Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: wJ4MLE6UyaaG17ofodPJVoXvKLxs9NzLirTiiv1g/0E=
Subject key identifier: 2C:8B:C4:57:17:1B:48:76:72:F0:11:0E:B4:AD:28:D2:46:F3:89:EC
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019F15033575727B5D6B0EB70B6126AEB48B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 0737
Signing time: Mon 29 Jun 2026 20:12:39 +0000
Manifest this update: Mon 29 Jun 2026 20:12:39 +0000
Manifest next update: Tue 30 Jun 2026 20:12:39 +0000
Files and hashes: 1: B9E5JactSyIcFQ6PftrFCykRrtA.roa (hash: HKP9soP+n5+otLr1WnVLOerw0oovvQB3aHXqFrem9Bk=)
2: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: JIiEXCs0SAWrJRVUKcxFM7KEJVbgTbrCmAd/o/2PC9Q=)
3: wDCZnmWI33VgfRKA1bq6grP7-lg.roa (hash: pgV8JHt9oCiPvSmsdBWlSVXXDii3zSNwrmrq5yIIZu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:15:03:35:75:72:7b:5d:6b:0e:b7:0b:61:26:ae:b4:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Jun 29 20:12:39 2026 GMT
Not After : Jun 30 20:12:39 2026 GMT
Subject: CN=2c8bc457171b487672f0110eb4ad28d246f389ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:95:c9:13:c9:5c:5b:2a:23:01:44:a4:da:
30:8c:96:aa:c0:58:45:17:d2:4d:18:9a:bb:9a:ec:
f7:62:ed:fd:d6:a8:16:18:b6:3a:75:5e:05:4d:56:
fb:a4:61:df:b4:93:66:24:1c:21:f3:37:a4:62:dd:
6c:19:e7:0b:8f:25:28:2d:83:7d:1d:28:7b:a0:34:
59:bd:93:30:e5:44:ea:58:ba:79:4c:b9:04:f6:aa:
34:57:dd:1c:43:50:10:cf:1b:8f:55:9a:4b:08:ca:
15:0a:5f:3d:7e:7d:68:28:e5:68:c8:99:dc:d5:79:
f8:02:9a:e3:ac:5d:6c:fe:6f:2c:55:d7:ab:aa:56:
6e:40:0f:26:c2:1b:48:10:62:7a:dd:bd:32:76:87:
e9:4f:b7:9a:e5:02:7c:2e:ce:c0:a3:df:b7:88:a1:
d8:9a:c4:1f:73:e3:b0:c4:58:32:48:10:23:b2:e1:
b8:ac:98:c6:a2:40:25:fe:bc:4c:3e:4e:af:e7:d1:
7b:0c:92:59:bb:81:80:f6:38:a2:f1:16:32:61:86:
0e:9c:5a:a9:54:00:ea:b1:4f:83:6f:2c:d5:85:12:
91:aa:bf:e8:75:fa:b7:85:00:d4:b9:a7:e2:97:f8:
74:2e:53:9f:6c:58:aa:72:4e:58:37:9a:23:84:6d:
bc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8B:C4:57:17:1B:48:76:72:F0:11:0E:B4:AD:28:D2:46:F3:89:EC
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:ed:98:b4:39:12:a0:f6:cc:11:53:56:6a:38:53:de:8b:67:
49:a8:5a:98:8f:a4:f7:0f:d7:e5:ec:f1:8b:6c:69:3c:79:4b:
80:15:a7:6d:32:fa:16:7b:05:3e:4d:1e:37:dc:9b:ec:40:04:
b3:71:6b:13:f6:d3:db:e2:ac:55:5a:c7:8b:1a:d5:11:9f:e6:
72:66:c7:cc:42:2d:8d:8c:12:a8:9d:69:aa:16:e0:95:b7:8f:
2c:08:c6:e6:df:4e:a5:32:0c:c6:37:0a:f0:70:52:13:18:b1:
6a:2a:ed:49:76:1a:9a:79:79:4c:64:67:13:2c:a5:93:05:e4:
a3:72:82:c8:b2:35:04:40:46:30:bf:d4:99:66:09:0a:76:c3:
c2:44:ed:fe:d2:63:98:a5:7b:c5:57:21:8a:7e:4c:eb:5e:8e:
6c:d5:d1:0d:37:73:75:82:0b:58:e8:1f:9e:11:f1:06:78:74:
b7:ae:05:bc:01:5f:d0:60:eb:2d:87:5b:11:f6:1a:fb:fc:15:
af:58:cd:1e:0f:34:7f:20:0a:b0:f4:85:4d:8f:66:d7:05:09:
3c:b4:79:18:78:de:5a:72:bf:f8:34:54:20:cd:3b:68:fc:8b:
51:d8:84:19:c8:07:d2:e5:79:09:62:00:e2:88:9f:e3:71:a6:
c1:25:84:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 22:30:11 2026 by rpki-client