Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: HS69mOH1TbfEQI1JDcllSjWRH9uTpW7jI2V2OMoHGCM=
Subject key identifier: 7B:39:A6:0C:75:8D:66:3F:2D:63:8D:07:BF:0F:A1:D5:27:A0:F9:4A
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019CAB3416565FEE924D382089F34D31C963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 1821
Signing time: Sun 01 Mar 2026 21:00:43 +0000
Manifest this update: Sun 01 Mar 2026 21:00:43 +0000
Manifest next update: Mon 02 Mar 2026 21:00:43 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: MoayQ8+kCck5bxdC8W2K91qG5Y938M3Eawlmn/bxc/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:16:56:5f:ee:92:4d:38:20:89:f3:4d:31:c9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Mar 1 21:00:43 2026 GMT
Not After : Mar 2 21:00:43 2026 GMT
Subject: CN=7b39a60c758d663f2d638d07bf0fa1d527a0f94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:70:f3:8e:93:c3:6d:85:78:d4:f5:ce:f5:6d:
4d:f9:d9:ce:50:6d:9f:03:a8:05:09:c1:32:c4:98:
04:d8:a6:a2:93:0f:da:86:20:50:d8:75:bc:ab:a1:
a7:73:0e:2c:dc:e4:77:8f:7f:1c:c7:a3:fe:70:4b:
1a:b0:a7:d6:38:2f:04:1e:61:c4:3e:fa:06:1d:95:
0c:5f:b7:fa:6f:b5:8c:f3:fb:bd:43:be:87:b4:13:
e0:c0:03:a5:9d:b6:c3:17:9d:89:60:3c:73:13:1e:
1b:2b:43:9d:7a:7c:5c:34:08:e8:0d:72:e8:b0:1b:
af:8f:43:08:d2:23:64:89:7a:1a:bb:87:a8:cc:6a:
be:c3:4e:73:1d:b4:be:46:ee:53:05:b3:b5:2f:d9:
e9:7e:d4:a3:36:23:91:45:f2:b0:e3:7e:57:4a:d0:
68:44:4c:e6:fb:e6:3f:b6:2c:cf:ff:f1:66:6d:0f:
a5:e2:07:2e:98:da:f6:ee:9c:13:4f:cf:8b:f5:35:
41:b2:e2:5f:35:d6:1a:a2:95:a4:86:fe:1c:43:62:
a5:b8:8e:e8:5a:2f:74:73:9b:01:05:72:5d:4b:44:
7d:21:79:45:b4:f7:96:2a:34:f2:9e:85:69:4a:69:
fe:62:b7:a5:87:08:49:f0:28:93:5c:d8:ec:b1:2f:
89:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:39:A6:0C:75:8D:66:3F:2D:63:8D:07:BF:0F:A1:D5:27:A0:F9:4A
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:13:f7:ce:dc:df:4c:2f:ed:34:0a:d9:ea:73:1e:77:0a:d2:
db:1c:13:59:8e:ec:26:7e:f1:48:22:9d:8c:23:98:c9:1b:f6:
bb:cb:0f:50:b8:85:cf:24:55:20:fd:87:03:47:4c:70:af:e4:
24:e6:bf:00:e8:49:df:a7:31:ba:7d:e4:63:3e:7b:84:fa:b7:
74:3b:41:ef:82:bc:a3:a7:8e:48:aa:7e:41:42:c8:d7:3b:1f:
ff:5c:85:bd:5a:04:e1:a4:5a:51:ad:50:64:cd:9c:56:75:2e:
b6:02:79:4c:cc:75:c3:92:c5:8d:e1:d4:28:2c:09:6d:cc:8a:
48:37:fc:e6:ae:3b:10:01:81:4f:af:3e:ae:7c:94:32:b0:63:
ab:52:5d:77:89:13:7d:ad:7b:79:0e:cc:62:03:b4:73:fb:3f:
dc:4c:dd:cb:b8:51:a4:3a:e7:03:80:ee:89:2c:42:c6:4d:0e:
56:83:b8:8a:86:76:f8:90:26:64:4e:45:54:f0:0b:2b:19:21:
74:43:52:c6:54:01:f0:c0:26:8f:dc:ea:e7:83:06:43:f0:0e:
08:a9:6e:94:3b:92:03:85:66:2a:54:4e:9f:70:00:74:80:a3:
30:ea:e0:4d:6d:05:23:03:33:db:27:d0:8a:a3:d5:71:04:39:
68:63:7e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:50:48 2026 by rpki-client