Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json)
Hash identifier: 2Y9LdwQ5WU/tGGmtsYj5mU8kXvwNcXT+vZsIaMNB7ac=
Subject key identifier: C2:E5:F9:D3:CC:2A:F2:DF:70:F7:A8:3C:5D:45:DE:7A:E9:7D:F2:E1
Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Certificate serial: 019E1EA38BCE21E0BC082ECE022F0242819B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 00:01:34 +0000
Manifest this update: Wed 13 May 2026 00:01:34 +0000
Manifest next update: Thu 14 May 2026 00:01:34 +0000
Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: /T8DR+O+pVWF8mFdtIrA3amHkzS0Fn1r1BpzmXrfcuk=)
2: CTp1GS2fYaQIruu9tWpwYU6UL5U.roa (hash: 1woVFgn9dNEGbuwWBJn4MG4ChUl6MAOmb6s5dU16yL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:8b:ce:21:e0:bc:08:2e:ce:02:2f:02:42:81:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Validity
Not Before: May 13 00:01:34 2026 GMT
Not After : May 14 00:01:34 2026 GMT
Subject: CN=c2e5f9d3cc2af2df70f7a83c5d45de7ae97df2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:b8:e6:79:02:45:4f:c4:f9:23:b4:90:6f:
d2:23:7e:30:82:b9:7f:b6:e6:6b:b8:fc:a3:af:53:
5b:e8:9c:01:0c:dc:b7:33:b9:ee:15:8e:73:4d:92:
6b:0b:8d:ed:1c:95:81:aa:b3:15:29:2e:ed:18:f8:
17:23:fa:48:a0:02:0c:bf:09:ac:29:48:84:28:d8:
22:90:a8:1e:34:74:d4:49:75:a7:1f:5c:31:98:bc:
aa:03:35:8e:d3:9b:c3:79:d5:86:c4:97:57:90:a0:
97:31:74:ac:79:fa:2e:81:6d:50:b7:0e:98:11:14:
b2:dd:24:03:46:dd:94:e3:6c:99:d0:52:07:ad:39:
36:e1:51:ee:02:19:47:56:96:99:60:a4:97:38:8c:
3c:aa:51:c0:d2:ed:86:e0:18:1e:5e:ba:e5:7e:29:
a8:b5:1a:b6:f8:0f:a9:b4:a2:75:c2:b4:99:3f:15:
74:b6:8b:a6:7d:3f:ab:c3:ab:06:fe:b3:03:25:f4:
ae:ab:df:5b:d7:18:6a:78:1b:62:8c:5a:84:c4:91:
e9:19:02:50:de:6f:fc:1a:b0:40:57:9f:98:1f:b3:
f3:e1:23:77:f1:a1:d0:54:b4:3d:7a:2d:e8:84:d5:
cf:76:b2:30:38:69:7a:cc:a7:30:b4:7d:f6:a8:1c:
60:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E5:F9:D3:CC:2A:F2:DF:70:F7:A8:3C:5D:45:DE:7A:E9:7D:F2:E1
X509v3 Authority Key Identifier:
keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:85:38:ba:e1:9d:d7:97:f2:0a:b0:c9:f1:80:15:68:a1:ab:
9f:e3:2c:56:fa:eb:38:2f:71:80:f4:45:31:ef:67:f2:14:7c:
58:4c:c7:b0:cd:73:b4:f7:09:d6:14:89:32:7d:a9:29:8b:50:
2f:8a:90:59:83:bf:ca:99:a3:bf:a0:49:4a:75:f0:98:dc:79:
1d:1c:e5:37:7f:1e:4a:9f:cb:e6:40:cf:c6:ae:3c:41:00:58:
4a:d7:1b:fe:0f:c4:26:be:db:a1:9a:7a:08:eb:5b:c5:54:02:
59:9c:7c:dc:22:f7:31:6c:77:3b:1f:dc:00:51:96:e9:f0:b8:
26:55:7d:dd:c6:b4:20:af:bf:ea:42:d6:b5:71:c5:53:64:6a:
b4:25:ef:fc:83:54:ed:59:01:e7:0a:11:66:39:8b:6e:64:51:
a1:0a:67:bf:e6:88:3e:15:f3:1e:b5:f9:84:60:4a:15:3d:fd:
81:9f:e0:38:f8:36:dd:35:b1:5f:36:26:c9:ca:fb:20:17:3e:
7c:33:ab:1b:b7:40:42:25:a5:96:a4:dd:c0:85:ad:c6:6d:7f:
8c:bf:48:f9:62:7f:fc:6f:5a:9c:5c:3f:f4:4a:e5:21:f4:3d:
e2:69:07:bc:12:73:67:e1:1e:32:b8:6f:bb:52:e9:ac:0a:69:
9f:d7:36:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:45:46 2026 by rpki-client