Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
File: 4z5OBZxk_xm-EKehUEV1YeRV0U8.mft (raw, json)
Hash identifier: V/NlOVOIEW+wAxrX+N7jLp2Uy2q1R7Dozz9E0pldaZM=
Subject key identifier: A3:33:B7:71:5C:27:F7:12:42:97:9E:B5:AD:71:54:03:3C:CD:6E:54
Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f
Certificate serial: 019E1EA2D61AE877119AE5A0D50372086A82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
Manifest number: 0A0F
Signing time: Wed 13 May 2026 00:00:48 +0000
Manifest this update: Wed 13 May 2026 00:00:48 +0000
Manifest next update: Thu 14 May 2026 00:00:48 +0000
Files and hashes: 1: 4z5OBZxk_xm-EKehUEV1YeRV0U8.crl (hash: 2GaLR2425ARdTwfyPtMFpXjNlyrjSRpYBNoMu66GPVQ=)
2: u7z3f5MyS6Pn44Y8ceWPcFJRqYE.roa (hash: wWTcWByT+kygfV9+kd/6R30QexArvjCPKfIUysPXkgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:d6:1a:e8:77:11:9a:e5:a0:d5:03:72:08:6a:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f
Validity
Not Before: May 13 00:00:48 2026 GMT
Not After : May 14 00:00:48 2026 GMT
Subject: CN=a333b7715c27f71242979eb5ad7154033ccd6e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:55:aa:18:96:52:f8:4a:6b:a8:04:40:15:a4:
3a:8d:fd:4f:08:6f:06:48:83:8a:9c:e6:d3:ab:f2:
0c:4d:5d:d5:73:4d:76:c9:c1:ca:7d:ac:20:7c:58:
c0:62:03:1c:6d:07:06:89:fe:b0:d2:65:a7:c4:07:
8a:6c:6e:5c:ef:8e:b8:85:fe:3c:91:31:80:e7:f7:
88:bb:af:22:21:59:90:6e:b8:0a:fd:29:9e:01:fe:
77:88:de:b2:15:fe:f6:46:82:cf:fb:c9:24:50:d2:
d2:b5:98:1b:4b:44:da:cd:8a:5b:30:80:22:22:ce:
91:ea:b1:2b:04:32:38:59:5f:57:31:74:13:fb:8a:
86:59:77:66:06:ce:43:ba:57:64:68:12:2a:6b:79:
29:ad:57:44:b1:c8:13:d3:6d:b3:00:3d:22:2e:9b:
c5:b8:36:9f:56:2b:31:4a:f1:07:22:c1:64:78:a9:
65:4c:54:c4:3d:b6:e4:3d:26:54:2b:c3:8f:cc:48:
4c:ac:41:2d:78:c7:37:21:2b:60:fd:48:3a:38:21:
a1:14:72:f9:e5:0a:a2:2e:9e:a2:e4:cc:6d:a3:82:
84:86:4f:4d:40:08:79:24:87:10:7a:58:29:e5:21:
fb:dc:85:d8:3a:71:52:47:e0:15:d9:89:00:fd:c2:
46:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:33:B7:71:5C:27:F7:12:42:97:9E:B5:AD:71:54:03:3C:CD:6E:54
X509v3 Authority Key Identifier:
keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:48:75:ff:6f:ad:8f:eb:dc:57:01:14:ce:63:f6:91:79:b9:
cb:03:b0:36:a5:40:f9:0e:2e:f0:20:6c:35:91:da:c1:a8:4c:
cd:2f:bf:d2:32:de:9b:14:cb:a8:c8:ba:0e:e5:9a:72:eb:96:
b4:69:97:3b:90:1e:5d:9c:f6:48:d4:a3:2f:8b:9b:74:64:e3:
1e:c9:1a:ac:48:e5:63:15:61:cf:3d:72:1c:f3:6c:42:75:a8:
11:35:4e:f7:50:93:ed:ca:64:7e:05:a6:31:ef:ed:3d:4f:95:
5b:ef:0a:25:a3:e6:2e:0b:88:84:b2:53:54:c3:fd:a2:b6:f1:
bd:22:28:75:10:3a:68:d0:4a:97:3a:45:b4:5f:c6:64:c7:49:
08:c8:20:d7:a4:2c:87:ab:67:a1:ea:08:e0:86:0f:bd:4d:ed:
61:9d:01:c5:37:d4:25:87:11:c1:a9:61:bd:ea:a6:96:43:3b:
06:0d:46:9e:79:5d:53:97:62:76:d0:08:49:0c:cd:64:52:fb:
be:2d:a3:f5:d0:af:cb:cf:37:b2:8b:3d:35:56:a1:c2:23:49:
17:29:ef:29:b0:66:b6:0e:85:ed:1d:fd:87:c3:a3:dc:07:70:
4e:03:20:d1:6d:2c:5c:78:ee:b1:c9:f0:7e:61:1c:42:c4:de:
65:c3:6f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:18:21 2026 by rpki-client