Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: YJkrbmA7XM43ZkHtT1ACPFjZS0BePE5Z0tcKnuhEaVw=
Subject key identifier: FE:47:71:7F:A7:1F:21:52:CF:A1:FA:E5:FD:C7:65:90:9D:7C:35:F2
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 019D28BBF5F50D8DDAEAE268988327463486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 0BCC
Signing time: Thu 26 Mar 2026 06:01:39 +0000
Manifest this update: Thu 26 Mar 2026 06:01:39 +0000
Manifest next update: Fri 27 Mar 2026 06:01:39 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: LeoNIH7ihPrmOfYR3v6/Bx3tAytwC/7RG5y2Mu892Gs=)
2: WTnZHawCrFt92HJ5c52B4Lpjzyk.roa (hash: ULPffjH4r407eXPyl6PQZZu6OtSid0XwosfEwigrGuo=)
3: s6V5k75uP9Du1h1TOqbJVxNQlpk.asa (hash: 4gKeo2b3gnQfAxzJIIq7R9o3by/qPWXIYyzmMQ3wxD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:f5:f5:0d:8d:da:ea:e2:68:98:83:27:46:34:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: Mar 26 06:01:39 2026 GMT
Not After : Mar 27 06:01:39 2026 GMT
Subject: CN=fe47717fa71f2152cfa1fae5fdc765909d7c35f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:2b:c0:33:6f:ea:21:ae:5a:d8:af:90:24:
a3:01:f7:85:17:43:1c:a8:dd:38:99:82:6d:4c:d1:
aa:6e:be:a4:fa:4f:25:57:b8:e6:47:12:24:0e:63:
f6:f0:11:ea:ca:a6:b6:c7:47:53:7e:86:40:0f:4d:
6d:57:16:75:7d:7f:19:e3:5c:cf:3b:3e:84:9f:b8:
97:9c:b7:94:b5:4b:07:e3:44:24:76:57:7e:ab:e2:
10:83:8c:fc:bf:55:7c:af:19:a8:89:90:ee:e6:d7:
43:f3:01:ac:ee:68:df:f1:9b:fb:ce:71:25:e3:80:
b6:ac:e8:91:c5:07:3d:72:04:f0:af:6f:00:35:f8:
90:9d:85:82:a6:0d:e7:63:1a:25:83:92:a4:1b:73:
ec:e6:6b:4b:0c:9f:89:fe:b8:ad:7a:74:f2:c0:07:
f5:4c:9c:ae:6f:31:fc:11:90:28:ea:e7:2c:ac:30:
fc:1b:0f:1a:da:cc:d3:23:6f:a6:9d:be:55:0b:be:
de:93:ad:4a:71:8f:e8:b0:dc:5f:8d:5c:8e:bf:0e:
d5:70:7b:03:1c:50:63:a1:34:21:40:2d:6c:49:41:
24:9c:7a:4b:64:4a:f6:70:78:5c:11:95:4b:a3:e3:
73:9a:00:b7:5f:e8:7a:3f:c3:51:30:13:e3:8f:36:
52:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:47:71:7F:A7:1F:21:52:CF:A1:FA:E5:FD:C7:65:90:9D:7C:35:F2
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:6d:c4:8e:21:c4:5f:ea:ff:10:55:41:b0:a1:66:57:9d:9c:
df:9e:13:30:9f:e5:c9:3a:6e:7c:40:53:76:3a:c7:e4:3b:02:
5f:1e:31:32:29:70:af:fe:f8:95:ab:2d:be:1a:4d:c7:7c:63:
26:1a:b0:97:36:78:68:71:3d:73:95:0d:64:c3:1a:af:60:dc:
df:71:61:51:86:bc:cd:56:17:d6:27:4b:51:40:15:49:25:38:
c8:b4:07:13:10:53:8e:3a:59:e2:db:ba:3a:27:63:79:36:09:
f1:94:a1:14:4a:34:de:f2:47:e5:c1:6a:49:ce:5d:d0:27:2b:
45:3e:15:3b:76:1d:d3:76:d6:dd:3b:d7:6f:ab:ce:88:3a:22:
f3:72:5e:29:45:a5:e6:f0:53:01:9d:04:e5:4d:2d:97:4c:79:
c4:df:7e:aa:07:6d:43:9c:2f:2d:0c:6f:cb:cb:d1:fa:e3:93:
72:d7:79:f6:22:3a:5d:08:67:5f:97:fa:ca:c2:44:6f:95:ff:
4d:de:9f:71:7c:58:87:51:55:46:90:95:42:4d:f6:f7:6a:d2:
f8:c0:cc:cb:2c:ab:c7:a8:f1:f1:21:c4:c5:28:9b:1c:d1:10:
8e:a8:bf:37:c7:67:1d:98:41:3a:ff:6a:2d:48:fa:12:eb:8c:
40:f3:00:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:20:30 2026 by rpki-client