Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: HLCfSrpGxe2ICdqic6dH4XQrNfR9jy5ogM5yx4VjgB4=
Subject key identifier: 1B:BC:52:2C:1B:39:77:C1:EE:4F:D7:ED:44:B6:D5:6F:B1:91:1C:F5
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019E314DF702543604DF97F71C602CF806DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 1658
Signing time: Sat 16 May 2026 15:00:53 +0000
Manifest this update: Sat 16 May 2026 15:00:53 +0000
Manifest next update: Sun 17 May 2026 15:00:53 +0000
Files and hashes: 1: 0gIiALe6pz1IQicIRlap9JpEjvk.roa (hash: a8WIdauJpV7mniv+m0G3DWtScZS35ac1cb7lSAK0pD4=)
2: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: w4DX1w85wSFkXZaveXZDHJGEJEj5HAnX83Wc/1Lv1yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:f7:02:54:36:04:df:97:f7:1c:60:2c:f8:06:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: May 16 15:00:53 2026 GMT
Not After : May 17 15:00:53 2026 GMT
Subject: CN=1bbc522c1b3977c1ee4fd7ed44b6d56fb1911cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:eb:83:90:ae:9a:60:68:26:b7:4e:89:3e:
3d:98:c4:44:2b:9d:0c:fc:b8:bc:dc:c0:9a:32:66:
42:d0:11:37:f7:50:10:a5:10:48:4d:63:b9:12:5e:
6e:3e:04:2a:81:c1:67:1f:70:6a:e6:4d:de:b2:fd:
21:53:d7:11:be:08:e0:93:4e:49:eb:47:bd:65:9a:
46:0f:56:2f:7a:64:8c:ba:f3:94:c3:5c:3d:d9:75:
f2:f8:17:e0:b8:51:4b:e8:e7:ce:e3:1b:47:59:b3:
e4:4c:5a:95:e7:52:c8:66:d2:ea:cf:6f:6c:76:ec:
93:a9:d8:79:20:68:df:f2:03:88:2f:5d:e5:4b:69:
bb:0d:f9:95:01:0d:c0:7e:35:93:53:7d:e0:98:cf:
c0:23:a4:9d:47:5b:e2:ab:56:3f:12:39:27:c2:8f:
30:4f:fa:ae:db:1c:82:e9:fa:1f:2a:92:4f:07:86:
c0:23:af:e7:0f:bf:84:c8:a5:98:d7:22:34:22:88:
84:4f:55:d4:61:3d:86:35:5a:91:29:86:70:a8:6b:
a6:ad:6a:76:25:c7:7a:3b:a9:7f:ac:f7:ab:83:02:
91:0a:20:72:5e:5b:46:b4:9f:12:2e:f5:5f:f9:0c:
b2:4d:20:32:f0:68:f7:f3:64:5c:49:27:1f:23:e8:
c3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BC:52:2C:1B:39:77:C1:EE:4F:D7:ED:44:B6:D5:6F:B1:91:1C:F5
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:f5:24:4f:e5:fb:00:be:24:d8:5f:de:0d:5b:fe:ea:d6:cd:
ed:d4:aa:dc:78:98:d7:46:1f:d8:38:c1:06:5a:b9:63:0e:4b:
be:98:20:5e:90:a1:cd:b0:21:9e:58:47:2a:60:7c:0e:8b:bf:
1e:bf:62:84:1e:9e:9b:3b:54:97:fc:c1:63:20:57:fc:c0:1f:
2e:d0:a7:9a:d4:04:ef:45:49:bc:7c:9d:05:69:b1:82:4f:cb:
3e:99:4d:d1:67:83:41:50:d3:aa:93:5e:4d:01:33:87:53:95:
7d:38:96:12:17:00:6c:b6:5a:e3:e2:41:92:6d:70:08:b0:b6:
19:85:6b:d5:bd:c1:4b:c4:ca:11:73:92:30:88:39:ec:f0:e5:
7b:78:32:2e:69:43:39:89:74:bf:0b:ba:0c:7e:c1:ff:0a:04:
5f:f6:62:fb:5e:62:32:0b:d9:1c:66:91:28:25:89:e7:44:4e:
31:c5:a8:35:d2:99:60:79:aa:a1:54:db:ea:67:e8:58:0d:0a:
71:14:5b:3c:d7:46:e7:fb:ea:46:51:63:84:42:7a:2b:a4:6d:
97:5a:fc:aa:67:a4:88:35:b3:55:d9:59:7d:e2:fb:4b:d7:26:
36:d5:56:ec:20:ab:13:29:a2:fc:6b:0c:93:08:eb:a9:2e:13:
3f:b1:a6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:57:24 2026 by rpki-client