Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: QabINQCEzhvoxqgPeg9bnB8riGwNelT5ywhIiVck0Sg=
Subject key identifier: DA:09:FD:4F:E1:16:98:66:58:2B:AB:F8:48:47:35:F4:D3:93:00:A5
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019EC3DC2079FE49930499E623C1DD596134
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 070D
Signing time: Sun 14 Jun 2026 02:00:43 +0000
Manifest this update: Sun 14 Jun 2026 02:00:43 +0000
Manifest next update: Mon 15 Jun 2026 02:00:43 +0000
Files and hashes: 1: B9E5JactSyIcFQ6PftrFCykRrtA.roa (hash: HKP9soP+n5+otLr1WnVLOerw0oovvQB3aHXqFrem9Bk=)
2: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: 9TiusJ6Bzhl+SZw4AYaaxY08nfof0xf++/A0zSU/k2U=)
3: wDCZnmWI33VgfRKA1bq6grP7-lg.roa (hash: pgV8JHt9oCiPvSmsdBWlSVXXDii3zSNwrmrq5yIIZu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:20:79:fe:49:93:04:99:e6:23:c1:dd:59:61:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Jun 14 02:00:43 2026 GMT
Not After : Jun 15 02:00:43 2026 GMT
Subject: CN=da09fd4fe1169866582babf8484735f4d39300a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a0:b1:d5:5e:eb:7f:19:9a:4d:e6:00:fd:2c:
51:25:fe:ae:62:96:6d:25:29:77:f9:d0:ba:89:0f:
34:9a:b5:02:61:cb:c6:44:b1:5c:ba:68:d9:0c:ff:
45:97:bb:ea:d1:ec:92:a8:f9:05:e6:58:9a:5c:03:
a8:f2:18:fa:57:39:71:fe:5c:e6:6e:4a:d8:d1:68:
5d:37:8b:af:79:67:2f:ed:b5:de:d7:36:d5:7c:70:
02:a1:d6:eb:06:cc:95:94:9b:5a:89:80:4d:db:74:
a1:8b:8b:90:ee:73:b1:fa:a2:bc:a5:d2:f9:78:8e:
8c:2c:e7:cf:f2:65:b7:d7:03:96:3f:e1:cb:b1:76:
62:62:97:c1:5e:96:9f:4e:ab:24:65:54:fa:5c:40:
af:3d:83:6c:1e:75:d9:b5:6d:0c:6d:23:f3:6d:03:
7f:af:c0:d8:1f:d0:06:36:64:dc:26:30:bc:41:03:
73:95:03:9b:19:1c:d6:b3:b9:b2:9d:63:17:2c:c9:
3f:6d:5e:2f:24:e4:f5:1b:d2:70:f6:35:97:9d:83:
1c:94:91:f5:42:95:e0:fe:39:90:84:00:24:65:72:
8a:31:a5:3b:73:5a:86:09:0d:92:07:3f:31:77:da:
f6:b1:b9:36:45:2f:df:8a:1c:e2:81:6b:a1:e4:3f:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:09:FD:4F:E1:16:98:66:58:2B:AB:F8:48:47:35:F4:D3:93:00:A5
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:45:77:00:b0:fd:f3:6c:d0:8e:e1:9b:77:b0:85:ae:ac:36:
cf:1b:71:0b:d1:6c:e7:ca:a1:fc:a9:58:fd:48:f1:e0:7f:04:
2b:f2:6a:d4:7b:96:d1:4a:a0:ff:d2:c4:40:98:b9:c6:78:89:
d8:2e:5b:4f:c9:93:9e:63:1c:d2:c1:bb:6e:c3:9b:b3:54:55:
5d:21:98:ac:22:09:4b:05:65:5c:76:a7:cb:79:74:6c:3a:58:
23:91:a3:03:86:22:a6:23:e5:02:3d:0a:82:80:37:26:fb:45:
8d:12:bc:16:c6:3a:98:76:21:6d:39:6d:23:7b:52:66:c3:63:
61:c0:de:b5:77:44:10:cd:6f:14:0b:25:8b:09:c1:d3:26:03:
41:ef:d6:47:d4:a9:98:8f:a8:ca:1b:75:48:4e:55:d6:3a:c3:
ef:4d:05:72:a0:ba:4b:09:5d:b1:69:11:e2:42:e4:d5:1c:5c:
5f:fa:25:d6:63:b1:a1:ee:bc:fe:92:4a:30:7b:ce:fe:d4:99:
ff:a8:79:07:d0:15:3a:f3:54:14:01:49:7e:3e:c4:11:6f:3b:
43:29:32:51:6e:2c:df:f8:c0:13:4b:42:d3:39:cd:f4:20:8b:
68:56:f7:29:c4:62:03:0b:ff:07:70:e9:64:cc:f1:8d:06:bb:
4b:85:ff:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:35:55 2026 by rpki-client