Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
File: 4OkqeIpBBX0ndk8W87HSo-9jRdY.mft (raw, json)
Hash identifier: 9h85Rrin3w7XavIm7ikM1IHtM7FuOrywfBeJCqufXzQ=
Subject key identifier: D2:90:52:4F:A1:16:D8:E9:57:1F:75:5E:93:52:C4:41:83:ED:2E:5A
Authority key identifier: E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
Certificate issuer: /CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Certificate serial: 019D28BB0CAB2F5E83E1B00D4313635AFC37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 06:00:40 +0000
Manifest this update: Thu 26 Mar 2026 06:00:40 +0000
Manifest next update: Fri 27 Mar 2026 06:00:40 +0000
Files and hashes: 1: 4OkqeIpBBX0ndk8W87HSo-9jRdY.crl (hash: dR18McuIEHoNSbntjFuqItkz7Ywi2mwEt7uiHEQfG1Q=)
2: Dv6DzYWC8QD9B_MZto_ESNK4j6k.roa (hash: punip1kHRpKApQYHrsUHwLPlb8qszTQ5w8o2U1ESN+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:0c:ab:2f:5e:83:e1:b0:0d:43:13:63:5a:fc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Validity
Not Before: Mar 26 06:00:40 2026 GMT
Not After : Mar 27 06:00:40 2026 GMT
Subject: CN=d290524fa116d8e9571f755e9352c44183ed2e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d6:78:f4:c9:c8:81:3c:3f:23:89:1c:59:06:
bc:46:7b:38:cf:5c:54:30:bd:7b:c5:ac:c4:ef:59:
cc:87:5a:3e:95:8e:f1:04:47:b3:e2:33:e8:d6:e3:
87:d3:d0:ff:ef:1a:fb:53:de:70:40:63:83:90:f7:
9c:27:4a:9c:81:4e:fb:4d:0d:4f:48:1b:f8:ee:60:
6a:a7:e9:b7:11:ca:b2:fb:96:99:f0:d3:90:ae:0e:
3a:f8:ef:5f:6f:bc:88:30:ed:e0:86:0f:f4:ae:fe:
82:b1:f3:bc:84:f0:4c:0d:71:25:2a:33:ee:54:30:
d1:32:47:15:7f:ac:58:9a:28:58:0a:55:59:f3:9c:
36:7c:c7:f2:16:63:7f:31:b5:04:2d:c9:c6:c6:ab:
3e:00:4e:68:94:ba:5c:8d:3f:57:0d:d4:cd:08:37:
8f:1e:72:29:97:69:04:0c:0a:6d:43:fd:e2:27:3c:
ae:3e:d6:6c:a6:a6:0b:b2:3d:40:15:32:03:ba:41:
fd:ea:d9:03:26:00:cf:a4:e6:ef:36:8d:08:1e:dc:
b0:fc:c2:d9:dc:40:24:c5:83:06:56:07:6e:16:09:
7a:5d:b4:e2:08:af:b8:06:2b:4a:ab:bb:d4:3f:7b:
ae:e2:ff:36:72:85:10:ce:c0:ba:64:9a:76:53:ad:
1e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:90:52:4F:A1:16:D8:E9:57:1F:75:5E:93:52:C4:41:83:ED:2E:5A
X509v3 Authority Key Identifier:
keyid:E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:03:fc:6e:a4:f6:3e:b1:14:fd:24:4d:dd:92:df:c9:f4:49:
99:91:be:01:2a:89:6d:04:16:23:f2:4e:23:b5:ef:a9:dd:06:
49:c3:04:23:aa:4b:29:89:1b:32:82:20:a1:d1:97:4a:fe:bf:
04:2a:9f:8b:1f:50:7d:b9:b2:23:2d:d7:90:08:15:9e:fa:ff:
6c:e6:2f:0b:df:3c:c8:73:37:42:58:a3:f6:d8:8c:41:03:99:
8e:bc:a8:17:6b:ed:80:c3:2c:d9:7c:67:fc:95:76:33:58:63:
85:e2:18:3b:2d:bb:4a:f0:48:ff:1e:b8:87:2f:c6:8c:0f:07:
da:7b:b6:c2:a8:90:58:ec:e7:ad:4f:92:eb:55:74:01:34:73:
9c:ea:0e:0b:57:f9:8b:a5:e9:ce:5e:84:5d:63:04:92:ac:99:
ce:fd:d6:d1:1a:1d:c1:1d:6e:81:91:d5:42:0a:f3:61:fa:91:
4f:3d:2c:35:d7:d1:88:d4:a2:de:5e:33:7a:dd:19:7f:72:f5:
98:e3:24:2f:9e:bb:33:18:4d:77:3a:c5:7d:32:34:9c:6a:e6:
7f:1b:b4:bf:0d:42:65:9a:ec:67:93:ad:36:4a:8d:bb:99:f9:
a8:01:e3:78:b4:e6:01:39:64:7a:ca:97:19:74:2a:2b:e1:ef:
9f:4c:78:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:59:12 2026 by rpki-client