Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
File: 4imzfrYwaGsTKDOEcbUtqV0gSRE.mft (raw, json)
Hash identifier: kqvpgRzQz9s+BDCsmPtX7CxPP5xM+pmQ8pLP220SJnM=
Subject key identifier: 4A:5E:2F:00:B8:10:8E:D1:E3:2D:03:9B:65:33:BC:FB:A4:07:4E:2B
Authority key identifier: E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
Certificate issuer: /CN=e229b37eb630686b1328338471b52da95d204911
Certificate serial: 019E1D906B1ABDB2E557EE747D5B0E5846A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
Manifest number: 0E18
Signing time: Tue 12 May 2026 19:01:04 +0000
Manifest this update: Tue 12 May 2026 19:01:04 +0000
Manifest next update: Wed 13 May 2026 19:01:04 +0000
Files and hashes: 1: 4imzfrYwaGsTKDOEcbUtqV0gSRE.crl (hash: WBH/lLi7F/IpQOvXeyOk/qsKoVLqXEeFb8n4l3N+Jng=)
2: 9WoXYCC1VJqnbGFNUpMF4rAgukA.asa (hash: 4Zq19YZTaukYMmJEdYX0CF4BWbwlExA/FZSk3vxkg/k=)
3: C9aXP0xnVks0GG--bUI7lSn9Og4.roa (hash: 7iquRG4sj7MdDkAUl6cu4d537zzGxzoS3U6EkDKWErY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:6b:1a:bd:b2:e5:57:ee:74:7d:5b:0e:58:46:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e229b37eb630686b1328338471b52da95d204911
Validity
Not Before: May 12 19:01:04 2026 GMT
Not After : May 13 19:01:04 2026 GMT
Subject: CN=4a5e2f00b8108ed1e32d039b6533bcfba4074e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5f:79:9d:92:cc:d2:e1:8d:43:ad:ee:d4:c4:
4c:2f:fb:42:5d:6b:f3:eb:0d:2b:6a:ec:af:31:75:
e7:f2:20:33:b5:2f:fa:eb:c0:44:68:2f:c7:76:ea:
da:fa:86:7b:b7:34:5e:85:6d:a9:5b:af:58:79:56:
ba:fa:09:75:2f:86:47:07:48:74:17:b9:a2:3f:b1:
87:b4:8d:d9:f6:86:2a:e9:81:a9:09:ca:37:87:b9:
c6:aa:d8:98:79:83:62:24:a2:f3:76:f9:01:58:9c:
cc:6d:48:32:f8:3d:b4:b1:c6:b4:37:d4:cd:74:8c:
09:ec:39:98:b6:8c:ca:b4:4f:eb:e0:66:ca:c9:fc:
9b:55:5d:37:d4:85:25:b8:14:62:f3:d0:ec:19:8e:
3a:b3:a6:ba:97:ec:dc:0d:f0:82:72:55:c8:16:70:
0c:7d:14:6b:b4:fe:b0:82:fe:e9:1a:d7:6d:91:ab:
68:01:e9:80:bf:b4:8b:65:c7:6b:6b:da:a3:46:5b:
36:0f:89:7f:be:71:7e:4d:43:c0:06:2a:48:0e:e4:
a2:52:64:80:26:11:41:bf:8e:2f:03:65:c4:83:78:
da:71:5a:7e:4f:9e:84:ca:31:9b:f5:19:cd:c6:5f:
70:b8:40:57:94:0f:eb:4c:83:0e:3b:77:e0:e0:d4:
21:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:5E:2F:00:B8:10:8E:D1:E3:2D:03:9B:65:33:BC:FB:A4:07:4E:2B
X509v3 Authority Key Identifier:
keyid:E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:95:30:13:6b:1f:3f:86:1d:f4:38:f4:3e:3e:c7:a2:15:e2:
07:9c:35:c8:29:d4:e6:94:90:2b:74:da:07:ef:ff:9d:7c:3f:
1a:df:8d:f7:54:cf:29:31:6a:aa:22:4c:36:f3:fb:24:2e:0e:
bc:bf:b7:61:b4:4d:6c:f6:f3:8b:3b:59:a8:fd:21:35:05:35:
e4:ef:64:d7:57:59:3d:eb:a9:9b:3c:46:93:2f:c1:57:3e:1e:
f1:37:e2:25:83:60:6b:26:a9:01:6f:c0:4d:f1:5e:4a:f4:22:
97:e4:60:d0:ea:49:be:03:f2:69:7e:b1:d4:eb:f8:60:e5:78:
d1:e5:3a:d4:67:3f:0c:73:b7:e4:5d:52:45:fc:81:05:aa:9d:
86:d8:28:b0:dd:6f:2c:1c:bb:56:ce:22:01:b2:3a:4d:4f:cc:
c6:9c:4b:1d:5c:a4:d4:b6:79:32:9c:62:98:03:46:d8:30:3d:
fa:79:58:24:7b:22:03:ac:28:de:38:2d:a7:b7:1a:66:9e:18:
fe:55:7d:2b:b6:e8:b4:33:00:9b:69:1f:a6:d0:31:12:80:37:
e7:b3:f7:05:cf:b3:fc:b8:7e:a3:f2:0c:4b:45:ab:19:76:f1:
35:39:a3:5e:71:12:5e:81:f8:45:5f:a5:51:59:e4:3f:ee:34:
8b:3c:db:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:37:48 2026 by rpki-client