Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: zyjtlV7wjntfpLLw4Cupkfp2d8yw56uD7Hq05WHfaQc=
Subject key identifier: B4:FC:97:A2:9A:20:82:59:60:4C:43:68:56:72:61:CD:2E:3B:78:BC
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 019E1CB4E6F26E9CCF6F8A91C2C44F5BDB26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0F07
Signing time: Tue 12 May 2026 15:01:18 +0000
Manifest this update: Tue 12 May 2026 15:01:18 +0000
Manifest next update: Wed 13 May 2026 15:01:18 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: 70HwvHJMoJiHjTkfS562ZnIJ3EGJ7bcSoyJGgy8VfAE=)
2: CdfLb6TofkWtReh_YXLGBpk_g6c.roa (hash: wzdkGkKknbVJYDWx/Ffoau27HnZpYfEves1fyMYu134=)
3: fqd_p4Wrb6OXddN1aeuYEJC8YH4.asa (hash: jmbRwKrDPkjso/zUasnqP+cDaGWkVpbGq+nQ2VGiSLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:e6:f2:6e:9c:cf:6f:8a:91:c2:c4:4f:5b:db:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: May 12 15:01:18 2026 GMT
Not After : May 13 15:01:18 2026 GMT
Subject: CN=b4fc97a29a208259604c4368567261cd2e3b78bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:36:e8:c3:92:62:d6:5f:f5:e9:d7:b8:aa:
5e:fe:23:96:38:76:8a:b1:a7:63:2a:7f:44:af:ba:
a8:ec:61:e1:95:2a:1f:c3:e4:86:e4:1d:d6:f5:30:
01:3e:ff:ea:69:96:51:f1:c6:83:de:e1:b1:e4:e9:
73:58:53:72:e2:0a:89:7e:a7:b8:3c:ed:d8:44:7d:
c9:be:24:63:7c:d5:97:89:67:a3:5c:d8:66:be:00:
d5:15:1b:57:da:44:b1:db:b1:84:db:4c:0e:aa:56:
31:a1:8e:96:f2:6a:51:01:ca:40:03:f0:ea:8b:5e:
47:58:f8:c8:97:52:8f:4e:d4:e5:9b:25:8f:7d:8d:
b2:d9:ac:49:58:69:68:76:20:38:1a:62:d9:c8:49:
28:e4:66:25:8c:82:68:48:3d:86:d2:74:d6:64:8c:
84:ad:9a:db:af:ba:a0:83:44:69:11:23:01:25:26:
cf:e3:14:78:87:2f:09:ed:c1:46:60:52:44:6f:1e:
95:1d:1d:4f:29:48:7b:b5:6b:8e:22:4d:ef:81:11:
59:85:88:0d:fb:32:5f:10:b3:66:4c:62:9d:b1:88:
44:45:ec:11:af:33:0a:f4:1d:b3:9d:6d:cc:ef:8c:
0a:11:7b:b9:c3:a6:c8:36:30:ba:2f:4a:7e:bf:22:
12:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FC:97:A2:9A:20:82:59:60:4C:43:68:56:72:61:CD:2E:3B:78:BC
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:1e:10:df:ad:9b:03:7e:ad:4f:fb:db:f7:aa:8d:91:43:b2:
81:08:3e:4c:4f:b5:84:e3:ce:a4:a1:a9:1a:51:36:1a:b7:03:
7e:a3:03:7b:ac:14:21:c0:3f:b0:07:f2:37:61:9e:64:ff:13:
c0:9f:7e:b3:a3:f3:15:7f:15:11:45:4b:b4:f5:1d:3a:8a:6d:
bb:93:54:c4:b9:6e:1b:4e:24:d6:8a:04:33:fa:b6:0c:3e:d7:
86:50:04:99:ca:a9:68:a4:6d:35:58:a8:97:bd:98:ef:49:8f:
fb:43:ed:cf:c8:7e:92:52:d6:b8:99:d3:8a:b8:0d:8a:17:3a:
dd:4d:30:5e:55:92:25:2c:a0:3b:a7:da:84:18:45:c9:e2:c7:
71:f4:5d:3a:a7:64:cc:79:51:4c:67:6e:d7:2f:92:a8:9b:a3:
6f:bd:7f:67:dc:83:f5:c9:7c:bc:cb:5e:4b:38:18:b5:44:5a:
c6:0a:68:5e:a8:92:d6:67:36:ec:6e:07:01:f0:ef:ae:a8:3c:
69:4f:66:84:b1:76:de:55:08:e2:5e:c2:ae:f6:46:e7:3d:26:
d0:09:43:3d:09:52:3c:7e:9e:d2:95:f6:5b:c7:3c:79:76:9a:
b9:8d:cc:d3:14:22:8f:9f:2f:30:35:6d:ac:df:82:04:42:9c:
13:81:a6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:56:02 2026 by rpki-client