Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: DimchPxmYHUuaNLhTm3//krHXHjbvK9nEDsTYGSH+JA=
Subject key identifier: 42:B3:DB:FB:55:0A:02:CA:E1:79:B7:CB:29:B0:7B:B9:B6:03:67:8A
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 019E1CEB8AE33282EF0CD9A027B16100707B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 190A
Signing time: Tue 12 May 2026 16:00:58 +0000
Manifest this update: Tue 12 May 2026 16:00:58 +0000
Manifest next update: Wed 13 May 2026 16:00:58 +0000
Files and hashes: 1: 9Czc8pDz2K4dQ7wCr5MrteuEqPw.asa (hash: cP6vlJtBeLHClXQjIgZNKEs/XJ829Hz7hO1z+cclK6I=)
2: C79YUpU2iklV_OJjs4h8ac-OjrQ.roa (hash: //CGGQm4W2A3kMycLE3Ro2hRaxk4J3N4m94O7KPhors=)
3: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: Jol+OutdDe12kZS42dn3cf8OxSLBWC6vTz9AZeYJ4t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:8a:e3:32:82:ef:0c:d9:a0:27:b1:61:00:70:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: May 12 16:00:58 2026 GMT
Not After : May 13 16:00:58 2026 GMT
Subject: CN=42b3dbfb550a02cae179b7cb29b07bb9b603678a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:93:a0:f3:9a:c8:b5:c1:53:b2:3e:f2:7e:53:
cf:8f:f1:f7:0b:c4:2f:9e:dc:7e:90:22:92:d3:d8:
51:61:1b:cd:c0:4e:98:0c:27:d8:eb:e9:35:ce:a2:
95:ee:c5:19:30:f0:f0:fb:6b:40:8c:32:4d:1f:d2:
72:7b:86:11:01:c7:96:1b:fb:f9:36:c0:b8:91:dc:
50:2b:c9:d6:4b:43:4e:21:08:c9:47:43:be:fa:8d:
8a:f1:c7:81:a1:20:e2:d5:a3:01:f4:8b:f5:36:d9:
08:6d:c7:50:80:5c:e2:60:bb:f8:b8:51:da:4d:d6:
0e:b5:06:96:04:e3:88:fd:f0:af:a4:53:ed:62:a3:
12:44:c8:ab:f8:2e:df:c8:43:0b:2d:b7:7a:bd:83:
a3:d4:cf:cd:c1:62:db:4d:34:2b:58:fd:75:b7:20:
46:ae:84:a9:0f:51:81:9f:5d:34:c0:c3:ec:cd:51:
25:b5:52:e3:eb:63:c8:b1:6c:6f:8b:c4:a0:df:b9:
46:5b:35:c3:e1:36:96:f4:41:23:77:1e:41:d0:1a:
ca:be:a6:dd:0f:5b:93:ba:e6:2f:9b:66:36:b3:ed:
98:51:96:00:29:c1:e4:00:84:c9:86:3b:50:6e:48:
ea:b2:8d:49:dc:35:e9:da:78:ca:7e:31:ff:fa:8d:
d9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B3:DB:FB:55:0A:02:CA:E1:79:B7:CB:29:B0:7B:B9:B6:03:67:8A
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:99:76:44:f9:2d:20:1b:33:d7:87:e7:08:89:ef:85:69:e7:
7f:a5:c4:0f:81:f3:e7:b2:a9:16:03:6c:5f:02:4c:6b:76:ac:
8e:56:d2:9a:7a:17:24:ba:87:ad:b0:52:c3:3e:b5:02:d0:82:
9f:b8:38:3e:39:73:35:97:71:82:04:48:91:e1:84:07:7a:72:
50:9b:08:91:d5:b9:a9:6f:7d:f4:2b:d2:dd:1b:59:93:09:23:
01:18:0d:c5:c4:cd:92:28:8a:9f:e2:cf:de:3a:03:44:d2:80:
cf:04:bf:c8:ac:3c:7a:d8:67:1a:26:7d:8a:da:e7:12:ea:07:
de:b0:94:b1:44:ac:8e:5c:93:70:1a:be:dc:cd:8d:a3:ac:e5:
b8:51:98:86:4a:27:b5:a3:53:d2:3e:1a:c8:e0:5a:11:32:c4:
81:29:79:0c:73:7f:25:73:a9:6e:aa:1a:02:5d:b6:db:47:cf:
49:fe:3b:a6:d6:af:2f:9d:f8:a6:19:03:c7:77:24:7f:0b:3c:
a0:9f:bd:5b:13:22:d7:1f:f9:c0:62:07:85:1a:9b:81:0f:09:
78:5c:b8:14:9d:f6:b4:f1:83:a8:ba:0c:31:4a:4b:2d:a7:00:
c0:7c:3e:21:b3:29:2f:b5:f5:62:51:d2:ff:70:c9:55:94:b7:
fa:6d:e4:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c64rjMoLvDNmgJ7FhAHB7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYTBjNTQwMGUwMjNmOTNmNTE4ZTQzMDA0YzMzYmM3OWQy
ZjZiMjEwHhcNMjYwNTEyMTYwMDU4WhcNMjYwNTEzMTYwMDU4WjAzMTEwLwYDVQQD
Eyg0MmIzZGJmYjU1MGEwMmNhZTE3OWI3Y2IyOWIwN2JiOWI2MDM2NzhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pOg85rItcFTsj7yflPPj/H3C8Qv
ntx+kCKS09hRYRvNwE6YDCfY6+k1zqKV7sUZMPDw+2tAjDJNH9Jye4YRAceWG/v5
NsC4kdxQK8nWS0NOIQjJR0O++o2K8ceBoSDi1aMB9Iv1NtkIbcdQgFziYLv4uFHa
TdYOtQaWBOOI/fCvpFPtYqMSRMir+C7fyEMLLbd6vYOj1M/NwWLbTTQrWP11tyBG
roSpD1GBn100wMPszVEltVLj62PIsWxvi8Sg37lGWzXD4TaW9EEjdx5B0BrKvqbd
D1uTuuYvm2Y2s+2YUZYAKcHkAITJhjtQbkjqso1J3DXp2njKfjH/+o3ZzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKz2/tVCgLK4Xm3yymwe7m2A2eKMB8GA1UdIwQY
MBaAFCCgxUAOAj+T9RjkMATDO8edL2shMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMt
MDc2OWFhNjI3MWU2LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMtMDc2OWFhNjI3MWU2
LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl5l2RPkt
IBsz14fnCInvhWnnf6XED4Hz57KpFgNsXwJMa3asjlbSmnoXJLqHrbBSwz61AtCC
n7g4PjlzNZdxggRIkeGEB3pyUJsIkdW5qW999CvS3RtZkwkjARgNxcTNkiiKn+LP
3joDRNKAzwS/yKw8ethnGiZ9itrnEuoH3rCUsUSsjlyTcBq+3M2No6zluFGYhkon
taNT0j4ayOBaETLEgSl5DHN/JXOpbqoaAl2220fPSf47ptavL534phkDx3ckfws8
oJ+9WxMi1x/5wGIHhRqbgQ8JeFy4FJ32tPGDqLoMMUpLLacAwHw+IbMpL7X1YlHS
/3DJVZS3+m3kMw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:42:41 2026 by rpki-client