Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft
File: INaBg9YBj1BMXm-uIo4bNQxvD-8.mft (raw, json)
Hash identifier: sgW4aSWF3hxQ2dJVFjNYNxRDp1o7STm8I277LaG7CZE=
Subject key identifier: 2C:05:26:8E:7D:35:D3:85:FF:08:26:6C:3F:B4:78:F0:26:73:D9:82
Authority key identifier: 20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF
Certificate issuer: /CN=20d68183d6018f504c5e6fae228e1b350c6f0fef
Certificate serial: 019D389BFC9A7AE78DBDF1AEA1A9743A4BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft
Manifest number: 0684
Signing time: Sun 29 Mar 2026 08:00:39 +0000
Manifest this update: Sun 29 Mar 2026 08:00:39 +0000
Manifest next update: Mon 30 Mar 2026 08:00:39 +0000
Files and hashes: 1: INaBg9YBj1BMXm-uIo4bNQxvD-8.crl (hash: g6Hg5naQFpVWNznxM7y2nSx4iPg3Fg1lDY2SCqO3CMQ=)
2: Iqa6GV4LdxiGIroWsllGP7YjyE4.roa (hash: Q0wZliLvPv9FNmdy4NB+Qu2Fy5dB0KdoE1fdtaOiLGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft
rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:fc:9a:7a:e7:8d:bd:f1:ae:a1:a9:74:3a:4b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d68183d6018f504c5e6fae228e1b350c6f0fef
Validity
Not Before: Mar 29 08:00:39 2026 GMT
Not After : Mar 30 08:00:39 2026 GMT
Subject: CN=2c05268e7d35d385ff08266c3fb478f02673d982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c4:fe:8c:87:03:f0:09:57:41:58:0a:8e:27:
9c:b6:e0:b6:f6:5d:28:c5:4d:93:36:27:bc:9b:de:
40:f4:76:b6:ba:ce:b1:25:1e:87:ed:7d:9b:b5:2f:
2e:ce:5e:a5:0c:b4:de:8a:01:0c:5b:fe:bb:5e:66:
02:60:23:23:f3:eb:d7:ed:f4:a2:6e:42:4b:4d:97:
52:8d:09:1e:72:ac:ba:4a:dc:da:ab:d0:df:ac:05:
9c:50:a5:67:c5:e9:ed:c8:6f:56:79:be:b3:0d:55:
f3:e2:42:b8:5f:7e:bf:25:e8:9a:f0:d5:20:55:72:
20:ef:d7:44:e7:3b:f9:10:61:78:24:4b:ad:13:39:
09:88:a3:ea:83:50:85:59:f5:fa:47:03:7e:7d:9b:
9b:68:2b:eb:3a:0f:de:ca:8b:03:0f:b3:ca:38:71:
be:c5:54:8d:27:07:ef:53:58:18:dc:2f:4b:21:70:
41:6d:69:a6:16:73:1d:71:a5:34:51:e9:98:1b:78:
37:49:ff:31:e4:93:3b:00:cb:f1:bf:c2:9b:4b:00:
a8:0f:5c:b0:82:68:61:78:09:db:97:71:c7:ae:0f:
4e:b2:7d:80:29:c8:54:13:74:a2:5f:e2:9a:cd:09:
ea:37:1d:99:fc:2b:4f:ae:8f:37:ea:24:03:c0:cb:
9c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:05:26:8E:7D:35:D3:85:FF:08:26:6C:3F:B4:78:F0:26:73:D9:82
X509v3 Authority Key Identifier:
keyid:20:D6:81:83:D6:01:8F:50:4C:5E:6F:AE:22:8E:1B:35:0C:6F:0F:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INaBg9YBj1BMXm-uIo4bNQxvD-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/6efd9c-64c3-42b6-92fd-ab7881b0df2b/1/INaBg9YBj1BMXm-uIo4bNQxvD-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:2e:57:36:20:53:3c:9f:c6:4e:e8:d9:e8:89:1e:21:5e:ad:
66:41:e4:28:40:99:4d:20:dc:ca:d7:af:6b:49:ab:ef:e8:ea:
08:b5:77:87:f7:a3:2c:58:88:e4:ef:48:3c:df:39:0a:8b:f2:
45:9e:0d:31:d1:c1:eb:2f:41:80:f6:75:61:dd:7c:6f:79:02:
a3:1c:5e:c4:f6:dc:60:1c:51:f3:83:9d:d5:4d:3f:37:03:ca:
81:4b:d7:a6:26:fe:8d:79:36:14:89:25:09:cd:54:30:e6:26:
92:65:3e:e3:a9:99:d8:04:81:37:38:da:48:0c:67:bd:9f:b9:
48:f7:c1:b2:a7:8d:2e:f0:cc:ce:7e:62:77:4f:5a:05:7d:bb:
91:69:ce:5d:2a:56:8e:4d:ef:92:a5:a2:22:8a:58:e9:cf:56:
16:1c:b7:28:ce:da:fa:d4:a5:a1:02:d7:02:21:78:d0:0a:ce:
f1:b8:18:c5:42:8f:5d:27:bd:9d:fb:f9:0a:ce:a1:40:8c:0d:
77:f4:86:55:64:e2:cd:4f:64:29:48:5c:d1:2a:06:31:c0:c4:
e9:26:c1:6f:ec:30:a3:83:1e:e5:57:d4:6e:ab:aa:05:e4:2c:
32:02:ce:80:d6:5b:47:a5:59:54:7b:f5:56:74:5e:48:19:c9:
2b:60:fa:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:48 2026 by rpki-client