Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: 6D5adTX4LfSGo2sz9AuLeK4SbjF27VxOLSoVeHeQA3A=
Subject key identifier: 6F:A3:5B:0B:53:58:FE:D6:CB:A6:54:DA:4A:E6:E1:A6:E9:57:55:A7
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 019E1C0FB007CA9C3C0BBBF2F0E7C54E6E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 0C4A
Signing time: Tue 12 May 2026 12:00:50 +0000
Manifest this update: Tue 12 May 2026 12:00:50 +0000
Manifest next update: Wed 13 May 2026 12:00:50 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: IkQXZdRbCatHibxpgLlfAY1cl8nmWy6jDoO873RcfQc=)
2: WTnZHawCrFt92HJ5c52B4Lpjzyk.roa (hash: ULPffjH4r407eXPyl6PQZZu6OtSid0XwosfEwigrGuo=)
3: s6V5k75uP9Du1h1TOqbJVxNQlpk.asa (hash: 4gKeo2b3gnQfAxzJIIq7R9o3by/qPWXIYyzmMQ3wxD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:b0:07:ca:9c:3c:0b:bb:f2:f0:e7:c5:4e:6e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: May 12 12:00:50 2026 GMT
Not After : May 13 12:00:50 2026 GMT
Subject: CN=6fa35b0b5358fed6cba654da4ae6e1a6e95755a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:77:4a:09:0c:b0:d9:3a:41:f5:f7:a3:38:f7:
84:54:fd:bc:de:54:3a:16:1a:1a:21:cd:ac:2b:48:
cf:68:3c:02:90:96:7b:ef:7b:cc:db:b1:ed:21:be:
fd:e5:8a:35:72:f0:62:f7:b6:9c:08:5b:68:90:b4:
9b:12:4a:a1:ae:8b:d5:47:55:5c:11:5e:93:91:3e:
27:41:37:3e:6d:46:a8:d5:f6:af:14:e9:99:3c:f9:
a9:45:2f:50:a8:3d:c7:ba:9c:2d:4f:17:c9:e5:ce:
04:d1:29:1d:5e:e2:aa:39:0b:ba:70:73:a8:ba:3d:
35:ea:dc:21:ed:53:a4:e2:8d:fe:9f:9d:17:19:a0:
a5:12:5d:ea:a8:30:6a:fa:cb:46:61:79:b4:14:dc:
22:ba:2c:54:38:13:55:79:5f:c5:71:24:4a:78:9e:
ec:5b:48:ad:5b:cd:e1:0e:eb:54:6b:b2:e9:f4:be:
6a:fb:25:74:c4:85:26:98:d1:9e:36:18:cb:2c:23:
90:e7:43:75:f5:e7:85:e5:a5:78:5e:b7:ae:0d:99:
2c:a5:36:da:ba:59:bf:64:56:35:4c:49:d6:cb:af:
dd:d4:03:45:92:42:f8:66:d4:1c:e9:0e:a9:36:7e:
c0:db:2a:fe:50:20:5c:df:d9:0c:c8:3e:ec:60:9c:
84:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A3:5B:0B:53:58:FE:D6:CB:A6:54:DA:4A:E6:E1:A6:E9:57:55:A7
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:da:c1:87:4f:8d:f3:d3:45:86:1f:13:c9:b5:11:3c:a4:53:
28:02:41:82:1e:b0:d3:cb:6e:43:10:d1:fa:3f:ac:85:37:2c:
f4:5e:dd:07:4d:c0:83:3c:fd:67:2b:ec:05:5c:1c:7f:17:ac:
53:39:8b:46:c3:16:27:ac:39:a5:cc:d6:8a:51:98:7b:a4:42:
95:8f:9e:19:c2:4b:5a:a3:79:0e:0c:24:42:ef:67:41:b6:48:
ad:2c:f6:f4:04:16:07:22:a5:26:78:08:ea:25:ab:5a:79:35:
bf:ef:23:25:35:fd:2d:6c:fd:47:7a:8c:80:b8:f3:21:f0:10:
16:25:63:73:16:55:13:02:87:74:a2:15:0e:b3:10:e8:34:91:
02:dc:58:1d:35:b6:f9:93:a0:32:23:80:d2:e9:31:23:ee:f3:
2b:c3:9e:46:4d:41:95:31:0e:32:f8:b5:36:de:b4:15:23:26:
77:7e:85:76:02:dd:2d:b5:02:b1:06:c8:02:e7:dc:f9:8f:a7:
83:b9:df:fd:c2:2b:9d:ab:ab:3f:33:40:88:68:15:3f:bd:18:
69:a9:84:26:2b:39:3a:15:1f:fe:fc:40:63:e0:c5:57:8d:4c:
35:3a:4b:4c:69:57:c5:4e:a9:e8:fc:78:01:fe:e4:45:02:38:
61:1e:e8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:27:31 2026 by rpki-client