Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: eRFZvZ2Nt8VO86F6I/qhMI07nYypnqbIxsgJKhrxZuU=
Subject key identifier: B5:92:12:F6:0C:F3:33:8C:6E:A8:C7:7D:50:E2:F3:18:BA:92:E0:49
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019EBE484591FCAA7746BA8B43820EBB37A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1935
Signing time: Sat 13 Jun 2026 00:01:07 +0000
Manifest this update: Sat 13 Jun 2026 00:01:07 +0000
Manifest next update: Sun 14 Jun 2026 00:01:07 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: NNdTnxOi6UgSTxjZc1h7OWRvxUTAiNIb0jWS7VgPMS8=)
3: uWfFwS9q_sRjpANNa-JaK4UEmWc.asa (hash: nQ9YKsuw+nwcF+MWLYDHOUM/N4l8CUXGJztg2lw+NgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:48:45:91:fc:aa:77:46:ba:8b:43:82:0e:bb:37:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Jun 13 00:01:07 2026 GMT
Not After : Jun 14 00:01:07 2026 GMT
Subject: CN=b59212f60cf3338c6ea8c77d50e2f318ba92e049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:97:1b:f2:0a:b7:66:da:bc:83:0f:36:93:0f:
a3:fc:98:e2:a6:d2:d8:89:2d:65:59:c3:26:8f:71:
c1:e3:1a:14:be:a3:ea:09:d5:99:90:cb:c3:70:50:
7b:d0:8e:f8:2a:a8:53:b6:2e:20:17:42:ea:44:a4:
58:d2:80:88:35:3d:71:25:a7:1c:fd:de:7b:bd:08:
38:bc:39:89:b8:f4:e1:1c:d7:b3:a8:a4:5b:12:ec:
eb:cf:09:e6:1c:33:16:a0:45:9c:09:93:bc:51:ba:
f3:ab:a6:4f:f6:a7:8b:a1:d7:60:ae:38:08:51:4d:
f2:4d:a0:59:8c:cb:5e:24:91:94:d3:cc:70:3c:17:
79:0f:41:c2:40:2c:0a:3e:62:c6:08:b9:8d:9a:ed:
d8:73:35:fd:37:64:b3:69:4c:57:37:e4:5b:46:8b:
20:5e:62:27:4a:36:8d:02:35:e7:a4:c4:40:c0:c1:
a5:1b:ed:ad:7c:d1:72:cd:9c:42:a8:04:3f:ff:48:
2b:ac:cb:b6:2c:19:a4:0c:19:d2:d8:ae:24:7f:f3:
eb:d3:4a:0f:4c:94:93:27:ae:0b:98:07:37:72:d8:
9f:14:d1:60:e7:5f:b2:fd:6b:15:7b:34:0a:36:01:
02:1e:52:29:bf:1b:ad:12:27:fc:2d:60:1e:cb:d6:
ff:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:92:12:F6:0C:F3:33:8C:6E:A8:C7:7D:50:E2:F3:18:BA:92:E0:49
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:89:f1:12:3d:88:95:79:28:a3:7b:be:f7:09:37:eb:81:8b:
05:22:98:c3:f4:69:a0:b3:d4:a3:e4:4f:51:04:a6:30:6b:84:
f7:c8:62:16:09:95:bd:47:85:ea:8b:68:e0:c1:79:09:ae:03:
03:dd:7f:63:66:6e:f9:5f:6e:8c:61:69:bb:5c:8c:ca:fe:18:
16:6e:c6:a3:74:d4:08:56:d6:2f:a0:d5:9c:13:4f:d6:a4:e8:
08:e6:83:95:40:99:51:8b:da:fc:0a:ca:8a:3d:70:71:8c:39:
22:e8:5d:39:80:6d:9e:3c:09:44:bc:0d:02:17:8f:15:1a:4c:
b4:8b:3c:93:8e:85:3c:6c:76:30:1e:6e:d5:7d:4c:ac:fa:10:
53:35:6e:a8:a1:e1:2f:db:58:8e:61:1b:38:a6:f7:3c:31:06:
b3:e6:3d:4b:09:db:22:3e:2b:84:c5:bf:a7:ca:6b:1d:14:e3:
ab:dc:5f:c3:57:95:18:37:a3:2c:8b:50:f3:47:21:04:09:36:
35:52:e7:dd:38:10:02:4e:11:de:bd:4c:c5:33:47:ae:48:a5:
f6:96:0b:d1:64:69:e2:3c:7b:4c:12:6d:93:85:8a:c8:54:cf:
59:19:8c:f9:d1:53:08:3f:03:f6:87:5d:bf:3e:c6:62:5f:67:
ed:a6:b7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:08:41 2026 by rpki-client