Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json)
Hash identifier: zXKlLpK9wI2LSnjsrZ1rbcGmZdVeTCikouAK5STjSMc=
Subject key identifier: 53:62:14:1C:C9:4D:8E:15:E3:55:FE:49:70:50:DE:9C:A1:25:A5:37
Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Certificate serial: 019D27722E39F27CC622F8E45DF53AEDAE5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 00:01:27 +0000
Manifest this update: Thu 26 Mar 2026 00:01:27 +0000
Manifest next update: Fri 27 Mar 2026 00:01:27 +0000
Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: JqGx3qKF3V708mLA+uY7WW51Jpq8IeUuTG4uHF5zgbU=)
2: CTp1GS2fYaQIruu9tWpwYU6UL5U.roa (hash: 1woVFgn9dNEGbuwWBJn4MG4ChUl6MAOmb6s5dU16yL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:2e:39:f2:7c:c6:22:f8:e4:5d:f5:3a:ed:ae:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Validity
Not Before: Mar 26 00:01:27 2026 GMT
Not After : Mar 27 00:01:27 2026 GMT
Subject: CN=5362141cc94d8e15e355fe497050de9ca125a537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:64:a2:80:1e:ca:7b:c2:e2:1a:15:5f:72:1f:
a3:d4:90:a1:7b:05:b8:5c:17:e9:46:10:81:cf:eb:
c5:c1:cf:68:2a:0b:86:ec:d8:f7:25:17:60:13:1d:
9a:48:05:8b:df:7e:96:d4:93:88:6b:05:f2:44:75:
12:38:56:ae:5f:2f:a2:b4:be:1b:3a:a0:e2:8e:40:
69:c4:35:f1:74:f5:97:9f:ed:7e:c9:7a:ec:2b:03:
0e:f4:cb:c3:c5:97:57:5f:c4:3c:63:5d:4a:6f:25:
02:a6:45:cb:6a:53:8b:b2:24:86:e0:98:4e:ec:9c:
04:10:e9:02:fc:35:1e:21:7f:6f:4e:79:ce:9d:75:
04:ab:20:ba:5c:24:b0:c5:0c:a5:07:80:8d:61:75:
c3:51:a9:bc:34:aa:28:6a:a5:55:84:58:7c:b6:f0:
83:8b:6a:60:4e:5e:7c:64:e3:1c:d5:cd:68:d4:17:
ea:89:eb:cc:47:e7:19:c4:6b:4a:fc:d9:3c:38:9d:
2b:e6:5e:7e:29:66:77:3c:59:8a:0f:0b:cd:16:60:
3f:db:c3:ba:94:e8:1b:f3:93:6b:a4:cb:4d:54:e7:
c2:64:d5:33:71:a2:9e:ac:15:e4:eb:f5:53:61:39:
75:35:94:28:17:d7:78:f5:0f:ce:2e:91:ce:42:69:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:62:14:1C:C9:4D:8E:15:E3:55:FE:49:70:50:DE:9C:A1:25:A5:37
X509v3 Authority Key Identifier:
keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:79:87:84:d5:a4:1c:17:bc:08:be:e2:0d:01:b1:33:1f:cf:
ab:f1:83:1f:ea:b5:25:cd:35:36:84:21:5d:a8:18:56:fd:d2:
b5:fb:59:50:26:78:db:29:64:40:6e:f1:b6:5d:2d:96:1a:5a:
5e:7c:b9:62:46:9a:48:bc:74:64:8e:d2:23:a7:a8:7c:88:39:
4f:3f:7e:fe:45:0c:ee:e1:85:52:90:b6:d4:12:51:0e:cd:68:
a9:1d:20:b5:6d:77:91:c3:c5:4c:d2:57:e4:57:42:45:be:34:
fb:2b:d0:8e:64:c5:e2:11:01:c1:2e:1f:60:ef:b0:90:4f:88:
11:b5:d6:59:ab:4a:54:65:e6:3e:a3:76:6e:80:f1:25:ec:e4:
59:29:cd:cc:a4:b9:15:18:36:35:42:7c:ac:89:f4:0a:21:76:
c8:1d:62:d3:f0:52:30:aa:1d:2f:08:9b:cb:c7:5a:f4:8c:92:
69:e9:0d:48:49:2e:6c:dd:51:ff:18:1d:33:8b:ea:40:a0:7b:
0e:5d:5c:09:7d:9b:dc:87:ec:d6:aa:ab:37:a9:ae:5b:0e:7a:
78:71:71:eb:7f:72:49:f7:43:d2:27:86:ed:a9:66:bd:62:a3:
a9:c5:17:41:e1:ff:fb:9b:4a:96:1d:b4:96:bf:01:2a:09:4b:
94:0a:e6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:33 2026 by rpki-client