Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: Usqx2EdZGIQ41ZdJ4PJ5Aj1p9NdutLDrkfIAkP+XX3Q=
Subject key identifier: 1D:19:81:3B:6B:8E:36:B6:CF:13:11:3D:2D:D0:FE:05:F5:D4:EC:BA
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019D98BDB14F2C9B0B273F2BD731B0F85DFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 189D
Signing time: Fri 17 Apr 2026 00:01:01 +0000
Manifest this update: Fri 17 Apr 2026 00:01:01 +0000
Manifest next update: Sat 18 Apr 2026 00:01:01 +0000
Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: G9Ipy7ljxAH/iMT79pcocnHcDQtI7l7ZmM/nHCx4gMU=)
3: uWfFwS9q_sRjpANNa-JaK4UEmWc.asa (hash: nQ9YKsuw+nwcF+MWLYDHOUM/N4l8CUXGJztg2lw+NgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:b1:4f:2c:9b:0b:27:3f:2b:d7:31:b0:f8:5d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Apr 17 00:01:01 2026 GMT
Not After : Apr 18 00:01:01 2026 GMT
Subject: CN=1d19813b6b8e36b6cf13113d2dd0fe05f5d4ecba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7f:6d:7c:96:b5:7a:d5:76:86:ab:9a:80:aa:
e8:27:e7:03:cf:b1:79:bd:3e:dd:da:23:38:1f:fd:
53:d1:f3:a3:2b:eb:dd:eb:65:fd:d6:9b:fc:67:4d:
2e:c8:5d:12:7c:c6:f2:9c:7b:73:db:99:c7:34:7c:
02:2c:2c:85:f0:7a:57:87:4b:cf:ca:f9:d4:70:62:
f7:49:2b:a6:08:fb:84:59:99:e6:ee:ce:91:f5:41:
db:36:f3:39:e7:7e:b7:5b:1c:36:68:2f:4c:ef:4c:
73:00:34:a5:f8:f8:61:3b:d9:08:ca:80:7c:7c:b5:
bc:dd:d0:80:3c:91:98:67:ec:b5:2f:65:a8:38:70:
67:47:e9:38:c3:fc:53:c3:09:99:01:13:85:31:f7:
d4:47:12:09:60:e2:10:76:19:fc:03:b4:b2:a5:53:
c1:17:a1:64:ac:96:19:30:3b:ce:96:46:4c:f0:72:
2f:fd:03:eb:d2:ff:02:c4:9f:6a:f4:93:9c:d8:ad:
03:eb:4f:fc:0c:e4:41:b1:67:6e:38:3d:8b:a6:0c:
e9:ad:92:5f:58:f6:a3:8a:aa:c1:0f:96:f0:1c:12:
f4:21:a0:76:55:73:fc:04:62:56:41:89:bd:fc:0f:
ee:fb:d4:c9:b2:40:7c:00:98:2c:5e:2c:84:1c:ad:
a1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:19:81:3B:6B:8E:36:B6:CF:13:11:3D:2D:D0:FE:05:F5:D4:EC:BA
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:28:15:0e:eb:bf:38:5b:6a:b8:f2:ca:6b:24:c6:24:17:e0:
8e:39:ca:e2:61:78:b9:9a:07:89:56:52:4f:03:b5:19:2c:9a:
c4:d4:32:91:e5:ab:f6:98:49:bd:64:6c:bf:41:3a:42:ee:35:
28:f1:13:b1:03:41:17:e2:a5:04:c8:42:e8:82:72:6a:51:4d:
db:c3:ec:57:7b:83:60:7c:b8:ae:1e:f7:4d:a7:f0:a1:d1:94:
87:06:0a:cd:ec:f4:46:e1:35:42:ed:23:52:f7:fe:60:b1:19:
1d:1b:6f:57:2e:a6:8f:44:4d:27:13:9a:bc:e2:19:e6:b0:e6:
9a:51:cc:8a:8c:d0:00:57:48:45:11:be:b4:5d:b8:59:ff:74:
ca:5d:82:81:ff:57:cc:e5:b6:c1:84:0f:69:19:71:84:d0:95:
b6:e8:ab:3b:ea:c6:69:5a:8f:9d:62:83:89:05:14:a8:7b:63:
82:4d:8d:b2:3e:04:b2:ce:8b:5c:fc:20:a2:2c:06:7e:97:8b:
a3:7a:1e:d6:78:31:27:7b:8e:a3:09:44:a0:52:c0:d6:c5:31:
29:1f:7e:c0:df:ec:34:78:cb:e5:1a:79:b8:ec:60:79:ec:98:
69:31:66:8d:94:df:a3:c2:c7:67:28:71:fb:33:99:7c:a8:29:
9f:c1:f2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:28:19 2026 by rpki-client