Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: WRQdLShwBmcqO/HTKa7gjsmxKyslD5URgEJn8+u7bTY=
Subject key identifier: 27:4B:33:0D:BC:EB:35:FE:3F:77:44:21:30:58:49:73:85:BE:89:77
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 019F1830738407BCD0F51319A529422DF6E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 1645
Signing time: Tue 30 Jun 2026 11:00:56 +0000
Manifest this update: Tue 30 Jun 2026 11:00:56 +0000
Manifest next update: Wed 01 Jul 2026 11:00:56 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: uU6qW3yOyF7+PkeJbkG6zbw/U5hu5rlJhuhze/RHWNE=)
2: WlHlPJ2Yx-QYEFNJTd1fZunOqeI.roa (hash: V3F5Ix6QWwGrgFg4N8xfN4dbqz/bAEkV9NWs0dFeZ8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:73:84:07:bc:d0:f5:13:19:a5:29:42:2d:f6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jun 30 11:00:56 2026 GMT
Not After : Jul 1 11:00:56 2026 GMT
Subject: CN=274b330dbceb35fe3f7744213058497385be8977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e0:e6:d0:66:de:53:7e:9e:d7:cd:ce:e4:cb:
b3:6e:0e:2e:5d:24:23:52:e0:9a:ac:76:a7:a4:44:
6d:d6:0d:7c:a8:d5:bf:d3:69:c1:45:9b:79:7e:e4:
82:8c:ec:8c:ad:5b:c6:c2:c2:a2:3b:3b:d6:5a:01:
ca:f2:57:06:68:6e:66:8b:b4:0a:a2:a6:a6:e0:50:
04:52:d7:a5:8a:5d:19:db:34:d0:20:a4:85:8b:55:
09:8b:9a:86:a9:9b:16:6a:fb:79:fe:2d:b4:fc:db:
46:31:d9:1d:da:48:13:c3:7a:7f:56:8f:ed:ce:ce:
ae:f4:37:4c:8c:0b:65:2f:94:37:c2:a0:9b:04:0a:
24:fd:c7:5e:f7:5c:a6:30:2f:32:cc:7b:a3:ae:39:
09:2c:f3:b9:36:e9:eb:03:e8:ef:a6:df:5e:7b:fe:
d9:35:32:5b:49:98:8b:fc:70:0a:d9:2b:83:e4:64:
66:6b:b8:f5:71:8d:3c:17:04:10:d5:1f:ee:f4:fb:
2d:4e:14:0f:90:3c:6f:87:67:e8:5a:5c:7f:7f:de:
a4:eb:ef:54:2c:46:88:34:1b:4d:18:c3:d9:28:01:
09:e8:5f:32:d0:58:e8:c5:a8:61:f9:40:bd:32:b7:
fd:bb:76:82:4a:4f:de:f2:b7:e1:23:7b:ff:f8:93:
9d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4B:33:0D:BC:EB:35:FE:3F:77:44:21:30:58:49:73:85:BE:89:77
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:5d:5d:ce:21:1e:60:69:f4:9c:4d:8c:c8:b0:98:05:e2:14:
ee:76:32:1c:02:c1:72:e7:34:32:d3:f5:b3:aa:27:3e:62:dc:
a1:f1:6b:a0:d4:f0:24:92:65:71:1a:09:fb:36:35:47:f4:7c:
07:0b:6e:0a:1b:d6:6c:00:bb:85:03:b1:2a:17:16:be:ea:c6:
e3:84:c0:c8:e0:f7:bd:d2:0c:c5:be:f3:fd:6b:54:6c:bf:5f:
2b:e1:30:d3:ff:2c:d2:f2:f7:6d:55:85:4c:3f:fd:33:a3:c3:
ed:22:22:4e:c5:91:b3:12:9e:74:39:66:3a:d5:e4:58:02:60:
5b:56:dc:77:3c:2d:2e:8b:b8:82:69:a2:a1:73:e3:25:5e:a2:
cf:b7:9d:4e:ae:3b:be:ae:20:57:35:fc:2a:c2:84:e4:f7:d9:
12:62:74:4f:53:2f:56:be:6f:ed:d6:f3:6f:bf:15:8c:2c:17:
26:a0:47:32:8a:91:01:86:15:fe:a8:1e:b2:7d:b0:bc:7a:8e:
6b:55:2f:37:88:a1:a5:6c:a0:ae:43:09:72:dc:19:8e:9e:d7:
77:b0:df:84:26:71:7f:b5:43:1f:fb:91:d1:01:1e:b5:4c:3c:
c7:6f:30:f9:d2:4d:41:6e:d2:16:32:be:b6:1d:d2:e0:35:84:
16:9f:0c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:30:23 2026 by rpki-client