Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: u/X6o1RDVtnQJTRiWHv5km3Fuhk9Vad/a5NpGBqrR5A=
Subject key identifier: F2:E3:89:01:13:21:E4:69:0C:77:18:D1:6E:A1:7D:A4:3C:75:74:18
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 019E1C7DAAFBDB6CF90A7B33CD53FAC5D28A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 1909
Signing time: Tue 12 May 2026 14:00:58 +0000
Manifest this update: Tue 12 May 2026 14:00:58 +0000
Manifest next update: Wed 13 May 2026 14:00:58 +0000
Files and hashes: 1: 1-ZObGXZbr8QMqAx61fUCBd3oEIk.roa (hash: mNfBmy+QZavj44C/mg50P1ETt/knXxq4fEIaA8TAW1A=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: v2XwT/5GvaYSCETw68cme+Y9K5RJSZxR44HKFDHnpD0=)
3: 5aSu5rDgohcAcFRBlVeL4KQf-Bc.roa (hash: TBrAPV4bOwpXI3ikK/+R0NLpPd2CyHMsQiSsoHb0Hng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:aa:fb:db:6c:f9:0a:7b:33:cd:53:fa:c5:d2:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: May 12 14:00:58 2026 GMT
Not After : May 13 14:00:58 2026 GMT
Subject: CN=f2e389011321e4690c7718d16ea17da43c757418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:da:e9:46:3a:b7:12:3f:ec:30:b3:3d:4f:b9:
e1:20:56:c3:45:66:dc:ea:c9:3a:ea:c1:02:e7:25:
6b:5b:75:29:f0:33:9f:2f:04:07:f1:c9:49:8a:e4:
5e:25:08:cd:55:5b:10:28:b8:33:93:87:09:42:bf:
78:74:7c:0d:d5:18:09:4f:64:e2:76:c3:ad:62:77:
0a:47:28:2d:19:42:ae:a0:39:8c:43:dd:c1:1c:60:
0f:4c:ed:5a:69:5b:cb:37:fe:56:0a:9a:6c:c2:14:
03:6a:d5:96:1e:87:4e:93:63:6e:d4:ee:38:cd:2e:
7f:7c:6d:1d:7e:fe:78:b3:36:8a:8e:2c:4b:f2:57:
d1:d4:95:34:c9:e0:49:6f:0a:a0:cd:74:18:e6:c3:
4d:94:b2:18:df:23:1e:af:6f:43:37:0e:88:ce:b1:
c6:38:7d:8b:8d:a5:67:6c:a3:f6:22:e1:cc:c0:0b:
63:63:d2:55:63:89:03:9b:a2:ce:11:c0:14:1f:8a:
a0:27:fe:77:09:08:52:9d:f3:5a:c9:ca:32:59:2f:
90:1e:3d:ea:f5:94:10:e0:42:2c:66:3b:ac:92:57:
ec:1f:fc:03:db:dc:8a:d7:da:f9:bc:a8:69:b3:88:
12:a5:db:ca:7e:e9:44:e7:d0:af:9f:24:ef:9b:87:
05:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E3:89:01:13:21:E4:69:0C:77:18:D1:6E:A1:7D:A4:3C:75:74:18
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:17:24:6b:5a:00:c2:f1:68:8c:6d:ea:d0:9c:bc:0d:34:27:
d8:e9:b3:b7:bd:96:fa:e3:22:fa:ba:e7:b4:45:4c:ce:80:e9:
4a:21:3b:9f:3d:2a:f2:dd:d3:95:a8:2c:7e:2f:b5:84:3e:a3:
b7:3a:db:ce:df:68:bf:20:ce:31:90:8f:e9:12:ad:a2:43:b1:
7f:32:85:dd:6a:e3:22:3a:7d:4c:bf:e0:d5:32:20:67:1b:3f:
c6:54:49:fd:59:01:08:2d:82:c4:eb:9c:0c:99:3c:7a:a5:62:
bf:c9:75:f7:26:bf:04:e3:96:21:33:a9:e1:9d:b2:5d:01:5d:
b2:7f:13:62:64:12:2a:62:88:81:d4:bc:54:f9:8c:f5:66:13:
02:99:90:0a:3d:34:c7:f4:9c:6c:40:90:7e:9c:05:f6:95:fd:
de:23:0f:ac:4c:1a:e7:ab:64:23:5f:3b:6e:0b:2a:c2:73:1c:
82:ac:2a:7f:cd:df:4c:1c:12:dc:05:da:f9:88:7f:de:d6:95:
b0:9b:70:3c:2e:d3:ba:66:1d:0c:c3:7e:0d:47:8d:ea:74:7a:
11:81:d2:9e:73:92:e8:8c:87:25:7f:d5:05:d3:22:3e:77:0f:
c7:75:5b:cb:47:42:a1:e5:e5:5c:1c:5c:25:e9:d0:d1:fa:0e:
ed:f1:1d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:34:47 2026 by rpki-client