Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
File: 4z5OBZxk_xm-EKehUEV1YeRV0U8.mft (raw, json)
Hash identifier: +ZpBjHwDn+Xpr8dIhT9ivAe2kNMtVd+4HWJMTNSrpyM=
Subject key identifier: E4:09:5F:06:1D:A1:FE:0A:4F:CD:71:5F:5A:65:80:43:54:37:FC:97
Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f
Certificate serial: 019D29619E9FD003EFEA0FDA5196BBB6F74B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
Manifest number: 0990
Signing time: Thu 26 Mar 2026 09:02:36 +0000
Manifest this update: Thu 26 Mar 2026 09:02:36 +0000
Manifest next update: Fri 27 Mar 2026 09:02:36 +0000
Files and hashes: 1: 4z5OBZxk_xm-EKehUEV1YeRV0U8.crl (hash: nvLT1qByd4AqJN4sdTCOphtlMPSnVC+nnhhBGr8uWnU=)
2: u7z3f5MyS6Pn44Y8ceWPcFJRqYE.roa (hash: wWTcWByT+kygfV9+kd/6R30QexArvjCPKfIUysPXkgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:9e:9f:d0:03:ef:ea:0f:da:51:96:bb:b6:f7:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f
Validity
Not Before: Mar 26 09:02:36 2026 GMT
Not After : Mar 27 09:02:36 2026 GMT
Subject: CN=e4095f061da1fe0a4fcd715f5a6580435437fc97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1b:1a:f1:cd:a7:1d:8a:0e:a9:b1:65:dc:b4:
e6:72:df:a7:ef:59:1c:62:d7:51:04:55:c7:c3:90:
23:e7:e3:aa:7b:6f:b5:6d:76:19:23:af:5f:4a:6a:
c9:5d:15:0d:50:ff:76:12:dd:40:c9:81:56:0e:54:
07:12:9b:e4:cd:06:fe:3f:0c:40:9f:26:1a:85:d4:
85:cf:21:72:53:4a:00:22:75:d3:79:a3:60:c0:6c:
c7:06:82:ae:a0:fb:af:76:2e:bd:ef:59:52:14:42:
a8:42:ce:f5:e0:c9:4a:db:ee:f8:fa:66:91:50:57:
4a:ab:ee:72:c6:43:b6:17:59:91:15:27:9a:a1:09:
07:16:ec:54:7a:33:99:64:df:b5:85:8e:ff:13:e0:
59:d2:2d:19:25:28:6c:c2:63:58:09:8f:4b:2c:60:
d6:75:0b:eb:0e:24:01:ff:e9:f7:e8:c3:1b:86:7f:
23:90:f2:80:56:7f:d9:5b:3a:96:e1:f7:4f:82:22:
f9:f2:0c:9e:81:9e:92:bb:dc:42:e8:ff:8a:47:64:
17:a0:2b:3b:46:80:1d:9e:ae:12:06:4f:3e:91:24:
87:5a:f4:d6:96:bd:0f:d9:db:69:61:13:34:6b:34:
71:cf:bc:3e:f9:54:9f:20:e7:4d:f2:8d:e3:41:96:
b2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:09:5F:06:1D:A1:FE:0A:4F:CD:71:5F:5A:65:80:43:54:37:FC:97
X509v3 Authority Key Identifier:
keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ed:19:10:95:3b:f9:46:5f:10:41:b7:87:19:00:0b:77:56:
cc:fb:07:cc:90:2e:ca:9a:09:f4:26:da:fe:05:0b:f4:7e:a6:
e1:21:1c:5c:86:a4:a1:dd:75:72:21:46:e6:6c:3c:47:d2:ac:
1a:55:2c:de:9e:54:92:c7:35:03:eb:2a:41:71:64:4a:10:4e:
74:bf:ad:b1:43:76:75:15:83:c4:bd:18:78:2a:76:4b:a7:af:
a2:1d:b8:15:1e:51:a9:2f:a7:35:8f:83:65:8d:9c:b2:4b:38:
96:6e:b5:3e:99:19:e8:35:5c:1d:b6:b9:c4:1d:4a:18:60:d2:
4c:b0:8a:f5:42:a5:a1:af:37:c8:b0:78:d9:77:eb:10:01:82:
8e:b1:72:77:bd:fb:e7:7d:ae:6f:18:65:73:74:01:b9:96:37:
f8:da:1f:a4:58:fc:d6:0a:eb:f5:99:a6:7f:06:d9:11:4f:41:
d6:45:0f:12:25:46:41:cc:83:ca:0b:d7:d5:1c:4e:9a:c5:e9:
d8:2e:4a:10:0f:fc:1b:ba:c0:3e:a0:0c:d1:92:ea:f4:9e:b6:
0f:f5:c0:45:06:b0:98:ed:1a:5b:86:2a:ad:2f:8e:07:66:81:
97:42:29:8e:d8:e5:d2:c2:9c:67:66:80:99:93:bd:42:8c:9c:
bf:a5:92:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:27 2026 by rpki-client