Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: Uxi8IjjS2Gqt/bdTtWwobf5Nlpo32qaCL1DIbt5vtyo=
Subject key identifier: BF:AD:34:BC:BF:FC:E8:36:31:34:1F:7F:C7:1A:E1:F4:E4:CB:CC:7C
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 019D2704B9CB8113C9ADA397CC9FC2944613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 111B
Signing time: Wed 25 Mar 2026 22:01:54 +0000
Manifest this update: Wed 25 Mar 2026 22:01:54 +0000
Manifest next update: Thu 26 Mar 2026 22:01:54 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: K432pfiBJ8twZlC9VK/CXXNIyli3Gt9XSY2YYH6oE8c=)
2: Q_JnpghBEdCLh0xBHJB-tx_t2gw.roa (hash: Ab9wt6TXLrpI0IOi098sXRGVv7NV4z8Pe9YK/pyc2Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:b9:cb:81:13:c9:ad:a3:97:cc:9f:c2:94:46:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Mar 25 22:01:54 2026 GMT
Not After : Mar 26 22:01:54 2026 GMT
Subject: CN=bfad34bcbffce83631341f7fc71ae1f4e4cbcc7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:06:a3:5a:f7:e0:a8:0f:3e:b5:2e:6b:21:09:
c7:e9:b2:a6:f6:84:30:f2:c6:ab:c1:ee:a5:06:44:
fb:45:26:68:cb:66:dc:18:94:4f:70:38:f1:b8:82:
78:d9:88:91:f4:3a:8f:0a:e3:a6:f5:34:9a:35:4d:
b7:09:b9:79:4c:48:84:83:38:2d:e7:10:dd:43:c0:
0c:73:5a:38:33:2e:69:c9:c5:f5:f3:a9:cb:ca:57:
27:19:e6:a7:4f:c8:c3:e5:42:c0:0e:39:53:d0:3d:
4a:1e:1b:d6:db:a0:b0:ee:ef:24:1a:22:c4:75:f9:
ca:fe:12:1c:fe:79:ef:d9:6f:8d:f9:31:fb:f3:45:
50:e0:84:6e:3f:c4:93:75:31:ff:39:59:75:4a:d6:
3a:81:87:b3:4c:d1:95:c6:04:d7:92:34:55:31:ed:
47:02:b0:cd:e3:43:7a:86:95:33:8a:9b:24:df:12:
c1:1c:30:a3:f0:15:ef:cf:66:86:f4:f2:00:24:f7:
8b:8c:c6:f2:9e:c2:eb:87:db:5c:04:3e:46:5d:b6:
84:35:8f:d1:fa:67:44:74:dd:49:d0:b7:bc:60:60:
df:22:69:b7:17:5a:a3:15:5a:51:70:c0:f7:c4:ac:
33:d5:aa:66:21:31:e3:c5:c5:28:57:7e:44:1b:e6:
2d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AD:34:BC:BF:FC:E8:36:31:34:1F:7F:C7:1A:E1:F4:E4:CB:CC:7C
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:73:3b:6c:6e:36:d7:d5:08:7f:c1:26:6c:a1:83:c6:85:d9:
d5:f1:24:be:aa:19:17:ff:e7:65:94:e8:0c:af:6f:6e:3f:91:
2a:92:78:6f:2f:40:65:ed:ed:e7:47:03:4c:b8:ad:f1:31:0d:
e1:cd:b1:4d:57:32:86:8c:55:23:61:57:73:30:fd:6a:c6:1d:
39:ae:35:9b:c1:22:69:a8:d9:80:a2:36:1b:1a:3f:4f:68:1a:
10:6f:f3:d5:7f:26:58:4b:9c:56:d8:a4:4c:b5:44:10:43:66:
35:86:f8:cb:31:f8:e3:37:b8:78:79:b7:db:90:28:0b:c2:db:
c4:27:66:d3:53:df:7f:65:4b:e8:72:cd:34:0e:03:e6:2f:7e:
83:6d:3c:6c:3c:5a:bf:93:54:6d:70:43:15:1f:ad:be:d2:bd:
12:60:4f:d8:56:2b:4b:ed:e8:0e:32:9a:b8:44:1a:93:cb:8d:
5d:1d:7c:a4:ef:a0:39:23:81:2c:d0:99:5f:11:cb:ee:7e:34:
15:2f:a2:4e:0f:1f:d0:83:1c:44:45:76:91:08:0b:0b:52:ae:
4f:6f:1c:e2:84:bc:7f:3a:52:6f:4c:57:75:ef:ed:fd:94:0d:
6d:e9:39:d2:cf:4f:d9:9e:e9:5f:09:82:b1:e8:bf:49:5f:25:
73:ea:85:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:14:09 2026 by rpki-client