Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: ZASx3iCAy/0dVdOBxt0PzVFwdO5zUmumqAV5K1a/MiU=
Subject key identifier: 22:65:E3:BA:98:56:18:DF:E9:53:DC:95:50:0D:A0:42:6F:AA:42:5D
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 019E1CB5371CAB304C89D6A548553F0DD90B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 190E
Signing time: Tue 12 May 2026 15:01:38 +0000
Manifest this update: Tue 12 May 2026 15:01:38 +0000
Manifest next update: Wed 13 May 2026 15:01:38 +0000
Files and hashes: 1: 2KPw1cvbm50f0LYM14wl1jqJ9og.roa (hash: A1Jjz4VQ5P7K7cWtSDzEEjwDvup5VASHzuFeW68IpQ8=)
2: 4DjthTFuBFBUicM1fyQrr1R-zpA.roa (hash: /khTTdB4MFujwhgprh1GKjQ5sevdR189YyvZSZEdlvw=)
3: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: 5m0w7pr2pO/G34q3xR457rGIocuTAblkxD1bg3qdaBE=)
4: 7pxmMXSw-HkZG9cAZnnYN-vEkfQ.roa (hash: mEU3VRJ8fuQ7izupJUqVvL0qdRuIxFLkUNg5UpgN7ss=)
5: 8OlOEZgObzEvy1E8VmktgWUdQi0.roa (hash: vpY2iql20BkJOzJyUWVMsBYvSfuAgM3xo1h/baltqkw=)
6: IbI54r9UQEycQUhSG_R7IhAl23w.roa (hash: Xsth8W4XkRG829Saw23qV/fuk3mylDa5vQqSxMBq6Os=)
7: kaNSS3H8CcGwyEb9L0LHfodkCbI.asa (hash: w3bZtfnN5MHgcG0AWFUlSLsnuz4fMXs0k06prQh3OWE=)
8: mxy-X6DSpF8ZztbUQjMZo4HUfAM.roa (hash: 8VsFON9Y1Ltuj+mPJYLJdGhQhe4GbTQ4L4kgjue4VFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b5:37:1c:ab:30:4c:89:d6:a5:48:55:3f:0d:d9:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: May 12 15:01:38 2026 GMT
Not After : May 13 15:01:38 2026 GMT
Subject: CN=2265e3ba985618dfe953dc95500da0426faa425d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bf:3e:24:74:77:ae:eb:63:34:5e:43:40:32:
e5:c0:4a:4e:b0:16:0e:2b:42:30:cd:87:f5:cf:64:
94:a0:7a:5f:5e:a1:2a:ae:a4:06:45:68:4e:29:c5:
a9:69:c2:bb:d6:5d:99:cc:d2:9a:50:24:67:ad:b5:
23:0b:d5:16:a6:3e:c3:2b:39:d3:a5:f1:5f:4a:63:
9f:23:6b:b2:b7:b1:e1:f9:1c:2d:fb:3c:0e:ec:d1:
ae:b7:f9:89:3f:71:db:1f:f8:ca:04:f1:bb:e4:1b:
85:b8:9a:be:0a:0e:0d:a4:48:15:b7:cf:a8:9a:f1:
6c:04:fb:04:21:c3:2d:5a:23:6b:d6:30:79:77:d4:
dd:fb:55:82:fa:df:28:1d:48:25:8d:9a:34:e8:a5:
0e:6c:68:77:ce:f9:0c:4a:1a:f8:84:73:3a:d3:6f:
bd:99:56:60:54:e9:3c:93:0d:e4:93:b3:67:d3:b1:
26:9b:5e:76:a4:30:0b:45:67:cb:b7:25:1b:e2:f5:
25:6d:19:25:41:38:6b:ae:b9:32:31:e4:5f:3b:03:
65:d4:21:ba:8d:ba:b4:40:fc:8f:aa:cb:a2:c6:dc:
df:0e:0e:36:82:e5:0a:6e:35:ea:9b:a5:cf:e3:35:
15:1b:8c:2a:68:10:d7:7a:0e:58:b1:44:d8:d1:89:
6f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:65:E3:BA:98:56:18:DF:E9:53:DC:95:50:0D:A0:42:6F:AA:42:5D
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:13:fe:d8:30:3b:93:83:ee:23:73:b4:59:25:95:91:59:cf:
72:8c:a4:58:6a:8c:25:2e:51:9f:28:3c:5d:88:93:23:8a:48:
34:26:88:a8:f4:3b:7a:8b:8e:e0:08:76:2d:62:7e:0e:38:00:
0e:44:e5:70:8b:48:87:a2:19:40:00:dc:48:c7:15:6d:f0:78:
30:30:87:84:aa:29:45:42:b7:60:df:15:5d:dd:3c:45:a1:43:
6e:9e:3b:1f:86:3c:cd:63:64:bf:37:0a:22:14:93:99:61:ef:
19:0b:bf:79:e7:8c:f9:94:18:c9:7b:7b:5f:02:b4:b3:ca:89:
a2:96:12:a4:2e:e7:dc:11:31:0f:1c:3a:16:85:4a:06:59:a5:
84:24:88:d0:59:ef:c6:a0:a8:5c:34:87:f3:48:53:6a:30:fa:
90:d0:dc:2a:ef:50:fd:ef:15:02:85:09:5a:a3:b0:e9:93:6a:
69:af:fd:3e:34:ed:a5:66:bf:38:1d:8e:6e:e4:08:8b:66:a5:
ad:1e:41:c4:67:48:14:76:ab:99:83:45:1b:ed:3b:da:ee:8e:
47:08:75:90:f3:97:7d:b9:27:14:97:85:23:ee:08:16:34:2e:
e4:49:7e:dc:3d:ff:cd:f1:aa:94:f6:e2:2c:27:e6:c0:cd:92:
51:eb:cd:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ctTccqzBMidalSFU/DdkLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwODY2ZTVhN2M3MjVkY2I2YTEzOGNjNmMzNDBjZmRhZDQz
MTVkM2UwHhcNMjYwNTEyMTUwMTM4WhcNMjYwNTEzMTUwMTM4WjAzMTEwLwYDVQQD
EygyMjY1ZTNiYTk4NTYxOGRmZTk1M2RjOTU1MDBkYTA0MjZmYWE0MjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmL8+JHR3rutjNF5DQDLlwEpOsBYO
K0IwzYf1z2SUoHpfXqEqrqQGRWhOKcWpacK71l2ZzNKaUCRnrbUjC9UWpj7DKznT
pfFfSmOfI2uyt7Hh+Rwt+zwO7NGut/mJP3HbH/jKBPG75BuFuJq+Cg4NpEgVt8+o
mvFsBPsEIcMtWiNr1jB5d9Td+1WC+t8oHUgljZo06KUObGh3zvkMShr4hHM602+9
mVZgVOk8kw3kk7Nn07Emm152pDALRWfLtyUb4vUlbRklQThrrrkyMeRfOwNl1CG6
jbq0QPyPqsuixtzfDg42guUKbjXqm6XP4zUVG4wqaBDXeg5YsUTY0Ylv0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCJl47qYVhjf6VPclVANoEJvqkJdMB8GA1UdIwQY
MBaAFOCGblp8cl3LahOMxsNAz9rUMV0+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEladVdueHlYY3RxRTR6R3cwRFAydFF4WFQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83YmE4NzctNDgzOS00NzE3LThhYTQt
MjQ0MTliODc2ZjA4LzEvNEladVdueHlYY3RxRTR6R3cwRFAydFF4WFQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83YmE4NzctNDgzOS00NzE3LThhYTQtMjQ0MTliODc2ZjA4
LzEvNEladVdueHlYY3RxRTR6R3cwRFAydFF4WFQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhxP+2DA7
k4PuI3O0WSWVkVnPcoykWGqMJS5Rnyg8XYiTI4pINCaIqPQ7eouO4Ah2LWJ+DjgA
DkTlcItIh6IZQADcSMcVbfB4MDCHhKopRUK3YN8VXd08RaFDbp47H4Y8zWNkvzcK
IhSTmWHvGQu/eeeM+ZQYyXt7XwK0s8qJopYSpC7n3BExDxw6FoVKBlmlhCSI0Fnv
xqCoXDSH80hTajD6kNDcKu9Q/e8VAoUJWqOw6ZNqaa/9PjTtpWa/OB2ObuQIi2al
rR5BxGdIFHarmYNFG+072u6ORwh1kPOXfbknFJeFI+4IFjQu5El+3D3/zfGqlPbi
LCfmwM2SUevNbQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:33:19 2026 by rpki-client