Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: e+oR8UAPVxBx1ZXIUqSC9KDoA+l2cwDvSTQxMsP4up0=
Subject key identifier: 0B:CF:14:81:3C:54:72:A9:A4:DB:63:33:4B:A2:17:FD:5C:BE:68:AE
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 019EBF233B45DEB207EBC6DFA6C04B0E89F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 195E
Signing time: Sat 13 Jun 2026 04:00:17 +0000
Manifest this update: Sat 13 Jun 2026 04:00:17 +0000
Manifest next update: Sun 14 Jun 2026 04:00:17 +0000
Files and hashes: 1: 9Czc8pDz2K4dQ7wCr5MrteuEqPw.asa (hash: cP6vlJtBeLHClXQjIgZNKEs/XJ829Hz7hO1z+cclK6I=)
2: C79YUpU2iklV_OJjs4h8ac-OjrQ.roa (hash: //CGGQm4W2A3kMycLE3Ro2hRaxk4J3N4m94O7KPhors=)
3: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: H9d7CbFA2dhbfh26u/LN1ackX7AEX+5fFNLWC4+hzHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:3b:45:de:b2:07:eb:c6:df:a6:c0:4b:0e:89:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Jun 13 04:00:17 2026 GMT
Not After : Jun 14 04:00:17 2026 GMT
Subject: CN=0bcf14813c5472a9a4db63334ba217fd5cbe68ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d2:58:0d:7f:a6:f8:6e:15:08:ae:5a:ba:de:
a4:a4:19:36:99:11:a4:fb:62:02:f1:11:d3:02:f8:
14:71:fe:66:88:fc:64:bd:f3:bb:8f:4c:e4:9e:cd:
2f:d7:60:e9:67:e8:36:6e:3a:0a:d1:11:dc:85:c9:
f0:c8:ef:50:5c:b7:d4:83:a5:50:a3:34:6e:3f:ac:
f3:fb:30:c1:36:6a:98:9c:cb:e0:95:61:f0:46:64:
cb:3e:10:f1:ec:d6:ad:1b:d4:75:62:93:5d:d9:85:
38:ad:7c:d9:ae:94:e7:8e:2a:e2:62:6b:f7:74:11:
3c:f9:1f:c5:c2:d1:53:85:61:2a:04:9d:e6:dc:ed:
15:b6:96:43:0a:e9:fc:69:48:2d:62:5e:52:05:f2:
50:d3:60:81:f3:f0:02:0d:f9:ad:75:d9:68:64:0c:
17:71:f1:b3:d2:0f:28:4b:98:e9:df:d4:b3:09:5f:
a6:0c:5d:9b:96:2f:4b:dd:13:ab:e3:a6:c6:8a:cb:
9e:08:2b:50:4e:6c:d8:29:9f:b2:99:76:7d:04:73:
4b:6e:9f:4e:41:fb:a4:e5:07:77:8b:61:36:c6:05:
0d:60:8e:f5:19:35:6f:a4:dc:86:72:83:c9:14:90:
22:de:f4:c2:e1:38:34:ab:51:a3:38:d5:ae:72:8c:
6b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CF:14:81:3C:54:72:A9:A4:DB:63:33:4B:A2:17:FD:5C:BE:68:AE
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c2:80:2a:13:b1:b4:e8:69:91:d5:4c:be:bd:70:5f:83:a2:
38:06:84:8e:1f:fc:a3:1d:88:a7:68:bf:a9:86:95:79:55:bb:
22:fa:4c:b9:e3:c3:75:a4:d6:9c:dd:4f:fc:91:46:ef:61:2a:
ee:de:42:74:af:07:56:47:11:e0:f8:3a:75:e2:00:e3:4f:35:
76:b9:90:cb:ad:dc:e6:dc:d2:65:67:03:79:7d:bd:c0:24:6e:
1b:bf:a5:54:25:1b:62:a6:d8:1a:78:36:95:7c:2f:59:93:86:
00:eb:e4:24:be:1a:a6:04:ca:4e:26:24:8d:a9:3c:33:55:7a:
06:d7:1c:01:f1:b8:f8:79:dd:1e:ee:72:6e:6a:c0:f1:ed:61:
38:5a:1b:bd:02:81:c7:fa:03:87:8c:e4:00:c4:4c:7b:86:8c:
8d:54:61:8b:97:1a:c6:66:d4:a5:ce:5b:f3:c9:4c:55:db:44:
31:55:22:d8:72:ad:c9:5b:79:ff:fc:7a:a9:41:0d:6c:f5:64:
50:c2:1a:b4:b6:31:56:e8:60:f3:b4:a5:21:09:f7:df:65:4e:
00:2b:ce:22:3c:51:48:a9:37:bf:40:27:5b:f0:81:cb:26:21:
bb:0e:ce:5e:02:c5:6e:db:57:9c:f6:49:3f:ed:51:56:d6:16:
72:0a:4d:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/IztF3rIH68bfpsBLDonyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYTBjNTQwMGUwMjNmOTNmNTE4ZTQzMDA0YzMzYmM3OWQy
ZjZiMjEwHhcNMjYwNjEzMDQwMDE3WhcNMjYwNjE0MDQwMDE3WjAzMTEwLwYDVQQD
EygwYmNmMTQ4MTNjNTQ3MmE5YTRkYjYzMzM0YmEyMTdmZDVjYmU2OGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdJYDX+m+G4VCK5aut6kpBk2mRGk
+2IC8RHTAvgUcf5miPxkvfO7j0zkns0v12DpZ+g2bjoK0RHchcnwyO9QXLfUg6VQ
ozRuP6zz+zDBNmqYnMvglWHwRmTLPhDx7NatG9R1YpNd2YU4rXzZrpTnjiriYmv3
dBE8+R/FwtFThWEqBJ3m3O0VtpZDCun8aUgtYl5SBfJQ02CB8/ACDfmtddloZAwX
cfGz0g8oS5jp39SzCV+mDF2bli9L3ROr46bGisueCCtQTmzYKZ+ymXZ9BHNLbp9O
Qfuk5Qd3i2E2xgUNYI71GTVvpNyGcoPJFJAi3vTC4Tg0q1GjONWucoxrzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAvPFIE8VHKppNtjM0uiF/1cvmiuMB8GA1UdIwQY
MBaAFCCgxUAOAj+T9RjkMATDO8edL2shMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMt
MDc2OWFhNjI3MWU2LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMtMDc2OWFhNjI3MWU2
LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS8KAKhOx
tOhpkdVMvr1wX4OiOAaEjh/8ox2Ip2i/qYaVeVW7IvpMuePDdaTWnN1P/JFG72Eq
7t5CdK8HVkcR4Pg6deIA4081drmQy63c5tzSZWcDeX29wCRuG7+lVCUbYqbYGng2
lXwvWZOGAOvkJL4apgTKTiYkjak8M1V6BtccAfG4+HndHu5ybmrA8e1hOFobvQKB
x/oDh4zkAMRMe4aMjVRhi5caxmbUpc5b88lMVdtEMVUi2HKtyVt5//x6qUENbPVk
UMIatLYxVuhg87SlIQn332VOACvOIjxRSKk3v0AnW/CByyYhuw7OXgLFbttXnPZJ
P+1RVtYWcgpNyQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:12:09 2026 by rpki-client