Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: 7huyEwzbt6ADSLlHJVMVNwQh+cVj0i61A5L9EuhgLzM=
Subject key identifier: 0D:82:4E:5A:AF:0E:3C:9F:9B:58:11:4F:62:42:55:6A:A2:62:21:80
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 019D2470C651F5EC2925D2E7E9D454F5F892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 10:01:03 +0000
Manifest this update: Wed 25 Mar 2026 10:01:03 +0000
Manifest next update: Thu 26 Mar 2026 10:01:03 +0000
Files and hashes: 1: 2KPw1cvbm50f0LYM14wl1jqJ9og.roa (hash: A1Jjz4VQ5P7K7cWtSDzEEjwDvup5VASHzuFeW68IpQ8=)
2: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: crYup0hzCf0BOqUZSD+NdDDl2bZpCgkAzpQuZx0WWJQ=)
3: 5zAcr2MhyDCdacqJvxwBmq4sOH4.roa (hash: 9czlcLD7YQeH0gyDdNkBNpm6fNiGuz9s468YZ9/nJQI=)
4: 7pxmMXSw-HkZG9cAZnnYN-vEkfQ.roa (hash: mEU3VRJ8fuQ7izupJUqVvL0qdRuIxFLkUNg5UpgN7ss=)
5: 8OlOEZgObzEvy1E8VmktgWUdQi0.roa (hash: vpY2iql20BkJOzJyUWVMsBYvSfuAgM3xo1h/baltqkw=)
6: IbI54r9UQEycQUhSG_R7IhAl23w.roa (hash: Xsth8W4XkRG829Saw23qV/fuk3mylDa5vQqSxMBq6Os=)
7: JhUMKiYCn9eUbg_7DmY6uovoHoc.roa (hash: /VG5t/ryLvfnmkQXWQxGTz3xvzzUl1+taEQKWl5+rjA=)
8: kaNSS3H8CcGwyEb9L0LHfodkCbI.asa (hash: w3bZtfnN5MHgcG0AWFUlSLsnuz4fMXs0k06prQh3OWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 10:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:70:c6:51:f5:ec:29:25:d2:e7:e9:d4:54:f5:f8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: Mar 25 10:01:03 2026 GMT
Not After : Mar 26 10:01:03 2026 GMT
Subject: CN=0d824e5aaf0e3c9f9b58114f6242556aa2622180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:d0:c3:ec:47:30:1c:b3:ac:f1:f5:53:55:
05:36:90:1f:51:22:ca:31:ba:1f:7a:6c:1d:8c:1c:
51:ff:68:dd:34:1c:da:e5:c8:96:28:66:2d:00:dc:
34:23:1e:3a:04:a2:ce:32:d1:a9:61:a9:eb:86:35:
fc:40:f9:bc:03:7c:1e:fb:53:bc:90:fa:00:6c:b6:
7d:85:ba:ce:96:e8:b1:54:e6:e1:46:c7:95:28:1b:
f4:79:00:de:c8:5c:87:92:16:57:b3:b0:e3:33:07:
6d:d9:2f:35:a9:97:4e:db:1f:d3:97:bd:25:86:2b:
16:0c:0c:73:1b:d4:b4:c1:44:89:63:13:0d:eb:6b:
d7:0a:d9:23:3c:7c:e4:31:89:ad:6a:fe:31:e3:06:
af:2e:84:99:66:76:95:65:82:e1:b3:9e:32:8f:e2:
a1:09:d8:36:be:34:da:5d:59:1c:7c:92:06:29:1e:
87:30:a3:04:21:cc:10:8e:0e:4f:a1:35:05:07:92:
78:48:39:f0:33:b8:51:7b:ec:02:09:4f:63:da:97:
31:65:f4:75:07:13:7e:0a:14:47:0a:83:b1:96:42:
5b:27:f0:69:16:39:c6:76:78:37:83:73:f7:bd:85:
06:7c:ad:04:f8:34:b4:00:44:9c:03:29:92:05:02:
d7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:82:4E:5A:AF:0E:3C:9F:9B:58:11:4F:62:42:55:6A:A2:62:21:80
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:95:2a:2b:01:e5:f6:d4:18:17:e9:90:c9:9c:3d:4d:45:a8:
3d:01:cd:9d:d1:d1:ba:dd:ca:3b:e4:de:85:0c:fb:fd:98:9c:
9e:4f:be:a5:55:8a:67:e5:27:46:92:68:ca:c6:98:d1:50:d0:
d2:c1:12:15:6f:92:2a:63:aa:1a:e4:c8:73:c4:1a:30:c5:90:
ba:50:a1:c8:5c:31:9c:18:94:2d:8d:12:cf:e8:19:60:a6:83:
d3:d4:5b:7d:52:b5:5c:c3:67:d6:af:b1:55:15:2a:12:96:1a:
86:a5:e4:b5:64:3c:22:78:60:a5:5d:09:52:7f:5d:3f:15:39:
ae:bb:05:65:4d:b8:84:25:be:de:10:32:c1:b4:45:e7:be:a5:
5f:8f:7a:bf:2d:4d:98:68:65:7f:58:d0:23:39:00:73:6e:51:
58:08:a2:54:d3:16:93:90:ce:aa:e3:fd:dd:d2:15:68:e8:c2:
1d:65:ff:42:54:50:3a:70:21:74:0d:87:b8:22:03:f3:8a:3e:
47:1f:6d:5c:0c:14:74:ef:c1:6d:77:9a:15:fe:c1:b9:29:b3:
a3:2e:8f:0c:fd:66:70:4e:d4:3d:67:76:b7:a0:94:4c:c6:cd:
d7:ea:25:63:e0:16:98:80:55:67:28:07:40:2b:36:64:a0:c0:
c0:20:1d:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:26:03 2026 by rpki-client