Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: dXsv9jUaG7+8EAwq1ZtDNgjZjOO5kvHC5hloBqSiijc=
Subject key identifier: D0:8F:A4:E2:DA:F3:E8:1B:C8:B5:1F:D7:B0:97:C7:C1:F7:1D:19:6B
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 019D9AE38A29F52AC38A122E8F2921D7293E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 06D1
Signing time: Fri 17 Apr 2026 10:01:36 +0000
Manifest this update: Fri 17 Apr 2026 10:01:36 +0000
Manifest next update: Sat 18 Apr 2026 10:01:36 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: Sq0UjhJMfC3AVi2FtfMuHq34ddNkVV45G8bTMtf23sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:8a:29:f5:2a:c3:8a:12:2e:8f:29:21:d7:29:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Apr 17 10:01:36 2026 GMT
Not After : Apr 18 10:01:36 2026 GMT
Subject: CN=d08fa4e2daf3e81bc8b51fd7b097c7c1f71d196b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3c:e8:95:87:59:97:93:b7:98:dd:76:15:2a:
37:1e:de:4d:03:5d:99:b5:de:67:bc:6f:34:60:04:
03:31:b7:ed:f0:c3:8b:a6:a0:a0:e7:68:05:34:a7:
75:45:0c:0c:16:da:04:d7:82:94:9b:40:0d:45:d9:
77:e5:61:ab:55:ce:37:8f:6b:0e:8b:66:05:77:03:
31:21:82:18:2b:00:6f:dc:41:f7:28:77:38:ee:e8:
a1:57:02:1b:60:df:f5:db:b9:de:a4:10:b1:99:28:
9f:2c:08:bb:49:c5:3c:bf:a3:11:f5:6e:7d:d2:46:
6e:3d:ce:d9:65:d9:a3:02:1d:61:fb:41:89:e0:50:
99:0c:a3:5f:f3:35:d9:27:0b:65:c1:35:a7:af:d2:
49:61:b3:04:cd:32:bf:f1:62:c3:51:a9:1e:80:05:
fc:d9:71:1f:e8:1d:fe:d3:e0:e8:d2:73:5e:a3:ae:
d2:bf:f3:2e:b3:d3:6a:18:c3:b6:77:bc:41:9d:8e:
c5:ec:a7:04:60:89:05:f4:6b:77:c2:42:96:e1:61:
e8:28:42:cb:12:a2:c8:59:3e:75:28:10:53:3d:f4:
17:d4:f1:4a:e0:39:90:12:9b:a5:33:90:f4:e7:c1:
7a:11:a1:5b:bb:f2:6e:2f:d6:5b:9b:73:2b:f4:22:
20:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8F:A4:E2:DA:F3:E8:1B:C8:B5:1F:D7:B0:97:C7:C1:F7:1D:19:6B
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:c8:6d:2c:57:be:03:52:3b:77:dc:ff:6d:fb:6c:18:cc:ab:
ee:c4:97:af:01:aa:c3:bd:fa:84:c0:0a:eb:f6:9c:d0:28:28:
fd:9a:dc:bd:aa:f1:86:b1:e0:e4:83:40:7c:1b:fb:27:65:d2:
ef:10:35:13:30:8f:e0:67:33:e0:59:26:91:92:65:ae:c3:a2:
0a:27:a4:f6:f1:24:9c:12:7e:e2:a5:f0:ea:81:18:c9:e4:f8:
b1:89:51:17:b5:15:53:5b:90:15:a9:0a:3b:fb:79:9e:ce:4f:
95:5c:a7:c0:75:26:6e:2d:10:2a:c5:ea:51:e8:87:bb:f4:c9:
d1:34:76:f7:85:5d:36:20:c5:8e:1c:1e:47:87:a3:1b:c3:33:
da:00:70:ee:77:2e:e2:2f:bd:99:7c:5d:cd:fa:ec:67:8a:e8:
49:4d:90:e9:f4:bc:e0:e3:69:28:6d:6a:fe:6d:2c:c7:5b:7e:
41:9f:7d:14:e2:74:ac:cb:22:38:ce:cf:55:70:3a:90:85:e1:
50:de:01:cc:fe:41:a1:fb:82:25:00:d9:6f:bb:10:77:8a:ab:
ef:88:fa:17:c3:23:1f:d1:df:fb:bd:a9:fc:c3:83:17:ed:12:
c7:a0:de:40:2a:80:3a:82:23:b3:0c:30:cc:4a:8e:24:f2:84:
2b:a1:78:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:35:41 2026 by rpki-client