Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: MamWvPL5jmMfrRxR8TMmWswOT0+IaWlBlfqakY1Hcjk=
Subject key identifier: FB:4B:FE:1A:14:CD:F7:3E:92:B8:D2:5B:63:5E:41:B0:D8:F8:E6:50
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 019D27040EDDBAFD69248C78FF9743FFF994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 0695
Signing time: Wed 25 Mar 2026 22:01:10 +0000
Manifest this update: Wed 25 Mar 2026 22:01:10 +0000
Manifest next update: Thu 26 Mar 2026 22:01:10 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: Ru9bzwIZx6ZNGTLDoW8ew/XocJWwqhqn3lhASbFlNBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:0e:dd:ba:fd:69:24:8c:78:ff:97:43:ff:f9:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Mar 25 22:01:10 2026 GMT
Not After : Mar 26 22:01:10 2026 GMT
Subject: CN=fb4bfe1a14cdf73e92b8d25b635e41b0d8f8e650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:77:4e:09:b8:32:21:9f:07:fa:32:fa:44:
05:ee:83:14:98:2e:ac:b4:09:a5:b9:ab:30:46:5e:
4f:71:a6:92:9f:23:d1:15:c1:69:d2:81:f1:88:6b:
ad:4f:f1:3e:da:99:d6:b1:37:49:12:ba:75:27:0a:
77:d8:5d:ed:b4:97:cd:4e:d1:45:4e:3c:43:a7:dc:
c6:1b:fb:d5:db:cd:83:80:f0:a6:48:78:b5:d4:5f:
b8:7e:50:98:ce:2c:f9:40:ef:1c:46:d8:68:65:07:
af:dc:d8:e4:8a:f7:a3:8f:a6:d6:90:c4:08:67:ab:
52:54:fb:dd:7b:c7:dc:a6:f7:82:1f:46:75:ac:64:
3c:4b:63:17:b0:83:13:b9:ff:c9:ef:5e:68:d1:68:
06:59:16:f1:63:4a:91:1f:62:ac:25:20:81:53:17:
44:23:8d:56:cf:7c:d1:a4:ac:64:7a:27:4e:6c:b8:
ae:8b:1c:69:bd:35:2f:bc:d6:01:61:9c:f3:92:64:
80:b7:68:66:90:58:7e:4e:f2:12:c5:f8:ea:ab:d5:
c1:ec:31:fc:7d:94:49:98:38:5d:f0:e2:43:2f:54:
53:66:b6:a7:55:18:03:58:d6:49:3c:f8:d6:57:dc:
23:ea:27:30:03:8c:bf:31:f7:fd:23:8a:ea:d9:16:
07:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4B:FE:1A:14:CD:F7:3E:92:B8:D2:5B:63:5E:41:B0:D8:F8:E6:50
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:cf:ce:0d:85:81:8a:6d:b4:54:47:5c:0e:a0:a7:43:69:08:
63:68:1b:73:2a:cf:05:4d:2e:24:d9:f9:a5:6d:ce:ea:6d:6c:
77:79:c6:23:fb:69:8f:92:7e:6f:34:02:fb:65:29:84:2d:1e:
c6:44:89:29:79:46:e0:00:29:f9:a7:76:ec:62:48:d1:1c:d0:
5a:4c:db:88:48:a6:f6:dc:7c:00:10:3d:cc:6e:18:ce:97:f7:
ac:ff:3e:de:d0:c8:4f:b4:fb:7c:b5:48:d4:61:02:f2:04:3b:
f7:21:0b:6e:85:c5:17:07:8f:24:c7:a1:15:16:da:76:bb:6d:
e9:47:54:d6:2f:6b:96:b8:64:e3:94:02:47:99:5f:dc:b5:f6:
86:75:80:52:c4:06:81:3f:b1:d8:25:e7:d4:27:3f:ce:83:6e:
37:a5:47:07:48:d2:ef:5f:26:2e:f4:41:6b:03:e3:7d:4d:bd:
c8:15:69:22:02:05:f6:74:df:25:da:e7:72:27:db:75:eb:22:
d7:91:f3:fb:72:5d:1f:55:dc:ab:53:c1:a8:bb:f5:91:5b:1d:
05:88:97:21:c3:00:96:d3:83:e7:1a:7e:ec:c8:ea:ac:5c:74:
c7:11:fc:4e:ea:af:a6:57:0e:2d:77:30:d1:86:56:ae:e4:aa:
12:b2:91:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBA7duv1pJIx4/5dD//mUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwNDA1MGNjNTk1MzZmMmQ5NDA3NjkyODIzODkwY2NkZGE4
NTQ1MDgwHhcNMjYwMzI1MjIwMTEwWhcNMjYwMzI2MjIwMTEwWjAzMTEwLwYDVQQD
EyhmYjRiZmUxYTE0Y2RmNzNlOTJiOGQyNWI2MzVlNDFiMGQ4ZjhlNjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAB3Tgm4MiGfB/oy+kQF7oMUmC6s
tAmluaswRl5PcaaSnyPRFcFp0oHxiGutT/E+2pnWsTdJErp1Jwp32F3ttJfNTtFF
TjxDp9zGG/vV282DgPCmSHi11F+4flCYziz5QO8cRthoZQev3Njkivejj6bWkMQI
Z6tSVPvde8fcpveCH0Z1rGQ8S2MXsIMTuf/J715o0WgGWRbxY0qRH2KsJSCBUxdE
I41Wz3zRpKxkeidObLiuixxpvTUvvNYBYZzzkmSAt2hmkFh+TvISxfjqq9XB7DH8
fZRJmDhd8OJDL1RTZranVRgDWNZJPPjWV9wj6icwA4y/Mff9I4rq2RYHGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPtL/hoUzfc+krjSW2NeQbDY+OZQMB8GA1UdIwQY
MBaAFCBAUMxZU28tlAdpKCOJDM3ahUUIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTkt
OWI0MzdkYmZkMzUzLzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTktOWI0MzdkYmZkMzUz
LzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdc/ODYWB
im20VEdcDqCnQ2kIY2gbcyrPBU0uJNn5pW3O6m1sd3nGI/tpj5J+bzQC+2UphC0e
xkSJKXlG4AAp+ad27GJI0RzQWkzbiEim9tx8ABA9zG4Yzpf3rP8+3tDIT7T7fLVI
1GEC8gQ79yELboXFFwePJMehFRbadrtt6UdU1i9rlrhk45QCR5lf3LX2hnWAUsQG
gT+x2CXn1Cc/zoNuN6VHB0jS718mLvRBawPjfU29yBVpIgIF9nTfJdrncifbdesi
15Hz+3JdH1Xcq1PBqLv1kVsdBYiXIcMAltOD5xp+7MjqrFx0xxH8TuqvplcOLXcw
0YZWruSqErKRTw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:34 2026 by rpki-client