Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: /yZnzhKOHhWizI1Yji5+rXpk6EaqACcgUSbhysP9JQU=
Subject key identifier: BD:87:00:C6:BE:00:A6:B6:28:7D:AD:4E:0C:49:36:04:E6:6C:11:AB
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019D27A8D8292A565EF045F229F3A6EE8044
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 0635
Signing time: Thu 26 Mar 2026 01:01:09 +0000
Manifest this update: Thu 26 Mar 2026 01:01:09 +0000
Manifest next update: Fri 27 Mar 2026 01:01:09 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: NHdFXLEc80uyf74vPMMAzdBaNA4or5TRGflx5IO5V2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:d8:29:2a:56:5e:f0:45:f2:29:f3:a6:ee:80:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Mar 26 01:01:09 2026 GMT
Not After : Mar 27 01:01:09 2026 GMT
Subject: CN=bd8700c6be00a6b6287dad4e0c493604e66c11ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e5:07:f3:a1:91:ef:fb:48:f4:ea:27:8b:1a:
6d:3d:26:37:af:06:f9:5a:ac:e9:31:35:f5:59:3e:
ea:ee:24:cc:53:64:3e:8f:54:97:c3:2b:81:99:33:
60:e8:67:e5:72:af:a4:b1:d7:60:09:d6:08:b8:a0:
b0:32:75:0a:90:42:e9:1b:ff:de:47:dd:1c:27:4a:
23:d9:32:94:d8:20:97:67:84:24:8b:f7:58:0a:f5:
82:ab:4b:5f:4c:50:c6:ef:e7:eb:c3:34:5b:40:3c:
2b:2b:ce:cc:63:ce:b4:53:24:08:2f:4b:08:e7:ee:
fa:f9:6e:83:ed:a8:d3:f0:60:5b:29:db:ff:f8:72:
e7:c5:8c:5e:a7:2e:d8:ce:ca:9c:d7:ca:bb:93:57:
45:a8:2e:2a:fa:19:f8:08:cc:28:c7:ea:a8:7a:46:
fe:ec:d6:fa:d0:97:4f:94:8a:ad:4c:b8:82:bd:00:
ec:42:62:3b:4c:3c:0b:1e:b3:9b:9e:23:fb:4e:ea:
55:24:3a:31:97:c3:db:f4:87:19:f6:28:a8:c8:5f:
57:80:b6:39:67:b6:e7:ad:6b:ec:7a:88:c0:b6:8a:
10:f5:88:5d:d9:fd:c1:50:e9:ba:af:77:5b:a4:0a:
33:88:61:9a:3a:0a:89:16:77:5d:33:9d:77:4e:fc:
88:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:87:00:C6:BE:00:A6:B6:28:7D:AD:4E:0C:49:36:04:E6:6C:11:AB
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:eb:73:f7:f1:4a:49:f8:a5:95:dd:1e:3f:1b:8a:9e:4c:30:
9a:55:0a:09:8b:89:11:48:b7:68:f4:b7:c2:9a:cd:66:49:d6:
94:a9:de:11:92:2e:6f:59:61:36:04:b2:34:3d:a1:b1:f5:bd:
5a:58:a2:a0:a5:ac:38:dc:c0:ec:86:ec:63:bf:53:8c:90:35:
8d:d6:c8:86:16:2a:43:e9:1e:3f:85:f3:f7:b7:bf:05:82:be:
94:7e:c9:31:a8:48:09:3a:89:1d:42:18:4d:50:2b:3b:f5:09:
5c:9c:3d:fc:98:ed:c6:f9:3e:69:bc:7e:f3:6f:1a:cd:a8:4e:
46:87:89:6c:66:e0:78:01:f7:99:b9:0d:95:e2:02:c7:55:32:
e8:b3:b1:86:aa:1a:29:d7:c6:4f:21:4b:5a:6e:41:62:6f:00:
46:22:02:4d:94:5f:a6:da:38:ec:ec:73:92:ef:88:20:56:b3:
fa:d9:b9:17:b9:5f:e7:33:de:2d:67:0e:b9:5b:c6:78:ca:3c:
22:0e:4f:18:ce:b3:31:3c:4c:de:0b:6b:32:65:c8:e1:52:83:
33:4a:d6:62:ad:2b:f9:11:3f:c3:8d:ef:41:61:25:f5:70:a1:
61:f3:2f:12:f3:cf:a0:24:0a:5b:d3:30:d1:72:a7:4d:84:f1:
31:9a:b5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:31 2026 by rpki-client