Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
File: 4HG570GlOChYzZ7vmKf7nRJqpK4.mft (raw, json)
Hash identifier: Zo2fqa+NONhUUhX6eLninTzVRE4Sk3oFHwBTcC3XsXI=
Subject key identifier: A2:79:C3:43:E6:35:25:B2:E9:A6:A4:32:4B:30:97:13:79:42:5E:5E
Authority key identifier: E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
Certificate issuer: /CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Certificate serial: 019D2884A464EB6639E594BE9AD8E52A7F83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
Manifest number: 05B0
Signing time: Thu 26 Mar 2026 05:01:14 +0000
Manifest this update: Thu 26 Mar 2026 05:01:14 +0000
Manifest next update: Fri 27 Mar 2026 05:01:14 +0000
Files and hashes: 1: 4HG570GlOChYzZ7vmKf7nRJqpK4.crl (hash: rbQrrdkXZsFsMfKMmgAL8xOvLgK53YRmuJEenUVw7Cs=)
2: JqYIovUOhpMaXbCswunFuuxrXZA.roa (hash: pzyg9bet0YZqCdKyQjx/ZoPH6pBnBtJrgE7rSpscrOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:a4:64:eb:66:39:e5:94:be:9a:d8:e5:2a:7f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Validity
Not Before: Mar 26 05:01:14 2026 GMT
Not After : Mar 27 05:01:14 2026 GMT
Subject: CN=a279c343e63525b2e9a6a4324b30971379425e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b1:f8:92:57:96:14:28:69:ba:bf:ad:16:28:
51:31:1f:66:d2:ad:29:77:72:d5:4c:28:ff:4e:88:
dd:65:72:33:b2:82:d5:2f:a5:aa:1c:9e:6c:6b:b7:
71:1b:e6:3d:e3:83:77:dc:a8:fa:28:c1:c8:4d:dd:
e0:94:c4:da:0b:28:ed:4c:9e:2a:00:db:7c:72:b2:
7b:53:21:28:04:93:08:98:f9:3e:4c:da:df:9e:69:
7f:ab:4b:28:ec:0a:67:22:40:e6:60:69:5d:80:85:
d0:22:b0:8a:f1:04:f3:e3:e9:3f:bc:16:b5:17:e3:
aa:77:13:61:2f:3a:9e:10:32:47:ee:71:d2:16:44:
69:9c:a4:bb:f1:53:9e:18:28:df:83:57:a3:46:18:
1c:5f:72:a7:11:62:14:68:50:b2:46:e8:28:28:36:
fd:19:0c:3f:46:59:58:8d:ef:8f:13:ba:bf:09:c1:
37:09:1c:15:03:97:4f:44:97:ee:d3:06:23:f3:c7:
6c:d2:68:4b:49:de:2b:88:81:28:7d:0b:2d:3c:35:
a8:b6:7a:99:06:44:20:9c:0f:21:c1:d1:ac:bf:13:
f0:ee:e3:ba:00:9d:c0:bb:9d:b0:5e:02:0f:de:64:
b7:59:48:95:5d:ab:b5:cc:11:84:fa:8e:e5:7d:8f:
9d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:79:C3:43:E6:35:25:B2:E9:A6:A4:32:4B:30:97:13:79:42:5E:5E
X509v3 Authority Key Identifier:
keyid:E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:55:1b:69:23:23:8d:91:11:a2:94:b3:7a:b0:64:ac:1d:29:
7a:48:04:53:8d:eb:51:fc:0f:0a:91:55:5e:f5:d1:fc:7f:86:
3a:6f:46:ac:7a:a4:ef:12:25:c1:2b:19:6f:e7:c2:85:e9:2d:
93:5d:13:99:0f:ae:35:ac:78:6a:0a:a2:51:3d:3a:74:23:35:
43:17:b1:fc:fb:84:e1:3c:70:94:41:b8:16:8f:ac:97:10:eb:
94:fd:e5:65:5b:30:e3:4e:bf:51:b4:ef:3b:5e:46:93:fb:4b:
9c:e0:98:b4:52:fa:fb:32:16:3e:ac:3f:03:17:be:cf:6d:bc:
67:ad:64:32:d7:5e:98:61:61:30:3e:47:f7:c4:b1:34:e2:2d:
bf:55:74:84:e0:c4:76:d7:4e:91:0e:51:2a:64:65:da:d5:d3:
4e:3d:56:8f:39:bd:8c:2b:2b:cf:4d:0f:f6:94:d2:e4:c4:eb:
13:97:07:e4:3f:d2:0d:ac:9b:32:d1:03:18:92:73:1d:32:21:
02:66:b1:db:06:a2:a1:d6:16:ee:a0:37:3c:b0:76:1a:dd:d4:
13:c1:2a:f6:74:9a:41:af:a0:3a:b3:d1:64:a4:04:e1:52:c5:
22:7a:4f:e2:4d:c9:5b:a7:a8:e7:14:4f:e4:9b:cf:5e:f8:8b:
b4:82:8c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:26 2026 by rpki-client