a2:56:69:71:92:
cc:fc:02:21:26:20:f3:15:f9:f9:ae:71:22:2b:de:86:7c:13:
f3:aa:4c:b7:ef:6a:39:49:fd:e2:26:8f:d1:ad:4b:da:46:f6:
e5:eb:35:6b:07:16:a1:14:fc:b4:11:83:ac:a1:02:c2:87:15:
76:c1:5c:0e:b6:c6:d7:96:33:bc:31:4a:c7:01:43:17:b4:5f:
20:b4:a3:29:9e:ad:61:64:73:6a:1e:d2:ca:ef:d1:50:1e:6c:
a6:6d:17:09:69:0e:4b:c0:76:e3:b5:53:c3:27:6a:13:f1:f9:
d1:80:62:1c:08:ef:dc:05:37:7a:0a:58:f3:12:92:8c:64:18:
4e:e0:5d:d7:f0:61:eb:1c:a6:54:e7:15:e3:90:3f:56:02:f5:
fe:26:1a:ad:cd:4e:40:7d:98:50:74:2e:ce:26:42:a0:5b:79:
98:29:2c:dd:85:42:bc:2a:52:7e:d1:8a:e8:1e:64:bb:f3:f5:
ea:31:7a:d0:a1:a2:69:a7:7e:3f:b8:b0:93:f1:a7:e1:f2:60:
51:55:b2:9b:9e:79:e6:71:e5:63:40:05:03:35:f7:c2:e7:14:
d3:cc:17:cd:38:35:1a:2b:e4:fa:8d:34:aa:59:30:b9:2a:b0:
d2:d6:dc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:02:46 2026 by rpki-client