Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
File: 4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft (raw, json)
Hash identifier: KVycwMD78LAnNzCjeaSoNm5ZTqNSAawBwKrrq/+dUAM=
Subject key identifier: 59:66:BB:2D:D6:B9:AF:1E:EE:9E:07:D0:4A:8C:B1:24:E2:29:6F:89
Authority key identifier: E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9
Certificate issuer: /CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
Certificate serial: 019E1BD92113F4DD00C7AD2BAFF1A039699E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
Manifest number: 07DE
Signing time: Tue 12 May 2026 11:01:15 +0000
Manifest this update: Tue 12 May 2026 11:01:15 +0000
Manifest next update: Wed 13 May 2026 11:01:15 +0000
Files and hashes: 1: 4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl (hash: puzSirP0d4Vgnu45h71TPa07gpqu/ROhk9F3fPSCKDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 11:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1b:d9:21:13:f4:dd:00:c7:ad:2b:af:f1:a0:39:69:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
Validity
Not Before: May 12 11:01:15 2026 GMT
Not After : May 13 11:01:15 2026 GMT
Subject: CN=5966bb2dd6b9af1eee9e07d04a8cb124e2296f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:03:62:12:f9:0f:5e:23:e4:44:9c:c1:99:60:
98:d8:8e:c9:63:fe:24:41:cf:5d:85:63:71:69:a7:
5d:81:3d:2f:08:59:43:cd:30:c7:b0:dd:21:ac:ae:
15:5d:b5:46:73:96:67:14:86:aa:37:9d:bd:eb:2e:
50:32:54:cd:03:13:fe:55:1f:55:be:fa:45:af:0e:
2e:e3:92:16:28:d2:4a:cd:4a:55:96:ca:45:57:21:
47:af:50:f5:c4:c3:2e:5a:03:26:b7:d5:4b:ff:ef:
80:74:1f:b9:0e:dc:55:07:e2:6a:ee:01:74:14:22:
5e:3f:c4:7e:0f:e7:59:a4:ec:a3:47:10:62:1f:6b:
a6:5a:a7:2d:27:c7:43:c8:5c:b0:08:3f:02:76:89:
b5:7d:2f:f1:b7:8c:dc:42:6a:b4:cf:c4:96:1f:0e:
ab:25:5f:68:07:6c:70:f5:21:91:0c:07:86:a1:43:
32:0f:00:09:64:21:43:30:11:2d:ac:d9:64:1a:d3:
5b:e6:e5:ab:ca:94:d0:04:0b:cc:b5:e5:3b:23:ff:
d3:24:f6:7d:8b:b5:b9:f6:b0:eb:4b:59:53:5d:04:
09:65:11:e6:06:e3:b7:ad:e8:a1:8b:77:53:d5:37:
c6:e0:3b:dc:87:71:0f:69:6d:aa:52:00:e9:02:2e:
29:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:66:BB:2D:D6:B9:AF:1E:EE:9E:07:D0:4A:8C:B1:24:E2:29:6F:89
X509v3 Authority Key Identifier:
keyid:E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:92:98:f2:68:21:a3:c0:2a:df:f4:cd:a2:d8:af:77:f3:8a:
3c:41:14:40:da:ec:f9:63:91:eb:9d:18:ff:41:02:45:18:6e:
81:17:e2:c4:21:01:c9:59:1c:9f:69:10:d2:d3:32:90:cb:45:
31:c6:a4:a8:80:42:4f:76:18:36:bb:4b:24:6d:b2:b3:b6:12:
80:5d:4b:57:fa:36:38:74:93:67:10:13:76:1d:28:6d:56:3d:
e8:a0:c3:9b:9a:93:fb:ac:24:b6:25:2e:11:97:95:62:62:8c:
01:4a:36:24:72:95:ea:ee:71:dd:2f:c5:86:fc:88:37:1b:09:
ca:34:a3:b3:c7:55:cb:50:18:45:c2:93:c8:13:8e:b7:d3:1c:
ad:e4:34:40:d4:27:87:e2:e2:39:a1:0d:c9:4e:5b:d2:5b:f7:
0b:fd:ea:1d:e6:5a:5e:f8:9d:4f:df:ca:1b:51:44:c5:a6:77:
ac:d0:30:ca:f8:fe:94:7e:8c:66:a1:73:20:8d:1e:56:bd:c6:
cd:fc:40:bd:52:ef:a4:c7:e7:59:19:e7:61:f5:76:f5:bb:00:
2b:c7:1b:d5:e9:8e:c3:bd:fc:2e:4e:54:c1:0c:a6:44:9c:59:
9b:b0:e4:e5:b2:31:a9:5d:4c:93:e3:0c:e6:b3:cf:f8:b2:10:
99:16:39:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:36:44 2026 by rpki-client