Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
File: u41koNwhmWscmeaMyVFpTik-3v4.mft (raw, json)
Hash identifier: 9JhMHeaefvtf6iim6X5i6tvtkznQV/68L/viuqUoHu8=
Subject key identifier: 8C:4B:61:99:DD:C3:92:29:A3:5E:A6:5E:A2:A8:60:A3:45:B8:45:DA
Authority key identifier: BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
Certificate issuer: /CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Certificate serial: 019E1E6C7662D7AD2CB0FF6C3435C25244E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
Manifest number: 1910
Signing time: Tue 12 May 2026 23:01:24 +0000
Manifest this update: Tue 12 May 2026 23:01:24 +0000
Manifest next update: Wed 13 May 2026 23:01:24 +0000
Files and hashes: 1: 6wCR-IXi-d6mFq9coQKBvKcWKb8.roa (hash: 3CTCR/QkDS3QC7l1TMcETE6DIffI4EDmk47oroP7Oco=)
2: Wve6Gpo7jKUoWkkK-ID2jmyV7c4.roa (hash: 1lWZa+k/0zeWIBYNmCvAje+cs/RGX75v0KzNg1cs52k=)
3: u41koNwhmWscmeaMyVFpTik-3v4.crl (hash: /8F6eEH5nyv8Mb+K7x0g3rJUCzRJtbCpFAsluL/+DG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:76:62:d7:ad:2c:b0:ff:6c:34:35:c2:52:44:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8d64a0dc21996b1c99e68cc951694e293edefe
Validity
Not Before: May 12 23:01:24 2026 GMT
Not After : May 13 23:01:24 2026 GMT
Subject: CN=8c4b6199ddc39229a35ea65ea2a860a345b845da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:44:dd:33:e4:af:47:ec:c8:1b:22:ec:7c:
52:5b:5a:8f:97:59:87:90:29:04:19:84:88:74:b6:
9f:92:3e:46:9f:37:35:cb:aa:ea:63:a1:24:f9:ae:
a2:d9:b2:cd:69:19:63:0b:66:30:85:70:f5:b0:9c:
34:e2:c4:91:c0:06:02:fe:e6:c6:4c:89:53:d3:83:
3b:c1:ef:21:07:28:4a:a7:6c:50:8a:5e:55:57:b4:
46:3d:1c:c7:c6:9e:f7:b0:75:0c:38:79:3d:9d:27:
d9:6e:39:5a:2f:88:fa:df:89:41:88:89:4e:2a:b5:
50:33:c8:de:6d:ff:9d:bd:e8:f9:06:c1:c5:51:d9:
28:f1:41:6a:b1:fd:6c:cc:18:b9:a8:ee:49:5d:69:
07:ae:f2:ff:97:c1:4d:fe:7b:c4:18:8c:b0:36:d9:
5a:91:8b:a1:a8:d5:0a:58:f2:fe:08:e0:0a:80:d7:
0a:a7:0f:01:11:5a:68:fa:ba:9d:26:b0:1d:93:ae:
f0:80:bf:b5:8b:d4:a2:6c:c9:f8:87:d7:47:13:ca:
98:2c:98:0f:04:a0:bf:d9:11:47:80:f0:15:26:8b:
17:21:c4:95:38:8f:81:1b:19:fe:24:e9:1f:99:81:
27:1e:94:45:2a:20:24:0c:b7:34:b5:f6:4c:c8:be:
5c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4B:61:99:DD:C3:92:29:A3:5E:A6:5E:A2:A8:60:A3:45:B8:45:DA
X509v3 Authority Key Identifier:
keyid:BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:be:c2:3c:41:a9:7a:fd:b6:af:01:fa:28:e5:4e:03:b8:7e:
8e:58:14:ff:a5:9a:e8:7c:53:56:56:d6:8d:bb:d2:3c:1a:b8:
24:c4:56:8a:bd:f8:39:a8:a6:00:c9:3d:e0:93:be:29:8d:f2:
cb:0c:eb:a7:7f:62:be:e6:13:fb:0b:03:13:b6:4e:b1:e4:5e:
dd:c3:5c:f5:4e:62:6a:5d:00:ac:a3:2f:b0:43:57:83:fe:51:
07:e3:d8:9f:3c:1e:9a:9c:f6:8b:0f:1c:c9:88:19:5e:36:cf:
cb:a3:7b:c4:e5:53:b0:fd:54:08:da:d4:e8:28:8a:e6:54:f7:
b5:fe:60:79:a1:f0:22:33:98:d4:9f:40:51:fa:7d:8e:2a:52:
0a:5e:1b:50:26:53:6d:e1:ce:bd:ed:92:d0:94:1a:a2:0e:8f:
76:76:78:a5:f0:84:fd:5b:e7:2b:70:45:a1:af:4d:43:98:4d:
e4:a6:89:ba:da:16:2f:77:8b:5f:e8:58:f9:84:cc:84:ba:e0:
05:b4:01:c3:84:7e:69:87:39:89:ea:36:f0:7e:7b:e6:ea:8a:
4c:f1:0d:68:29:99:8b:e7:db:27:d9:a6:23:b1:34:9c:e3:18:
b3:85:ed:e3:4b:8e:3a:5a:63:a2:26:a7:d4:46:a6:5b:51:ea:
a1:71:76:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:12:11 2026 by rpki-client