Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: La1D2UHPjTj5gcKQ8+aogxicxGpP38AbR9hRGFGMn88=
Subject key identifier: 25:D4:C5:47:F3:BD:31:2F:30:25:DA:4F:49:56:2E:BC:DF:80:7C:C9
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019D382E7D7D3B97AC5B1E3A72D498DC4C2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 15D7
Signing time: Sun 29 Mar 2026 06:01:04 +0000
Manifest this update: Sun 29 Mar 2026 06:01:04 +0000
Manifest next update: Mon 30 Mar 2026 06:01:04 +0000
Files and hashes: 1: 0gIiALe6pz1IQicIRlap9JpEjvk.roa (hash: a8WIdauJpV7mniv+m0G3DWtScZS35ac1cb7lSAK0pD4=)
2: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: HOT1eRhOCR7giOOni1XYXhKdFnfSsyPJUwCZUa1cXQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:7d:7d:3b:97:ac:5b:1e:3a:72:d4:98:dc:4c:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Mar 29 06:01:04 2026 GMT
Not After : Mar 30 06:01:04 2026 GMT
Subject: CN=25d4c547f3bd312f3025da4f49562ebcdf807cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b4:66:b3:4e:a4:55:23:de:62:46:e4:41:1c:
d6:ee:bc:85:9a:42:6a:94:4c:b2:33:a1:d4:36:68:
f1:7f:43:48:05:15:32:0e:94:55:d4:43:ca:9b:0b:
95:28:9a:47:17:f5:63:b0:d7:2c:88:cc:00:37:f3:
28:67:4d:3f:07:df:9c:0a:81:d0:22:68:c3:86:bf:
75:c8:fc:e5:1b:3e:c4:27:30:33:95:e2:41:44:d9:
7b:78:53:32:4e:e7:1e:31:25:84:db:f0:ce:99:96:
38:b5:80:1c:4d:40:26:73:b6:6b:bd:7f:e3:9e:87:
db:f9:0f:ba:aa:75:d6:3e:31:61:00:05:73:bc:6f:
e9:f0:0a:99:b2:55:43:77:50:b3:ec:4c:32:2e:12:
6b:97:c4:3f:45:93:9d:6e:43:8f:97:bf:4e:44:eb:
d0:29:34:47:03:74:a4:39:35:ab:cc:0a:30:03:79:
cd:c7:61:11:f9:1e:39:c1:64:9c:8f:31:ab:5a:a1:
d6:a9:1f:3d:fa:76:c8:85:90:2f:79:14:22:aa:f5:
b9:1a:35:02:f2:11:e9:ce:08:c2:e0:cd:ea:36:61:
d9:4e:04:d0:30:f1:42:e1:5d:8f:04:b5:c0:58:04:
03:d0:ec:e1:eb:d9:2f:25:d7:7f:c4:fd:aa:b8:75:
a6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D4:C5:47:F3:BD:31:2F:30:25:DA:4F:49:56:2E:BC:DF:80:7C:C9
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e0:49:17:3a:fe:ed:3e:78:a6:e9:cb:97:17:e0:b5:d2:78:
8d:0d:c1:7d:4d:a2:34:d1:d2:de:cb:0f:24:1c:08:8e:5d:9c:
e5:f3:cd:e1:38:b2:9b:75:d9:f4:e4:3f:a2:15:c2:c7:a2:23:
29:88:10:94:44:46:b7:63:44:fb:c0:fb:84:dd:18:e8:75:bb:
d0:24:18:2d:a2:6e:47:12:b1:9f:40:cb:98:b1:8b:83:70:7c:
82:52:78:1e:51:d8:32:df:2e:e0:48:75:cb:86:73:3c:3a:5c:
86:e4:d0:60:d2:88:d4:21:9e:3b:03:8a:96:98:36:ff:35:8f:
83:01:d7:bb:47:91:21:d7:1f:5f:24:2b:a1:a2:5e:d3:1c:56:
5e:15:d7:fd:ab:12:eb:26:a0:8a:08:89:50:3c:02:00:a7:01:
53:98:3c:a8:c6:14:bd:1f:89:d0:78:57:17:9e:51:93:6e:c4:
af:96:a5:d7:a4:60:56:27:26:79:9a:55:4b:a4:9a:90:43:91:
da:ca:48:41:39:cd:45:59:67:ff:0d:11:18:76:bf:d9:42:76:
88:50:b4:97:8c:56:47:62:b5:b5:43:6a:5d:91:ae:36:ef:c7:
aa:5f:17:fe:43:37:b4:aa:ea:74:2e:00:e8:27:34:aa:9b:a2:
ff:7f:5c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:55:22 2026 by rpki-client