Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: O4MgK9kkDc/HR6rt9rbj9XsdfwkWs+FVM7FOcT715dk=
Subject key identifier: 2A:88:11:EF:68:47:CA:E1:5E:91:0F:0F:01:C9:DA:8B:D6:56:95:18
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019D371B3B632DC1E9981F55E6AE1E27DB72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 063D
Signing time: Sun 29 Mar 2026 01:00:24 +0000
Manifest this update: Sun 29 Mar 2026 01:00:24 +0000
Manifest next update: Mon 30 Mar 2026 01:00:24 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: qFPBFd5Pq0pOG/1MGIKgMoVHNuoibm4aU7c7Y8ui2j4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:3b:63:2d:c1:e9:98:1f:55:e6:ae:1e:27:db:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Mar 29 01:00:24 2026 GMT
Not After : Mar 30 01:00:24 2026 GMT
Subject: CN=2a8811ef6847cae15e910f0f01c9da8bd6569518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6a:4f:28:b8:b2:44:20:e5:a0:ca:f9:9f:07:
25:33:ca:1b:42:8b:b2:4d:5e:45:ea:96:31:81:d0:
dc:df:bb:42:99:6e:02:1b:53:b4:61:d8:ef:46:ed:
de:52:cf:41:4e:cc:5a:6f:17:3b:73:a9:b5:7e:5e:
3b:03:f1:b8:4a:14:29:e8:05:5c:7c:99:6b:3b:a7:
a2:d2:b8:76:4b:dd:c4:90:d4:c4:30:c3:22:86:47:
65:cf:9b:43:dc:ef:88:04:d3:38:a2:ca:de:97:33:
08:27:f6:f0:78:c3:2a:95:f7:41:0c:0b:2e:fb:77:
26:13:aa:10:29:2c:11:88:05:5b:69:e6:c8:4a:47:
a9:82:20:4d:67:ad:04:2e:ae:80:44:7c:12:12:c6:
e0:31:15:61:78:e5:3d:98:e7:94:19:01:22:46:a3:
3d:3d:38:19:f9:05:23:72:e0:c5:09:d0:44:bb:2d:
6d:25:4a:1d:00:d1:d8:fa:f5:d8:9f:e7:81:bc:f9:
ab:d4:47:af:0b:c5:f9:8c:6a:12:ba:b3:66:7f:af:
63:f9:98:5d:c8:41:44:4e:33:7e:18:40:40:90:d9:
a3:51:c9:96:ba:3c:35:f1:fa:70:e6:f3:f1:bd:8f:
71:f4:32:e7:fa:0d:77:fc:b3:27:00:86:e4:69:2c:
35:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:88:11:EF:68:47:CA:E1:5E:91:0F:0F:01:C9:DA:8B:D6:56:95:18
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:71:27:3b:8c:4c:ea:9d:d5:07:eb:01:b8:0a:2c:83:04:ea:
21:d5:ca:44:e2:04:da:d6:84:63:97:37:0e:ab:10:8e:56:6a:
06:bd:35:03:b4:5a:0e:85:26:80:c9:3e:59:1a:8c:6e:61:c1:
26:1c:24:7a:c9:ef:0f:b4:fc:8d:af:e9:bb:bc:58:4b:f8:fc:
fa:00:79:96:5b:ab:df:c8:30:bd:69:43:f1:04:0d:9b:bd:62:
19:4f:0f:5d:3a:a3:aa:10:85:d5:f5:f0:13:c7:04:f2:74:a7:
48:c4:45:24:a4:ee:4e:ee:1e:c1:3d:45:ef:25:f1:a2:d4:7a:
a8:6e:0a:6d:a7:41:99:86:2a:94:5f:a9:48:06:1d:1d:58:84:
bd:b9:5c:56:fd:4f:0a:58:fc:f7:92:4c:1c:54:c2:1d:0d:54:
3a:12:97:f4:18:ff:aa:f1:80:23:bb:7c:da:f1:a2:54:d1:9e:
8f:9e:f4:b7:7b:91:fc:7c:de:7f:3e:5f:20:77:e9:79:39:73:
9a:b9:25:bf:d6:68:b3:63:3a:ce:19:f8:7e:5b:d1:03:9d:03:
7c:79:09:ac:a3:b8:1f:29:95:7b:bb:82:7a:31:c2:d9:df:8a:
ab:ec:fa:8f:65:4f:fd:34:74:d5:95:34:38:e9:aa:bd:29:94:
f9:ee:0e:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03GztjLcHpmB9V5q4eJ9tyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjc1MDY5YmQ1NmVmYzUxNzAzODNlZDMxY2FkMjI0NjRm
ZGYwMzAwHhcNMjYwMzI5MDEwMDI0WhcNMjYwMzMwMDEwMDI0WjAzMTEwLwYDVQQD
EygyYTg4MTFlZjY4NDdjYWUxNWU5MTBmMGYwMWM5ZGE4YmQ2NTY5NTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWpPKLiyRCDloMr5nwclM8obQouy
TV5F6pYxgdDc37tCmW4CG1O0YdjvRu3eUs9BTsxabxc7c6m1fl47A/G4ShQp6AVc
fJlrO6ei0rh2S93EkNTEMMMihkdlz5tD3O+IBNM4osrelzMIJ/bweMMqlfdBDAsu
+3cmE6oQKSwRiAVbaebISkepgiBNZ60ELq6ARHwSEsbgMRVheOU9mOeUGQEiRqM9
PTgZ+QUjcuDFCdBEuy1tJUodANHY+vXYn+eBvPmr1EevC8X5jGoSurNmf69j+Zhd
yEFETjN+GEBAkNmjUcmWujw18fpw5vPxvY9x9DLn+g13/LMnAIbkaSw1NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqIEe9oR8rhXpEPDwHJ2ovWVpUYMB8GA1UdIwQY
MBaAFCD3UGm9Vu/FFwOD7THK0iRk/fAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC85NWNkNzAtNTBjZC00NmJkLThlMDYt
Yjk3MDVkN2QzNTc5LzEvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC85NWNkNzAtNTBjZC00NmJkLThlMDYtYjk3MDVkN2QzNTc5
LzEvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXnEnO4xM
6p3VB+sBuAosgwTqIdXKROIE2taEY5c3DqsQjlZqBr01A7RaDoUmgMk+WRqMbmHB
JhwkesnvD7T8ja/pu7xYS/j8+gB5llur38gwvWlD8QQNm71iGU8PXTqjqhCF1fXw
E8cE8nSnSMRFJKTuTu4ewT1F7yXxotR6qG4KbadBmYYqlF+pSAYdHViEvblcVv1P
Clj895JMHFTCHQ1UOhKX9Bj/qvGAI7t82vGiVNGej570t3uR/Hzefz5fIHfpeTlz
mrklv9Zos2M6zhn4flvRA50DfHkJrKO4HymVe7uCejHC2d+Kq+z6j2VP/TR01ZU0
OOmqvSmU+e4O5g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:33 2026 by rpki-client