Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: qCqtKD8lT2xBo2WvQr1NlAa+mkDWs/Ppk3hLc8Dmjl8=
Subject key identifier: E9:F3:DC:8E:BA:EA:DF:CE:ED:B2:E8:8F:3E:9E:D4:A1:C8:E0:2D:FF
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 019E1EA3355CB36D305681DE50C569212F49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0DE0
Signing time: Wed 13 May 2026 00:01:12 +0000
Manifest this update: Wed 13 May 2026 00:01:12 +0000
Manifest next update: Thu 14 May 2026 00:01:12 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: KkwDqaxU3WAWa+Gur9zO9WWVGZ9tg5SIIm5tdWiPeaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:35:5c:b3:6d:30:56:81:de:50:c5:69:21:2f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: May 13 00:01:12 2026 GMT
Not After : May 14 00:01:12 2026 GMT
Subject: CN=e9f3dc8ebaeadfceedb2e88f3e9ed4a1c8e02dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:c2:f6:12:a2:b8:77:3f:81:bd:c3:5f:c4:
19:91:76:05:36:6b:30:ca:73:7f:38:70:cd:4d:ec:
ca:f2:00:67:cb:b1:98:48:01:35:8d:36:cc:17:53:
7c:24:39:cc:63:15:1b:6d:18:eb:3d:11:d7:c0:af:
3d:aa:d6:c2:49:7c:c1:9e:40:19:30:c2:ad:b9:45:
87:2f:ad:c2:f5:4a:e9:32:fa:f3:9a:45:6d:92:83:
f8:4e:a7:82:dc:34:d5:0a:ee:32:7c:fa:8f:04:ae:
6a:af:d6:87:13:26:7f:f6:49:8c:1c:b7:8c:84:3c:
0f:ef:38:3d:0b:8c:b9:38:df:2b:21:e2:31:aa:15:
4d:30:12:4b:15:27:f7:7d:ef:ce:e8:14:f6:29:bc:
d1:ba:b3:a7:e1:42:22:0b:23:82:df:78:c8:f1:73:
27:46:0d:9d:0a:e4:48:39:1f:7b:95:f7:d1:37:e9:
1a:fe:c8:cf:cd:5c:60:f7:5f:bd:c2:79:f3:c2:ea:
c4:9d:21:9a:cf:30:59:56:61:53:2c:5e:4c:1e:80:
48:2c:3f:af:a5:d7:b2:ca:0c:fe:e6:fa:2a:e1:3f:
98:dc:ae:01:30:e3:87:8b:2d:c3:10:64:a5:7a:5e:
86:f1:38:64:be:8c:92:7a:78:0c:7e:1b:76:f8:30:
d1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F3:DC:8E:BA:EA:DF:CE:ED:B2:E8:8F:3E:9E:D4:A1:C8:E0:2D:FF
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:78:da:fc:45:b9:1e:8b:41:64:5f:70:d5:41:ad:ee:8e:35:
28:59:c7:eb:e6:62:1a:4e:33:cd:43:6b:a4:6d:57:b9:ac:c7:
37:10:1a:40:18:e3:61:13:3c:d4:6b:85:3b:10:29:33:1e:ce:
3a:43:6b:d5:96:58:63:01:cf:90:97:73:d6:a6:97:95:1b:e5:
12:3f:bb:28:d2:c5:f7:39:d5:17:e9:37:3f:7d:56:e8:a7:c4:
00:fa:eb:db:31:57:94:c0:f6:55:a8:86:1d:2b:39:27:99:82:
46:ae:94:c6:59:56:95:fd:30:62:7d:45:fb:87:37:d5:9b:be:
4e:20:6a:79:ef:de:ee:32:fc:7d:99:11:f6:42:46:09:14:15:
08:10:25:d5:6f:cb:81:8b:9a:64:62:8d:ba:4a:51:5e:55:2d:
4b:8e:4f:6f:e3:18:42:58:be:ce:01:ba:72:c1:eb:7a:d3:fa:
61:d5:01:d5:74:91:23:63:00:87:27:2d:b4:06:3e:0c:a6:b1:
34:57:f9:24:98:be:05:2c:86:44:08:a8:56:ad:e0:61:fb:ab:
a2:db:0c:08:8c:b0:d4:1f:28:50:f4:87:19:b2:ae:6f:05:31:
b0:ed:bd:74:07:55:bd:07:ee:37:37:a3:2f:f1:a9:da:63:03:
41:99:2b:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:54:55 2026 by rpki-client