Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
File: RkVleaUXL8oI4EOwK7ly-3UDrq8.mft (raw, json)
Hash identifier: JSUQuXUH8diO9VeFQtpP/xznd1pmcHOHMzyc1uBwg0Q=
Subject key identifier: 4D:4A:E0:D9:65:ED:0B:38:92:B0:76:E0:D5:14:4B:94:27:E4:0F:EB
Authority key identifier: 46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
Certificate issuer: /CN=46456579a5172fca08e043b02bb972fb7503aeaf
Certificate serial: 019D37C0FE494C880EA6A5D7B72D975C3F2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
Manifest number: 15E4
Signing time: Sun 29 Mar 2026 04:01:27 +0000
Manifest this update: Sun 29 Mar 2026 04:01:27 +0000
Manifest next update: Mon 30 Mar 2026 04:01:27 +0000
Files and hashes: 1: Rj99-jmr9OLsds1gjtYoMoahzWE.roa (hash: BerfWWa8JJTTIBBejFshsYqyyv1vjZIv4evRBKzTHSU=)
2: RkVleaUXL8oI4EOwK7ly-3UDrq8.crl (hash: BPrUjdS893UsT+YkDLhD03SeqtHJPcgw6oADqv0hyEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:fe:49:4c:88:0e:a6:a5:d7:b7:2d:97:5c:3f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46456579a5172fca08e043b02bb972fb7503aeaf
Validity
Not Before: Mar 29 04:01:27 2026 GMT
Not After : Mar 30 04:01:27 2026 GMT
Subject: CN=4d4ae0d965ed0b3892b076e0d5144b9427e40feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fb:29:80:47:61:7f:db:62:58:36:6c:cb:ad:
e9:ad:2d:aa:1f:ae:2c:11:1c:e5:f7:8e:55:5f:b8:
d1:22:b7:6c:f9:2c:11:c6:58:ce:96:b4:a5:31:85:
0c:bd:83:8d:64:cf:95:81:84:87:bb:6e:38:00:63:
08:b8:af:72:e8:14:df:05:95:d5:4a:c6:0c:e5:24:
8d:58:a0:d5:d6:c8:09:c2:44:bd:b4:91:07:f6:66:
29:9b:71:cc:68:1b:77:3d:69:93:c0:55:0e:44:98:
90:b9:72:a9:82:e3:1f:bf:9e:d5:81:f6:bb:7b:10:
a7:58:7a:51:aa:35:79:54:a8:b3:dc:eb:aa:29:13:
f2:95:73:ed:1f:8f:89:14:86:91:88:01:f2:6a:de:
fe:16:52:84:29:9b:00:32:82:a3:1c:b8:f6:2e:75:
20:01:f8:75:a3:20:60:9d:81:20:8e:c6:7d:e8:34:
25:0b:cd:7d:3a:9f:6e:ee:14:30:1c:2f:ad:54:ce:
7a:95:66:82:62:e5:57:bb:bd:27:b5:9c:c5:03:5e:
b4:f1:04:2f:62:a9:c0:84:9c:2c:b7:da:dd:38:d4:
2a:8b:46:06:65:8c:59:c6:8e:2b:13:0f:4e:06:b9:
4f:75:2c:b5:3d:4b:7b:f3:2d:e4:0b:95:29:be:c9:
db:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:E0:D9:65:ED:0B:38:92:B0:76:E0:D5:14:4B:94:27:E4:0F:EB
X509v3 Authority Key Identifier:
keyid:46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:81:d7:91:45:c5:4b:fb:97:c0:43:a7:92:88:91:a6:17:a7:
89:3e:b3:03:2f:8f:2d:a0:35:2f:5e:5d:62:16:df:b0:be:3d:
1d:33:b4:1f:c8:6a:a2:34:34:e1:30:6a:80:5d:69:3b:64:15:
29:70:1f:41:73:ca:e8:a9:ff:c2:51:ec:96:54:d8:0c:e1:43:
de:23:b2:b0:37:8f:87:ea:c5:2e:20:2a:5d:0b:da:0e:2b:74:
1f:94:3e:f9:28:90:38:b0:9f:e3:c7:23:bd:69:18:42:43:c9:
a2:41:94:09:00:8e:bb:88:56:b4:b9:c0:5b:72:ee:0d:ff:5c:
05:ca:18:8b:cd:85:15:0f:db:1d:9b:26:7f:14:69:ef:d0:82:
e1:89:fe:36:5d:7e:25:42:6b:31:2b:3a:be:b3:94:09:3b:f0:
c8:65:2b:e3:c0:76:27:29:0e:85:4c:da:c0:2c:e2:a9:df:cd:
87:4f:22:54:12:eb:46:ed:ed:d0:db:a0:fc:1e:78:31:ab:b8:
c6:db:32:a7:13:c0:ae:0d:e8:b6:25:ad:e6:4e:df:96:4e:9a:
bb:20:3a:bd:46:07:ce:74:55:79:f8:19:a3:2a:c2:db:b4:90:
2f:97:1a:7e:3b:dc:51:2b:d7:b5:19:0c:c1:c7:b1:b3:5f:d2:
4b:47:1d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:42 2026 by rpki-client