Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: czLiGFI4wGJWTintMm3LOnYi6BKvzNVO1hKkv+K0NPk=
Subject key identifier: 15:DF:8A:FE:CA:02:BB:13:3F:61:84:4C:09:77:A5:45:C3:E3:5F:71
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019DA341867D91585054B76D1392925EFB84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 0675
Signing time: Sun 19 Apr 2026 01:01:13 +0000
Manifest this update: Sun 19 Apr 2026 01:01:13 +0000
Manifest next update: Mon 20 Apr 2026 01:01:13 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: zSOLHYIIvE+bkQaBYjQ6P0jGW9jzTkixhcZ/eik4SEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:86:7d:91:58:50:54:b7:6d:13:92:92:5e:fb:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Apr 19 01:01:13 2026 GMT
Not After : Apr 20 01:01:13 2026 GMT
Subject: CN=15df8afeca02bb133f61844c0977a545c3e35f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8e:e8:f7:7b:24:b3:fe:c1:e0:ed:db:ac:23:
e8:35:dd:00:db:b5:44:68:69:9f:c8:6b:22:1d:2d:
df:63:79:98:fd:2e:30:db:da:d1:ad:23:ed:f2:ed:
be:4d:1e:c4:fa:dc:e9:bc:ca:5e:8c:ec:3f:af:19:
79:55:fa:42:6c:46:8e:cf:42:d7:63:4f:54:47:d4:
6f:69:18:6b:a3:7c:2a:fe:57:a8:45:3a:9f:70:91:
ef:a3:79:20:17:b3:fa:7c:8a:95:4e:0f:d7:f2:6e:
9b:10:5c:1f:1b:69:51:68:e1:00:44:9f:94:45:83:
60:9a:36:78:c9:e9:80:64:32:3d:c2:69:f1:b7:ea:
e8:d8:b3:0f:60:dd:76:71:c2:73:6d:da:0f:c7:61:
83:e8:ae:99:e5:b6:28:54:ab:34:ca:21:41:b7:9f:
05:a5:66:ed:cc:c7:d2:3a:80:d3:06:ea:ad:02:83:
81:c4:88:f0:53:50:0b:fd:ea:db:ab:a5:07:4d:61:
9e:36:6d:12:fc:0a:4e:a3:75:a4:21:b9:cc:dc:af:
6d:63:96:c1:c2:e1:4c:e5:67:e5:e3:81:83:f9:18:
47:17:70:ab:fa:78:4a:4a:24:fb:12:f4:8c:4b:90:
41:d8:fe:0a:04:32:ab:9d:15:0f:1e:98:91:be:9c:
58:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DF:8A:FE:CA:02:BB:13:3F:61:84:4C:09:77:A5:45:C3:E3:5F:71
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:fd:d5:ae:3f:21:69:83:53:d3:c2:57:59:0b:79:64:25:8d:
bb:cc:19:de:52:2f:bf:c7:88:71:eb:57:98:79:1b:3f:c0:2e:
07:de:a7:5d:17:a0:38:3d:46:3b:55:7a:58:d4:c4:f9:7b:67:
fc:9b:a7:f8:4f:32:fa:8f:e6:e9:1e:fc:4d:db:71:f5:93:0c:
c3:23:ed:a2:03:3a:63:cb:48:22:42:4d:25:d7:61:51:e7:8d:
a3:1b:e5:65:cd:e0:8b:4f:51:53:5b:e6:e0:8d:ed:ef:4a:ce:
9c:3a:35:e6:c4:80:9a:da:91:00:45:6f:fd:36:b7:ae:1c:96:
a3:92:2a:b6:12:a1:de:8c:58:c6:cc:bd:78:5c:8c:f0:85:49:
5e:63:3c:74:d0:82:8f:07:23:12:ed:39:13:42:a6:71:34:ff:
a0:83:4a:a6:66:00:d6:cc:70:95:65:7b:36:48:a5:41:24:24:
b9:40:97:37:01:20:a6:1b:95:48:3a:dc:d2:6b:9a:b0:8b:32:
8d:b3:2d:20:26:fa:2d:9c:ba:08:ff:03:85:be:cc:00:b6:55:
3f:03:61:1c:b4:0f:e6:bd:f0:e1:f6:94:d1:75:04:6e:29:32:
0a:b4:8c:44:80:0f:19:57:d3:47:12:c8:4c:f0:8c:a4:6c:8b:
ac:30:55:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:03:06 2026 by rpki-client