Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
File: 4njEqqAhvti5JuNZH99QyN9rwXI.mft (raw, json)
Hash identifier: gRkAelZkCanCzve8lpFwpo9mZCUCB1KBuCtKU3mMsXE=
Subject key identifier: 7E:72:35:A5:BC:E4:C2:82:28:DE:82:E9:C1:49:15:0D:81:FA:4F:C0
Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Certificate serial: 019D33077A12704699778C2982013EC5CB04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
Manifest number: 0B02
Signing time: Sat 28 Mar 2026 06:00:20 +0000
Manifest this update: Sat 28 Mar 2026 06:00:20 +0000
Manifest next update: Sun 29 Mar 2026 06:00:20 +0000
Files and hashes: 1: 1-8kJiWXbzYyQn9Z_qYA1FhOH3SQ.roa (hash: sbcGPB93z3YNWrVB4YHHakteB4jeVAtpbXTGFYuXZTU=)
2: 4njEqqAhvti5JuNZH99QyN9rwXI.crl (hash: K8UBK7xGJvEsURJbTfMaKLtac23+eKRadVlwIDBZBm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:07:7a:12:70:46:99:77:8c:29:82:01:3e:c5:cb:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Validity
Not Before: Mar 28 06:00:20 2026 GMT
Not After : Mar 29 06:00:20 2026 GMT
Subject: CN=7e7235a5bce4c28228de82e9c149150d81fa4fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3b:02:90:ae:12:2e:3d:bb:f9:02:4a:d6:98:
65:fb:7e:f3:72:05:39:6c:57:ae:b1:45:d8:f3:a7:
e6:e5:75:96:ed:d1:d7:82:de:db:34:54:65:71:85:
22:58:5d:76:e6:a6:af:e5:d5:6e:a0:b2:cc:8f:48:
2e:3c:c9:a0:84:2f:43:5c:9b:05:90:b9:f8:27:56:
6b:47:d4:1b:a7:b1:a5:5b:0b:5a:58:4a:7a:1d:24:
65:aa:75:3e:63:23:db:87:d6:fc:9b:19:6a:cd:17:
91:f8:8b:de:68:91:39:92:c3:e9:46:66:52:66:e5:
e3:a1:da:a3:fd:11:6b:e6:8d:7f:a4:a9:87:15:36:
b0:40:31:11:8c:3c:55:13:c5:23:66:bf:82:3c:c9:
8c:93:6b:34:59:9f:17:12:58:09:c9:c6:c8:f1:65:
fa:1b:29:e4:5f:c1:a7:ab:2d:01:6d:d0:1a:a0:40:
9d:c8:e8:ed:80:3b:31:20:1d:9a:72:c5:a9:46:2e:
ce:ea:a9:48:b6:32:c3:99:3d:41:76:a8:5d:f4:b1:
a7:97:ec:c9:d9:d2:74:93:cc:02:bf:ff:78:2f:fd:
a9:b0:7f:6c:55:f5:cb:ea:97:ad:82:20:ba:de:11:
a4:16:6d:91:12:64:bd:74:22:47:b4:33:8a:0e:fd:
4d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:72:35:A5:BC:E4:C2:82:28:DE:82:E9:C1:49:15:0D:81:FA:4F:C0
X509v3 Authority Key Identifier:
keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:1e:21:63:21:9d:b2:27:fd:14:2d:54:c8:4d:a9:42:1e:93:
81:ff:d3:f1:85:28:7c:8b:f7:f5:4b:74:3f:dc:8a:09:3c:31:
69:ea:ec:2a:52:2f:35:f0:b5:e7:67:16:a1:c1:26:13:77:03:
d7:8c:1c:ec:c8:04:c6:47:fa:d6:5d:01:22:8a:e4:41:cd:98:
bf:d0:41:65:0a:8d:0d:95:2f:9b:1a:4f:0c:63:b5:e3:f5:dc:
0c:80:65:9c:a7:4e:04:a3:9c:a6:6a:03:10:a0:05:77:03:62:
a8:55:15:a4:8f:ae:c7:3e:45:1b:f2:8b:44:f2:ef:b4:3e:c8:
8f:7b:27:a2:13:db:a2:88:96:62:bd:52:08:c6:31:a3:ac:52:
4d:40:1c:ca:ab:78:5a:df:25:cc:aa:24:fd:b4:c3:db:1b:a0:
85:d4:8a:a7:83:1f:26:d3:37:26:67:08:c6:00:83:b0:8c:3c:
4a:e4:42:38:03:e5:86:bb:43:49:7b:a8:42:17:b9:1d:24:9e:
d3:c7:6a:03:87:af:bc:6c:c0:49:86:a5:6d:79:0d:6b:96:2a:
83:cc:c2:ec:9d:3f:a1:0c:ed:38:c4:c0:8e:06:15:c0:6f:d1:
af:c5:d3:fe:50:0c:9e:e4:9b:a5:69:1b:61:94:55:12:e4:8c:
96:a2:29:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:21:02 2026 by rpki-client