Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: k8xY8fg9KZa0OD2WE6T7vETh3RpkWrY9b23H3bqozZA=
Subject key identifier: 7B:64:F3:0C:E7:2F:EE:4F:29:9A:C1:2B:52:AD:26:96:DD:6A:29:A5
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019E30A94D3AD63A0C7142FEB7B81F07E3C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 08D9
Signing time: Sat 16 May 2026 12:01:02 +0000
Manifest this update: Sat 16 May 2026 12:01:02 +0000
Manifest next update: Sun 17 May 2026 12:01:02 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: x6rOO6siNCHwvBekcz37w/xvj3rTJbCu5MJOoo26zzs=)
2: KNOVXoGQsdCxPsZM3zKJ6uFmptI.roa (hash: UiYbuT4DjmIashb94arKXLuitUGRN2TvoEQlDnO6RSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:4d:3a:d6:3a:0c:71:42:fe:b7:b8:1f:07:e3:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: May 16 12:01:02 2026 GMT
Not After : May 17 12:01:02 2026 GMT
Subject: CN=7b64f30ce72fee4f299ac12b52ad2696dd6a29a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:f3:82:1c:fc:42:be:b5:eb:8a:26:19:b0:
27:8f:06:89:fa:be:73:3b:7c:fc:62:b3:44:b3:c7:
91:07:87:76:21:15:b6:c4:2b:94:79:97:bb:12:c5:
36:97:5f:5a:2b:da:a8:c7:1d:4a:55:e4:62:f6:63:
ea:48:ff:71:31:18:e1:95:f7:c4:3a:aa:b4:cb:97:
0a:31:78:5b:60:32:60:e3:6d:6a:a2:9c:0d:a7:57:
08:a8:e5:03:68:c4:ab:3b:82:a2:51:74:d2:ce:af:
4d:d5:a9:e6:6a:a4:3f:c3:18:5a:18:cd:ee:8f:e4:
37:56:f6:2d:93:39:e7:f6:10:c8:1a:d0:9f:e9:f6:
ae:84:f1:b8:06:7d:34:b4:d3:31:8e:47:33:8f:75:
6b:c1:fd:80:7c:cf:12:b5:a6:35:1a:08:0e:19:d7:
4f:91:96:95:d5:bb:80:db:a0:69:8c:79:de:12:56:
27:cd:8e:57:33:5a:63:d9:99:1c:ed:ef:77:df:49:
1a:a4:c1:7b:7d:dc:0c:85:0b:c1:c9:15:5c:5b:9b:
df:e6:98:63:1d:26:9f:17:34:9c:f2:f4:92:c6:f2:
df:dc:c4:e7:4a:db:bc:00:e9:cf:c0:8a:91:cb:8e:
bc:6f:3e:45:94:cf:df:2c:a3:98:b2:ad:43:00:c8:
ca:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:64:F3:0C:E7:2F:EE:4F:29:9A:C1:2B:52:AD:26:96:DD:6A:29:A5
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:ca:c1:54:7a:dd:4a:f3:d9:d8:35:76:85:3c:0a:22:f5:1e:
cf:6c:98:4c:d9:14:90:4b:30:bb:3f:2b:fb:78:89:4d:8d:69:
92:21:64:81:b3:39:43:32:b4:1a:25:60:23:f7:49:71:64:66:
b2:f0:8d:a5:15:00:cb:8a:0a:5a:a4:d4:df:af:60:33:7b:e5:
7a:a7:95:b5:e4:3d:1e:88:84:ac:03:b6:8e:dc:8e:d8:25:1b:
b5:69:d1:53:c9:05:c3:a9:27:c3:34:69:84:03:bd:74:05:8f:
4b:8b:77:c5:0a:e2:47:cd:be:17:0a:ef:a4:b2:37:e3:13:da:
ac:02:7b:8e:7e:30:52:7c:7f:e9:03:72:2f:ff:5a:04:98:97:
99:df:59:05:de:4a:0c:6f:b2:6e:3f:a9:24:3d:e8:2b:de:32:
04:ce:02:19:fc:b9:9c:f0:4b:1b:c5:8e:c4:94:c9:01:e2:f4:
53:e6:ec:6d:f4:82:c6:1f:74:87:96:ba:11:94:43:8c:e1:84:
86:bd:1b:17:09:b3:ca:4b:43:6a:d9:82:1f:ff:f9:63:c5:7c:
35:dd:01:05:a6:97:8d:3a:39:b2:d7:d0:55:e5:0f:e3:aa:a0:
cd:44:95:2c:29:88:39:91:40:4c:f1:02:35:da:e9:a0:72:c3:
fe:06:ad:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:54 2026 by rpki-client