Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: Qp822+iClZdztq5PNZBRavifFSaPUyNN6YcCkilLqPk=
Subject key identifier: 00:47:D0:26:0C:F8:2B:A5:16:57:16:3E:5A:AC:42:26:91:FD:4C:11
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 019E50A21BA4020583DFBC205D54BB821DF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 040A
Signing time: Fri 22 May 2026 17:01:01 +0000
Manifest this update: Fri 22 May 2026 17:01:01 +0000
Manifest next update: Sat 23 May 2026 17:01:01 +0000
Files and hashes: 1: JdrrzB7a1qH9AHo1hI78HQ9vZMk.roa (hash: GTd8cCkoiW0FGNR73NG1lnLnp97HhBUrrNAzm3q5ilE=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: OJWc+J4cvSF/P0toOPkBUhSUQVqVfxOSUEQIPbwT1l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:50:a2:1b:a4:02:05:83:df:bc:20:5d:54:bb:82:1d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: May 22 17:01:01 2026 GMT
Not After : May 23 17:01:01 2026 GMT
Subject: CN=0047d0260cf82ba51657163e5aac422691fd4c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fa:43:25:a7:df:73:f6:8d:a0:09:d1:af:66:
4c:05:99:15:b5:9b:74:2f:30:0e:d8:3b:0d:2e:1f:
45:5e:e8:c0:39:60:13:e5:56:a8:a4:0b:ef:9f:3d:
59:9f:41:97:f4:2b:2f:3e:27:3c:a7:85:ba:dd:8f:
ac:c4:2b:98:3c:03:96:b6:74:f6:7d:c3:0a:67:b0:
82:01:e7:11:f5:90:79:f9:b4:43:02:c3:9d:32:cf:
d0:f5:e5:c7:a8:11:fd:08:ba:b9:9f:43:4a:c9:19:
7b:7a:2e:b9:45:50:3f:10:eb:6a:4f:29:bd:4c:05:
77:bb:86:a4:bf:09:94:11:a1:e3:4e:2c:61:81:36:
8b:6f:c2:2a:8a:64:1b:3f:29:20:12:c3:00:7f:c3:
4a:40:d2:9c:3a:b3:27:ae:0a:45:87:4a:81:67:2c:
b7:76:31:22:3a:22:1d:cf:b4:76:9f:e3:ba:00:99:
8f:a3:ac:45:0e:5e:3a:c8:5a:8a:26:2c:e7:26:06:
4a:f8:3a:41:e1:68:b4:68:02:f7:d3:61:79:33:30:
af:68:4d:54:cc:18:79:62:fc:21:ee:b5:64:02:54:
2e:ce:ac:42:3f:49:44:3e:a3:ef:a2:74:5c:1f:4d:
b7:b0:40:64:f3:16:ab:2d:fc:ae:b3:a7:26:08:38:
7e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:47:D0:26:0C:F8:2B:A5:16:57:16:3E:5A:AC:42:26:91:FD:4C:11
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:6a:d2:4e:df:55:9c:f5:49:1b:cc:df:fb:69:88:6c:3e:85:
0a:35:c2:3e:84:01:d7:04:23:37:56:e5:bf:51:cd:ab:80:22:
95:ac:5d:19:71:af:86:8b:cc:12:f6:9b:53:3b:74:f8:ca:0a:
7d:1c:24:43:d0:8f:b5:fb:1d:2f:08:6a:64:0f:fa:2b:e8:45:
6b:0e:36:73:cf:93:04:54:9b:ca:9d:31:4f:be:c8:d4:ef:99:
60:97:03:2c:6d:1a:3a:0f:a1:79:d1:ea:19:2e:ac:b0:bd:20:
34:54:fd:c3:30:ed:6d:0a:63:db:cf:0c:95:06:b9:19:ea:50:
6f:fd:30:79:3b:81:29:6a:68:31:34:02:fe:a1:77:7c:0a:29:
1b:11:4a:27:c8:53:9f:5a:cf:85:53:ba:1d:92:7b:1c:07:9e:
56:23:3d:a9:60:47:de:15:0b:99:e0:94:ae:85:fe:8f:9d:6a:
33:8c:ea:10:ee:75:55:f8:19:04:78:9b:41:36:44:ca:07:f7:
49:b5:5a:96:a7:6d:b6:27:f6:db:ab:d3:1f:aa:f1:00:9f:4a:
f0:90:a8:7d:23:7d:91:9d:29:15:71:5f:dd:bb:ae:f1:58:cf:
7f:a3:2b:ed:7b:c8:83:52:ab:5f:c6:63:93:07:d4:b1:bf:2f:
3f:5b:dc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 03:46:43 2026 by rpki-client