Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: t9omnIVXMdHTxGTKq1/l0ey/nD97N2l5JKSbCfjDWLc=
Subject key identifier: EE:81:33:FC:7F:D3:20:81:64:B8:0B:23:03:FA:F2:FA:72:B5:FF:24
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 019E31BC6E3BD28DD150D3AE7BD88FCC878D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 1914
Signing time: Sat 16 May 2026 17:01:32 +0000
Manifest this update: Sat 16 May 2026 17:01:32 +0000
Manifest next update: Sun 17 May 2026 17:01:32 +0000
Files and hashes: 1: 1-ZObGXZbr8QMqAx61fUCBd3oEIk.roa (hash: mNfBmy+QZavj44C/mg50P1ETt/knXxq4fEIaA8TAW1A=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: WWug2LzNBaMrU+hFtgKV3NxeBcXGXOHsbosotk0V4Wg=)
3: 5aSu5rDgohcAcFRBlVeL4KQf-Bc.roa (hash: TBrAPV4bOwpXI3ikK/+R0NLpPd2CyHMsQiSsoHb0Hng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:bc:6e:3b:d2:8d:d1:50:d3:ae:7b:d8:8f:cc:87:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: May 16 17:01:32 2026 GMT
Not After : May 17 17:01:32 2026 GMT
Subject: CN=ee8133fc7fd3208164b80b2303faf2fa72b5ff24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5a:0d:95:73:4e:bf:2b:97:59:2b:4b:73:b4:
1a:7f:2b:f0:35:34:5c:4e:27:0a:18:f6:11:6a:32:
39:18:e3:09:30:f8:2f:5f:50:43:f2:15:37:f3:4c:
84:7f:84:41:3d:7a:6b:9a:85:40:e4:c7:e8:0e:fd:
d0:d2:67:fe:f0:33:5d:68:fc:78:e8:35:f5:75:84:
85:cc:89:d3:b7:f8:1e:9d:b9:e4:76:7a:81:f9:d6:
c7:16:86:42:73:f1:e6:c8:d7:e6:61:d6:8e:44:9d:
4c:7d:dc:ab:0e:d6:df:52:d3:7c:ae:f9:16:fd:32:
56:6f:c2:31:bb:a4:77:14:55:1e:19:40:a7:80:ec:
18:bc:ed:0e:d9:4e:90:0c:ed:82:92:5e:b7:49:84:
2b:0f:2c:7b:46:a4:50:00:ca:7d:40:67:9a:d4:ed:
d6:fb:af:76:bc:9d:26:5a:dd:62:d0:63:a0:01:1e:
42:87:1e:53:1e:a9:f7:c9:22:53:41:32:e8:d3:ae:
ee:6d:85:4e:73:28:1c:c2:75:c2:58:6a:2f:20:55:
a6:ad:8a:cd:82:fa:c6:6d:19:29:ab:86:a2:fc:5d:
ce:53:f9:8a:ac:cf:92:8d:50:a9:96:94:7f:40:d6:
1a:ae:57:c1:25:20:0d:b5:5e:8f:49:e4:bd:15:55:
d9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:81:33:FC:7F:D3:20:81:64:B8:0B:23:03:FA:F2:FA:72:B5:FF:24
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:35:8f:f4:d9:51:3f:4e:93:d3:f3:be:05:d6:c9:66:95:10:
f5:24:a7:94:0d:fd:19:d8:d2:35:dd:7f:18:0e:70:d9:63:d2:
6b:bf:44:bb:e4:5e:3f:40:1e:e0:63:e0:d7:44:76:54:2e:6d:
a7:9e:23:fa:73:65:5f:3a:4b:bf:af:08:9d:0f:32:02:be:2c:
f4:dc:ae:37:ad:55:4b:dd:fc:71:2d:f5:67:bb:f3:fc:73:3f:
47:77:32:74:c3:3c:a0:32:bc:33:aa:5c:7e:f9:99:2c:d1:96:
d7:22:23:5a:77:b3:be:da:de:f5:92:1b:8e:47:e0:4d:fe:cf:
16:e0:0b:21:25:e9:6c:ba:81:72:69:69:b8:27:00:d8:e5:c4:
94:e9:af:d9:f0:41:b8:94:56:e2:87:3b:99:39:89:63:f9:81:
fc:2c:76:02:eb:13:b8:64:e9:12:7a:29:c1:a6:3b:1c:17:80:
d6:a3:3f:8d:41:c2:5a:54:92:7e:b5:79:e9:11:e2:f4:1c:a0:
9d:59:0d:18:df:f7:4e:e3:7b:0a:52:c2:5a:71:42:7c:dc:88:
e4:22:80:6c:db:b6:c2:d3:8b:3f:72:a0:57:d7:55:cf:b9:3c:
af:22:4f:ca:b1:ac:25:e0:75:55:8c:99:dd:84:31:d2:d9:88:
c6:0c:9f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:09 2026 by rpki-client