Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json)
Hash identifier: Rmtn3IapGdwnDNAz6WzpfRCH+gAaw5AdIqHvkOdq5XU=
Subject key identifier: 2E:08:53:F7:59:8B:00:E0:12:B1:4A:A3:0C:85:AA:02:07:22:63:CB
Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Certificate serial: 019E1E34F0A888B0398D0ADDCA4F2189181C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
Manifest number: 04D7
Signing time: Tue 12 May 2026 22:00:46 +0000
Manifest this update: Tue 12 May 2026 22:00:46 +0000
Manifest next update: Wed 13 May 2026 22:00:46 +0000
Files and hashes: 1: 3RsLnrTTWTLPQLyhD4gSJN-DaTI.roa (hash: P//UvOt3ZaB3uh3PmS1jjSG8dYP/ZrhMVhcmC8uqPak=)
2: orOrT8NVY4pf1QT1W-mHVHhwDL8.roa (hash: bx8FYIhx4hyq5ap/XvQzvchaRMF2JO/G6piTSSfSHKo=)
3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: Nat1E4oCFRu8kMlkox5I+sRkX+zLYEzYPB3Ywpb+4LY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:34:f0:a8:88:b0:39:8d:0a:dd:ca:4f:21:89:18:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Validity
Not Before: May 12 22:00:46 2026 GMT
Not After : May 13 22:00:46 2026 GMT
Subject: CN=2e0853f7598b00e012b14aa30c85aa02072263cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8c:46:90:d1:bf:56:86:99:11:98:68:b6:07:
55:3b:7b:d7:30:c0:46:ba:c3:5d:25:d1:87:a9:84:
d4:08:e1:e4:12:fe:3b:59:c9:21:70:eb:16:3a:7f:
63:83:6d:8c:e0:de:3c:84:b8:87:56:37:dc:17:af:
91:8d:11:88:29:fd:11:db:78:37:a1:14:dc:5d:57:
97:81:d7:3c:96:19:32:31:52:2d:e3:d6:d7:ee:c6:
00:94:c8:a2:dc:03:80:eb:47:0d:76:e0:f2:c0:6c:
03:81:d7:7e:56:98:05:c7:98:8f:0d:4d:68:3d:cf:
c7:41:ed:6c:4f:83:33:96:2c:d8:2f:c4:8f:26:df:
d8:0e:58:93:ac:0e:57:ef:e3:62:a1:50:e0:32:07:
5c:7c:1e:6e:d1:d7:e9:bd:0d:28:25:b8:aa:a6:66:
dc:cc:f8:30:7d:b1:80:76:79:8a:c0:db:6a:5d:c7:
c7:53:c5:eb:65:8a:a7:01:d0:3f:2d:d2:13:ed:19:
de:b8:ef:e4:33:6f:91:e3:50:6f:dd:fe:e6:11:95:
60:97:ed:7f:8e:f5:da:a3:11:0d:0a:32:84:a7:e1:
92:a1:14:a4:1f:7e:ff:52:49:66:72:1a:2f:14:50:
6e:6d:7a:28:61:5e:58:d4:39:be:dc:fa:4a:83:02:
72:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:08:53:F7:59:8B:00:E0:12:B1:4A:A3:0C:85:AA:02:07:22:63:CB
X509v3 Authority Key Identifier:
keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:6b:33:2f:25:50:58:6f:16:b8:ba:c2:e7:ab:f9:e0:d8:87:
c5:81:3b:87:ac:b3:1d:e1:6c:8e:4d:2f:64:c2:ff:24:60:75:
60:cc:dc:67:55:39:6a:d8:45:d6:a9:10:39:b9:76:e9:ba:95:
20:85:74:bc:50:f6:31:6c:c9:87:53:be:6d:88:f3:5b:db:d1:
e4:1f:d4:d1:24:85:80:00:39:bf:59:87:f5:08:3b:b2:63:79:
71:70:96:a6:77:eb:35:30:1e:28:dc:e1:36:51:9b:0c:5c:ba:
87:d0:9f:ba:8d:c3:de:0e:81:67:fe:4d:3d:14:d9:44:b7:30:
8c:fe:f8:02:4e:fd:78:ed:d7:85:4c:f8:28:95:c6:0c:ec:0f:
d9:c1:0a:01:5d:78:1f:1c:fe:2f:a2:28:e7:2c:1f:8c:4f:f3:
43:1c:0c:15:99:68:a0:3a:5d:73:e3:55:7b:0a:4f:e3:e8:24:
54:10:f7:ec:6d:69:fa:0f:2c:44:b5:82:24:65:01:b6:18:5a:
a9:ce:c9:a9:b7:20:db:61:9e:76:5d:02:bf:c3:ee:68:12:fb:
4c:49:57:e1:94:88:31:04:29:7e:f2:c5:ff:2c:05:e6:48:5d:
cf:7c:54:f8:12:4f:8a:5a:aa:4b:d0:4c:49:8e:93:d6:4e:e9:
d7:05:b1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:38:42 2026 by rpki-client