Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: usHYB/3Y2ItaCaXaJLz5LdK0EqmXYJ3t0H9xzpvzppA=
Subject key identifier: 0E:8A:06:A7:BE:7D:9F:3F:C4:3E:F5:AC:D2:83:43:02:14:CB:E1:8E
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019E1F7E98CEEDCB0DA8A4B6F18C55CC1906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 04:00:50 +0000
Manifest this update: Wed 13 May 2026 04:00:50 +0000
Manifest next update: Thu 14 May 2026 04:00:50 +0000
Files and hashes: 1: 1j-cndh73up45TjcJHDMi8wQ8Xc.roa (hash: KpN3w6f7/yCpGmCh1vdlXsD6GVlxoKm9AQfV9ZcUMXk=)
2: 6E64GXrgmXNa9YSBiY3OujAPTwo.roa (hash: yS+gCnb/d3MQ3vFkPLZAQVV6eBJuu9tDUWcxSfLgTIU=)
3: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: dqkUJnofNCv9b6RgLk9g1WKBK5uptScWGr0y2szX+4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:98:ce:ed:cb:0d:a8:a4:b6:f1:8c:55:cc:19:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: May 13 04:00:50 2026 GMT
Not After : May 14 04:00:50 2026 GMT
Subject: CN=0e8a06a7be7d9f3fc43ef5acd283430214cbe18e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:06:0b:49:ca:9f:80:ad:ca:7c:bd:9c:df:61:
8c:31:d8:44:b3:13:58:07:33:3f:1f:ef:0f:0f:a7:
27:6c:88:1e:29:4c:4d:fb:3d:a9:3a:22:64:f4:f6:
f9:a4:96:d2:07:8c:23:a2:73:f9:e9:a3:1e:30:c4:
66:82:9e:6b:68:1d:4b:51:03:5a:6e:a2:dd:e7:44:
2f:8d:94:db:78:06:08:94:40:70:25:22:72:6f:11:
ad:3f:4d:2f:29:16:cf:1f:5a:63:e9:d1:83:93:7e:
8d:0c:13:17:9a:2d:6f:bb:82:b6:f5:0a:51:10:17:
48:f6:87:5a:0c:25:b9:35:aa:86:76:6c:b7:ea:5e:
1c:eb:f1:a7:8c:eb:70:49:7a:6b:3f:59:ed:a1:ce:
aa:50:d1:b4:9f:de:ed:cb:8b:86:f7:5f:f6:02:56:
4c:68:e3:ea:7c:36:3e:e2:6d:ab:00:55:01:bf:fd:
3a:47:35:d6:ee:53:6d:20:0b:be:bd:3a:b2:05:13:
f3:e3:cf:5b:1c:38:66:e6:1d:6d:bf:ad:20:2c:b9:
53:f5:db:44:6e:13:f2:ec:38:24:7a:bf:40:ee:88:
f6:d1:dc:b6:30:42:ea:52:8c:63:3c:ef:99:97:ca:
c3:c9:90:9e:16:1d:5f:5c:48:1a:59:b1:74:fd:3d:
fa:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8A:06:A7:BE:7D:9F:3F:C4:3E:F5:AC:D2:83:43:02:14:CB:E1:8E
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:03:f3:02:3e:1c:ad:31:3c:d8:32:85:16:29:57:c8:26:77:
86:79:de:12:d6:1a:d5:6e:02:7a:ca:78:95:f1:7f:1f:d6:01:
53:f8:7d:58:9a:e4:5b:77:8c:dd:0e:cf:f1:86:e6:d8:c6:18:
81:3c:6f:06:96:55:d8:dd:29:5a:d4:93:7e:b9:74:4b:2b:6b:
66:00:18:af:95:5f:19:0d:da:de:84:8d:5d:f6:88:19:fe:80:
f2:e6:59:42:e4:0d:1c:49:20:96:f3:86:65:1e:4b:61:7a:be:
0f:3c:09:f3:70:f7:95:bd:3c:b8:50:4c:f4:17:51:ec:e8:45:
ad:4e:e9:d9:cd:62:ae:83:16:69:fe:b2:fe:b5:6e:09:8e:9b:
12:c5:37:01:1c:30:63:bc:9d:56:c4:1a:0f:bf:e5:5b:6b:92:
65:c2:ee:33:df:e9:5f:a5:19:14:09:c6:64:0d:fe:44:02:ee:
35:b1:a4:6f:b6:39:9a:3f:96:31:00:58:11:fb:1e:96:45:57:
c6:fc:75:19:5b:16:f0:58:0a:a3:8c:7b:13:f6:27:9a:fa:1a:
4d:3d:50:4b:00:dc:37:e0:4e:f2:d5:30:92:27:d1:e5:13:de:
2f:97:bf:af:68:38:c7:e5:59:08:93:47:a1:5a:70:09:e9:3a:
6c:8d:3d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:53:07 2026 by rpki-client