Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
File: 4imzfrYwaGsTKDOEcbUtqV0gSRE.mft (raw, json)
Hash identifier: DjPT/46QFCN5r3W88V/uAiEFMP3D8KgubfR82ni080M=
Subject key identifier: CF:7D:2A:09:74:AD:08:30:9F:E5:90:B2:29:B7:8B:D6:96:34:61:68
Authority key identifier: E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
Certificate issuer: /CN=e229b37eb630686b1328338471b52da95d204911
Certificate serial: 019D265FBBCF51E6D2F40D1D36F4D894EEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
Manifest number: 0D98
Signing time: Wed 25 Mar 2026 19:01:41 +0000
Manifest this update: Wed 25 Mar 2026 19:01:41 +0000
Manifest next update: Thu 26 Mar 2026 19:01:41 +0000
Files and hashes: 1: 4imzfrYwaGsTKDOEcbUtqV0gSRE.crl (hash: jaDsyZhLPmYbNbHYVj3NAdS79nz99/uGdvadGy4v0ds=)
2: 9WoXYCC1VJqnbGFNUpMF4rAgukA.asa (hash: 4Zq19YZTaukYMmJEdYX0CF4BWbwlExA/FZSk3vxkg/k=)
3: C9aXP0xnVks0GG--bUI7lSn9Og4.roa (hash: 7iquRG4sj7MdDkAUl6cu4d537zzGxzoS3U6EkDKWErY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:bb:cf:51:e6:d2:f4:0d:1d:36:f4:d8:94:ee:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e229b37eb630686b1328338471b52da95d204911
Validity
Not Before: Mar 25 19:01:41 2026 GMT
Not After : Mar 26 19:01:41 2026 GMT
Subject: CN=cf7d2a0974ad08309fe590b229b78bd696346168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:02:e3:a7:19:85:c0:fa:d6:19:c1:26:c7:74:
ea:95:76:1b:ed:9b:46:93:43:c2:64:15:8e:4b:90:
b1:21:21:31:62:f2:22:ce:57:9f:30:52:6c:f2:8f:
50:7c:d7:ff:69:31:89:84:17:05:ad:f3:25:8d:1e:
33:de:a7:aa:92:76:4d:b8:46:a2:54:c4:05:e6:78:
fc:f9:e4:c1:78:1b:88:d8:11:26:aa:78:e6:36:58:
32:8f:39:e4:c0:d6:29:8f:45:3a:23:1f:24:04:5a:
0a:cb:d6:e8:aa:19:81:62:0d:4b:63:01:d3:96:61:
ff:93:13:f1:0f:d5:8d:48:92:fc:6e:99:65:19:85:
53:c3:58:aa:69:8b:9a:de:98:64:85:b0:96:5d:bd:
e6:8a:45:ac:0e:34:8d:e9:d4:29:55:7e:2b:a0:b2:
c0:68:32:39:43:e4:ee:61:3b:d8:2f:ef:14:ea:42:
03:8b:8a:52:aa:f5:f6:70:e8:f5:6b:48:7b:a9:95:
50:e9:2d:64:96:9e:c6:80:33:3e:f5:68:25:f2:18:
7a:ee:47:1d:28:82:a2:2f:a0:c2:74:a2:0d:73:0c:
be:f2:d8:b2:2c:2a:b1:2e:91:ba:22:19:77:3d:c8:
0f:6e:8d:4c:43:2b:23:37:a1:19:96:73:5f:ee:62:
7a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7D:2A:09:74:AD:08:30:9F:E5:90:B2:29:B7:8B:D6:96:34:61:68
X509v3 Authority Key Identifier:
keyid:E2:29:B3:7E:B6:30:68:6B:13:28:33:84:71:B5:2D:A9:5D:20:49:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4imzfrYwaGsTKDOEcbUtqV0gSRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/745024-9e37-4790-86ac-7de8d8c2e930/1/4imzfrYwaGsTKDOEcbUtqV0gSRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:75:a3:3b:cf:5b:0b:36:56:ea:91:a9:c2:7a:cc:90:b4:3b:
ef:3c:7e:69:08:af:5b:b9:d0:df:a3:dd:ef:4a:57:41:51:38:
d4:86:2c:88:8f:1a:bd:3c:54:2c:d7:6e:ff:2c:bf:38:28:a0:
19:24:e2:59:64:d9:36:73:75:b4:f7:5d:b6:06:2d:bd:d2:8f:
64:da:f4:fd:c8:a0:bb:72:28:4d:f1:e9:1f:13:e6:4f:06:68:
41:e4:56:2f:b9:4a:62:fc:67:4b:24:0c:6d:1d:33:5c:89:a5:
95:67:ee:96:fe:df:ab:9d:6d:b2:ae:76:f0:84:41:9d:31:1f:
35:d6:5c:eb:7c:2c:0b:7b:b8:5b:76:4c:1a:ea:df:0e:08:8b:
c7:95:f7:18:d1:93:a4:88:03:24:9f:76:5a:b7:79:eb:da:56:
82:d6:d1:42:bf:b6:be:f1:54:41:9e:47:4c:b1:78:1e:03:5e:
c9:83:d9:b9:4a:13:52:8d:d5:2e:c5:77:c1:cf:af:c8:bd:4a:
3c:b8:2f:c4:83:98:87:d5:7b:3b:dd:18:02:7f:ca:8c:57:48:
9c:32:34:a2:29:9f:ea:10:fa:e8:c4:76:54:fc:c8:b6:1f:21:
59:50:2e:10:f9:a3:ef:b3:da:8e:f5:24:20:d8:15:7d:90:1d:
7a:e6:63:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:19:17 2026 by rpki-client