Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: 3HwVA5OsC+gjRrKsLz46UrP1uVaTbTL8C4pixs/jSJ8=
Subject key identifier: 1B:9D:55:8A:9B:46:36:7F:5D:45:C0:0B:CC:DF:9F:AB:C0:72:C3:84
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019D378934C31DCACC41C8E466317C8DC81D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 0858
Signing time: Sun 29 Mar 2026 03:00:31 +0000
Manifest this update: Sun 29 Mar 2026 03:00:31 +0000
Manifest next update: Mon 30 Mar 2026 03:00:31 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: RMB95NrfaapedfBrWAiEGaqShUgDMhUxqhyoM4xSn4s=)
2: KNOVXoGQsdCxPsZM3zKJ6uFmptI.roa (hash: UiYbuT4DjmIashb94arKXLuitUGRN2TvoEQlDnO6RSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:34:c3:1d:ca:cc:41:c8:e4:66:31:7c:8d:c8:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Mar 29 03:00:31 2026 GMT
Not After : Mar 30 03:00:31 2026 GMT
Subject: CN=1b9d558a9b46367f5d45c00bccdf9fabc072c384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2a:6b:d7:91:7a:cf:17:3d:59:d4:e2:e5:7e:
42:74:83:32:a1:9c:e0:cc:27:7f:9b:7c:26:69:0c:
87:8d:c0:52:2c:53:76:44:c5:b2:f7:29:41:dc:b6:
62:14:97:14:84:11:cd:b8:7b:e3:b3:37:26:a9:be:
74:99:6d:18:bf:9c:2a:93:41:e8:1c:c0:78:4a:2b:
65:b7:d4:76:c3:c5:df:41:79:50:08:d4:de:d5:5d:
9f:ae:fc:49:36:28:96:60:18:37:05:d8:c2:de:2e:
bb:56:a8:92:13:54:47:64:bb:4d:da:f5:d4:88:03:
14:cf:f1:e8:3c:62:8d:31:1e:de:3d:88:2a:e4:51:
f6:ea:62:28:ba:98:eb:87:70:51:de:5b:59:b8:b7:
81:9e:20:a9:7f:cf:dc:2c:df:3e:e4:a5:0b:e7:fb:
a9:12:31:64:ee:a8:56:3f:04:5a:74:ea:d4:a5:26:
d5:46:02:91:4d:3c:c0:6b:cf:b7:99:4e:cd:15:e9:
e9:eb:64:82:13:9d:0f:1c:84:7b:07:a4:57:1e:e1:
94:32:b1:38:17:ea:a8:2f:65:7c:eb:d7:2b:1d:b7:
7b:a8:41:af:32:73:22:5f:75:0f:7d:57:47:0a:80:
a5:b2:3a:68:53:48:21:34:91:ee:b1:3f:f8:0a:99:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9D:55:8A:9B:46:36:7F:5D:45:C0:0B:CC:DF:9F:AB:C0:72:C3:84
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:00:21:66:13:2c:ad:86:d9:70:9b:ad:e7:15:3c:8e:7d:9a:
51:a3:b3:c9:8b:9d:79:25:25:6f:49:6b:9f:6a:b4:23:dd:0f:
ce:d6:cb:c6:53:76:04:a9:f3:ca:df:05:ab:13:90:87:0a:fa:
23:94:d8:25:35:9e:c0:f9:91:4e:62:05:0d:19:2b:4a:36:05:
4c:33:9d:8b:19:f5:46:3a:d1:80:79:5f:8b:83:3d:69:96:b4:
8d:7b:c4:59:37:94:3d:af:46:eb:75:5c:0c:d8:39:fb:f4:cd:
50:35:55:b4:ad:84:e3:6c:7b:e3:b9:37:2d:cc:2e:d7:a7:66:
40:c5:af:b3:1b:28:62:5d:0b:c9:c7:d5:fa:de:a6:b6:1b:ea:
ce:db:01:56:ca:27:bc:ee:1f:a8:76:30:48:24:a0:96:4b:47:
fd:be:76:ce:17:80:07:34:ff:d3:03:3a:1e:de:63:29:33:5b:
dc:9f:9b:55:3f:ae:f2:82:36:b1:46:1e:03:3a:33:73:6d:00:
bb:12:42:ff:db:2a:70:ba:a7:b4:99:d2:0f:5c:43:90:9c:41:
2a:78:b7:ad:23:4b:e4:56:dc:a6:3d:59:70:f6:0c:d6:2c:41:
f9:aa:f5:60:0f:46:b6:c9:43:24:3f:27:63:98:1a:d5:71:c9:
70:c4:4b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:06 2026 by rpki-client