Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
File: 4kycUM9OLawF4fBDKCJOIKRgXXc.mft (raw, json)
Hash identifier: hhJgDS/cDe4AI30n0afVPXFh+b01tfCTpwQU92O3KrA=
Subject key identifier: 9C:83:DE:8E:8E:06:99:10:C4:CA:BA:C3:E6:57:12:AB:E4:B0:E7:6F
Authority key identifier: E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
Certificate issuer: /CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Certificate serial: 019E1DC72D70900DCE3249106C39C9863287
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
Manifest number: 0FEF
Signing time: Tue 12 May 2026 20:00:52 +0000
Manifest this update: Tue 12 May 2026 20:00:52 +0000
Manifest next update: Wed 13 May 2026 20:00:52 +0000
Files and hashes: 1: 4kycUM9OLawF4fBDKCJOIKRgXXc.crl (hash: z8PlgDdkYt3uJnMHOEGl4cGGgpTEvY4dMaOo3lKlHmA=)
2: tMtN8-QriDVpgeW2wDDvJvfjR9M.roa (hash: xSHPKvxZeM3dEwuvm0xnQCeYW9E45CjCYOCoqNZiqPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:2d:70:90:0d:ce:32:49:10:6c:39:c9:86:32:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Validity
Not Before: May 12 20:00:52 2026 GMT
Not After : May 13 20:00:52 2026 GMT
Subject: CN=9c83de8e8e069910c4cabac3e65712abe4b0e76f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:b7:c0:39:51:5f:70:be:63:8e:47:39:40:
15:a8:78:0a:82:c7:08:46:e9:3a:c2:a8:50:96:c9:
07:49:64:34:b5:ba:ba:7d:da:e7:8f:3f:fd:97:f8:
79:cb:ff:66:9d:77:93:38:b1:61:71:86:cc:aa:1d:
44:d2:b5:76:1c:ce:08:5d:e9:00:d1:3c:87:00:bd:
d4:44:bd:27:b9:45:72:f0:20:11:e0:dc:72:d0:ac:
1d:14:b2:34:ad:a2:72:09:dc:bf:f5:e2:2e:31:50:
47:96:5c:22:8d:ec:0f:92:0f:43:1e:38:d0:8c:11:
bb:47:30:c8:6c:3b:f6:7e:99:41:2a:7d:37:ab:e3:
07:b8:90:9d:b5:ae:34:43:54:38:76:eb:74:9b:14:
bb:1a:dd:ae:f2:bf:40:1b:0e:ee:f2:f2:41:5b:85:
66:6a:3d:89:f5:b7:22:45:22:a1:7a:60:2a:89:17:
6b:b0:06:b0:d7:f5:5c:45:9a:a6:48:72:37:55:c6:
d5:ac:a2:c6:c2:8f:4d:a7:3e:c5:a6:06:55:54:ad:
ba:b3:70:81:ef:f6:5d:d4:35:88:22:2e:78:6f:49:
15:7c:6c:1d:4c:40:dd:6e:c1:8e:63:bf:a6:b3:e0:
20:f3:ed:fa:6f:14:d5:4c:9b:1b:43:0b:b6:71:0f:
33:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:83:DE:8E:8E:06:99:10:C4:CA:BA:C3:E6:57:12:AB:E4:B0:E7:6F
X509v3 Authority Key Identifier:
keyid:E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:26:a2:ce:d9:cb:53:ad:13:3a:a5:6a:b1:46:da:13:2a:dc:
98:7f:ea:48:5a:66:08:cb:b0:22:05:2f:fa:ca:14:19:12:16:
b0:c0:73:d0:c7:03:b7:8b:6d:c2:cd:4e:37:b9:8e:ce:03:36:
d5:2b:5a:bc:10:c5:a4:12:22:02:80:6f:9a:44:1e:78:69:a8:
17:7a:bc:d7:36:5e:a3:41:d0:c8:dd:48:b3:15:29:80:81:f6:
c7:75:4d:87:9f:2a:5e:45:c9:a3:d8:9f:53:9f:2a:4e:e7:a9:
f9:1a:11:56:b0:f1:5a:45:00:7c:16:93:fb:45:25:b9:f7:1c:
d6:ce:b5:30:fb:c3:d1:bc:85:4e:8a:b2:1d:4a:30:9e:16:0c:
12:f0:f9:24:1b:2c:2c:ab:73:92:20:b0:e5:52:22:2f:52:b5:
88:a8:52:ba:77:e7:bd:26:e9:d9:30:5e:b6:a7:e2:fe:60:ab:
8d:e1:bf:1e:22:71:1e:35:6f:91:4a:f7:04:f7:8c:cd:69:0b:
fb:ad:56:84:73:e3:8a:07:d0:fa:2f:e2:6b:bc:62:eb:40:e6:
7e:7f:08:ff:51:19:41:d3:c3:91:da:4b:89:59:40:ad:ea:d5:
1c:2f:26:ec:ef:e1:c4:ab:a5:b8:5b:b7:03:8f:ed:ee:2d:25:
d0:47:22:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:07:51 2026 by rpki-client