Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json)
Hash identifier: DNCQk5rq+XCtxPq1N1yPwGpUmvNrdwTfH4tdVnyxJso=
Subject key identifier: 44:F4:2E:32:80:BA:8A:60:7E:9B:2E:E8:89:94:89:05:79:4F:69:2C
Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040
Certificate serial: 019D28846229CAB4FB06C0B9A8EC78F38772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
Manifest number: 0627
Signing time: Thu 26 Mar 2026 05:00:57 +0000
Manifest this update: Thu 26 Mar 2026 05:00:57 +0000
Manifest next update: Fri 27 Mar 2026 05:00:57 +0000
Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: z+Ly/w+93P2PqnwjM3ylGfZ3dBw1g8Cez3hqWwpZrvY=)
2: z585MlMo7mSSr9Hk1ivV-63iY4Q.roa (hash: DZmssWKd0chIvnTRvKAN4jdqih24+ZhEvPT2Hj5FZkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:62:29:ca:b4:fb:06:c0:b9:a8:ec:78:f3:87:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e109e278c7862254c88755e4717398a552a49040
Validity
Not Before: Mar 26 05:00:57 2026 GMT
Not After : Mar 27 05:00:57 2026 GMT
Subject: CN=44f42e3280ba8a607e9b2ee889948905794f692c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:be:71:48:d9:b2:0b:ae:88:4b:01:fb:d4:ce:
44:b9:91:cb:31:45:8f:d8:16:44:14:1e:4e:13:20:
96:03:b1:be:62:d5:e3:81:45:b7:da:71:eb:a8:4c:
73:0e:1d:62:fd:86:1f:49:3d:ac:e8:0c:96:91:20:
12:31:e6:cf:44:0f:35:be:39:91:cf:24:da:7c:9c:
8a:d4:35:c2:0c:a1:0f:61:fa:f3:06:30:2f:29:b6:
e8:e9:30:47:66:5f:23:ce:d0:1a:5a:09:dc:96:6b:
f1:bb:51:18:ef:c7:f5:3c:64:c1:d2:80:de:f3:10:
46:8a:2c:40:1b:c9:fd:13:b0:e6:8c:e8:58:85:e4:
f4:e2:f3:5d:bc:55:c2:21:1d:ad:15:ed:24:70:32:
64:0f:0b:0a:6e:cb:56:d2:58:73:84:4c:24:b9:e5:
c7:c6:38:d2:1a:fd:f1:55:45:76:59:e0:7e:7a:10:
bd:78:7c:f4:5d:57:2a:62:ac:a4:9e:3b:9a:49:ff:
58:42:c5:bc:17:89:88:f7:a8:d0:14:23:a5:11:7d:
08:0a:4f:16:64:3b:7b:4e:c1:f8:fe:4c:6e:fe:fa:
26:30:cf:a0:e3:39:05:9a:25:0a:77:6c:08:37:79:
aa:7d:84:e2:38:49:4e:ea:bf:29:63:9a:e9:11:9c:
56:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F4:2E:32:80:BA:8A:60:7E:9B:2E:E8:89:94:89:05:79:4F:69:2C
X509v3 Authority Key Identifier:
keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:77:38:90:a5:30:3a:00:f7:92:70:73:30:40:6c:76:b6:85:
6e:43:88:d2:f0:78:37:79:b9:1c:9c:ed:1e:80:85:6c:3b:43:
80:d2:e0:a3:17:9f:e9:34:88:14:11:ad:73:87:76:68:be:79:
96:a5:e7:41:02:33:f8:9d:37:2f:e2:41:0b:e6:0b:14:a4:b8:
50:1f:d0:a4:35:ea:37:2d:18:43:ca:43:ca:d2:6e:ff:b8:80:
b8:54:64:f3:f1:82:a6:16:b9:ee:27:9b:68:f9:2f:37:81:22:
ee:5c:12:e4:c2:d6:56:cb:03:23:5f:3e:ce:11:a6:d5:de:87:
2d:c2:e4:69:3f:07:c5:9a:12:1f:0a:9b:b9:0a:de:24:a9:ba:
b8:c1:a6:10:9b:eb:60:23:ae:ee:99:10:93:42:9d:c6:f8:1a:
d6:0d:4d:25:06:9d:fb:39:60:27:29:3b:8d:f2:4f:4e:c3:82:
e8:16:c1:18:d2:43:df:bf:25:62:84:ad:76:c0:d9:0a:e0:8b:
c5:9e:45:af:05:40:3b:c6:ae:67:37:61:7b:f8:87:1d:87:07:
70:31:7b:71:18:02:56:75:b8:1c:ea:46:aa:f9:d6:3f:3a:c1:
6d:f6:84:67:7c:60:6f:15:d0:f3:db:bd:05:6e:f3:4b:35:de:
48:4a:44:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohGIpyrT7BsC5qOx484dyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMDllMjc4Yzc4NjIyNTRjODg3NTVlNDcxNzM5OGE1NTJh
NDkwNDAwHhcNMjYwMzI2MDUwMDU3WhcNMjYwMzI3MDUwMDU3WjAzMTEwLwYDVQQD
Eyg0NGY0MmUzMjgwYmE4YTYwN2U5YjJlZTg4OTk0ODkwNTc5NGY2OTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkb5xSNmyC66ISwH71M5EuZHLMUWP
2BZEFB5OEyCWA7G+YtXjgUW32nHrqExzDh1i/YYfST2s6AyWkSASMebPRA81vjmR
zyTafJyK1DXCDKEPYfrzBjAvKbbo6TBHZl8jztAaWgnclmvxu1EY78f1PGTB0oDe
8xBGiixAG8n9E7DmjOhYheT04vNdvFXCIR2tFe0kcDJkDwsKbstW0lhzhEwkueXH
xjjSGv3xVUV2WeB+ehC9eHz0XVcqYqyknjuaSf9YQsW8F4mI96jQFCOlEX0ICk8W
ZDt7TsH4/kxu/vomMM+g4zkFmiUKd2wIN3mqfYTiOElO6r8pY5rpEZxWMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFET0LjKAuopgfpsu6ImUiQV5T2ksMB8GA1UdIwQY
MBaAFOEJ4njHhiJUyIdV5HFzmKVSpJBAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQt
MmYwM2UzMmJkMjFhLzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lMDcyZDctODdjMC00YjczLTlhNGQtMmYwM2UzMmJkMjFh
LzEvNFFuaWVNZUdJbFRJaDFYa2NYT1lwVktra0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHc4kKUw
OgD3knBzMEBsdraFbkOI0vB4N3m5HJztHoCFbDtDgNLgoxef6TSIFBGtc4d2aL55
lqXnQQIz+J03L+JBC+YLFKS4UB/QpDXqNy0YQ8pDytJu/7iAuFRk8/GCpha57ieb
aPkvN4Ei7lwS5MLWVssDI18+zhGm1d6HLcLkaT8HxZoSHwqbuQreJKm6uMGmEJvr
YCOu7pkQk0Kdxvga1g1NJQad+zlgJyk7jfJPTsOC6BbBGNJD378lYoStdsDZCuCL
xZ5FrwVAO8auZzdhe/iHHYcHcDF7cRgCVnW4HOpGqvnWPzrBbfaEZ3xgbxXQ89u9
BW7zSzXeSEpECA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:02:11 2026 by rpki-client