Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json)
Hash identifier: nlWqkYRNBlpAQw2133W2y4Rw2ADltFNkUP2FyJ8l33M=
Subject key identifier: 8A:9C:21:4E:A4:F1:41:7B:DD:59:DB:E7:5A:43:D9:95:2D:15:B1:96
Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Certificate serial: 019EC2C976356D618948DEB13508094BD46D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
Manifest number: 16A1
Signing time: Sat 13 Jun 2026 21:00:43 +0000
Manifest this update: Sat 13 Jun 2026 21:00:43 +0000
Manifest next update: Sun 14 Jun 2026 21:00:43 +0000
Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: S5xfCy6vi4IHeT4ErgTPFIbz98XKgpFp9bUOm4PcQYM=)
2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=)
3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:76:35:6d:61:89:48:de:b1:35:08:09:4b:d4:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0
Validity
Not Before: Jun 13 21:00:43 2026 GMT
Not After : Jun 14 21:00:43 2026 GMT
Subject: CN=8a9c214ea4f1417bdd59dbe75a43d9952d15b196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a2:12:7f:40:4a:5b:01:28:55:b8:c7:fb:fe:
12:6f:47:8a:17:4e:1a:ad:45:c6:91:77:78:25:c7:
9e:e6:74:67:ed:cf:72:7b:05:bc:c5:b2:ac:71:63:
d8:0e:57:a2:9d:40:d5:52:df:5d:e0:32:f4:94:25:
55:ff:66:a2:52:9f:e3:0b:9a:b1:f6:b3:24:3b:46:
20:6c:3c:60:88:ab:97:89:34:ea:fa:8f:bc:df:c1:
50:03:19:f9:a5:54:d5:dd:88:16:36:26:ab:85:b8:
8e:39:d2:0c:7e:2e:3e:5d:37:23:42:bf:90:39:bc:
10:10:27:27:ee:36:31:c9:c9:56:6d:d2:b1:08:65:
69:3c:0e:16:b2:d6:c7:f5:31:3c:a6:be:ea:e9:7a:
80:a1:ba:35:8f:a2:a0:eb:2f:e3:90:f1:82:32:ba:
f9:fe:63:ca:fa:6f:7a:79:53:3f:74:79:02:f1:c7:
58:f3:51:11:00:96:26:1f:97:14:c4:db:26:c5:bc:
45:7c:36:e5:00:56:b3:0f:54:99:7b:48:a5:06:ea:
73:a7:16:83:6f:ad:97:9d:93:49:28:21:a9:f6:1e:
f1:71:1f:7e:be:90:92:89:51:e4:c1:1a:18:71:05:
41:73:c5:24:04:bd:12:4d:8d:01:d2:54:80:d1:e0:
7f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9C:21:4E:A4:F1:41:7B:DD:59:DB:E7:5A:43:D9:95:2D:15:B1:96
X509v3 Authority Key Identifier:
keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:74:ec:88:ff:f8:1e:6a:07:b0:7a:dc:30:68:36:96:5f:0c:
87:91:7b:38:7a:88:0d:32:ee:e3:4a:b2:46:76:b8:d5:07:2d:
87:36:4e:a1:ca:47:d7:2c:e7:d2:dd:a0:98:74:2c:a0:72:74:
13:5c:7f:02:22:de:6c:6a:75:47:ee:56:b2:3d:90:ed:ef:06:
fb:c1:bc:d8:41:49:ba:66:2f:30:f2:a2:c7:55:e5:d7:0f:ae:
f6:eb:d6:d0:16:9e:4a:8c:71:02:e2:84:40:74:cd:1a:85:18:
78:9a:a6:54:63:36:48:0c:b4:d9:2c:91:cd:48:65:23:8e:61:
9e:5e:29:38:0e:8e:64:b3:29:d0:06:0f:ac:99:67:39:72:3d:
ef:84:6c:3a:b5:1b:3f:3f:a2:73:ef:77:d6:ef:99:1d:8a:22:
92:46:74:ad:f6:3a:47:90:39:de:a4:63:3e:d9:9f:25:d5:80:
41:b9:76:57:d1:8d:2f:83:71:75:71:59:85:2a:fb:0a:cd:a5:
3a:10:bf:d6:7a:46:77:84:e7:b3:9e:ea:2c:af:1d:67:7f:c4:
28:3b:65:a8:32:79:7f:bb:da:e0:9c:c2:0a:74:3c:6a:c6:ec:
ba:65:d7:39:47:ff:77:65:d6:d0:8b:d4:f4:ae:63:0c:ce:58:
fc:4e:24:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7CyXY1bWGJSN6xNQgJS9RtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1
NzM0ZjAwHhcNMjYwNjEzMjEwMDQzWhcNMjYwNjE0MjEwMDQzWjAzMTEwLwYDVQQD
Eyg4YTljMjE0ZWE0ZjE0MTdiZGQ1OWRiZTc1YTQzZDk5NTJkMTViMTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqISf0BKWwEoVbjH+/4Sb0eKF04a
rUXGkXd4Jcee5nRn7c9yewW8xbKscWPYDleinUDVUt9d4DL0lCVV/2aiUp/jC5qx
9rMkO0YgbDxgiKuXiTTq+o+838FQAxn5pVTV3YgWNiarhbiOOdIMfi4+XTcjQr+Q
ObwQECcn7jYxyclWbdKxCGVpPA4WstbH9TE8pr7q6XqAobo1j6Kg6y/jkPGCMrr5
/mPK+m96eVM/dHkC8cdY81ERAJYmH5cUxNsmxbxFfDblAFazD1SZe0ilBupzpxaD
b62XnZNJKCGp9h7xcR9+vpCSiVHkwRoYcQVBc8UkBL0STY0B0lSA0eB/cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIqcIU6k8UF73Vnb51pD2ZUtFbGWMB8GA1UdIwQY
MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt
NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk
LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmnTsiP/4
HmoHsHrcMGg2ll8Mh5F7OHqIDTLu40qyRna41QcthzZOocpH1yzn0t2gmHQsoHJ0
E1x/AiLebGp1R+5Wsj2Q7e8G+8G82EFJumYvMPKix1Xl1w+u9uvW0BaeSoxxAuKE
QHTNGoUYeJqmVGM2SAy02SyRzUhlI45hnl4pOA6OZLMp0AYPrJlnOXI974RsOrUb
Pz+ic+931u+ZHYoikkZ0rfY6R5A53qRjPtmfJdWAQbl2V9GNL4NxdXFZhSr7Cs2l
OhC/1npGd4Tns57qLK8dZ3/EKDtlqDJ5f7va4JzCCnQ8asbsumXXOUf/d2XW0IvU
9K5jDM5Y/E4kwA==
-----END CERTIFICATE-----
Generated at Sun Jun 14 04:16:00 2026 by rpki-client