Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: LvwipZ7fqwSfCDVvsvVqVC8C2Azad4N6q1XEjtwd9qo=
Subject key identifier: 64:9D:C8:1D:E8:07:AC:D6:6A:F9:F7:14:FD:CF:0D:01:47:97:45:7D
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 019F1942EE17AE8F0BCAFEA05F39A8D8BC20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 0CE2
Signing time: Tue 30 Jun 2026 16:00:44 +0000
Manifest this update: Tue 30 Jun 2026 16:00:44 +0000
Manifest next update: Wed 01 Jul 2026 16:00:44 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: RBiKbQ63NXPT/D/pNqJOoumcOkdoIXghjixDKlCJpZ0=)
2: _-JfME-Erck4pkvS4WQAD8N3srk.roa (hash: QrEZHXMbaydoz+Hi0SYY4JVGJuxwhF6iX/ilfGhMhOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:42:ee:17:ae:8f:0b:ca:fe:a0:5f:39:a8:d8:bc:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Jun 30 16:00:44 2026 GMT
Not After : Jul 1 16:00:44 2026 GMT
Subject: CN=649dc81de807acd66af9f714fdcf0d014797457d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:61:9f:00:1f:14:48:91:5c:67:cd:67:7e:d4:
44:a1:71:dd:73:72:55:45:62:61:37:94:cc:80:21:
52:f7:5b:61:8d:7c:6a:0b:4c:7c:a2:47:eb:4d:50:
6d:a6:12:c7:69:cb:d0:85:f5:59:bb:46:83:01:70:
6e:67:49:5f:1a:8b:60:d0:f9:bf:db:b4:f0:be:ae:
78:b3:68:26:ab:a4:42:10:75:ad:85:0f:c3:56:2a:
a7:46:07:1f:b5:80:c9:1b:e5:91:c9:fd:63:1b:ab:
41:60:ec:6d:35:5f:a7:15:ae:58:5e:65:11:bc:31:
55:fd:54:49:78:8f:e0:96:59:6e:82:86:ec:cc:2b:
e7:4b:d4:42:5e:31:a4:c5:83:40:3d:3e:a8:57:00:
72:7f:d9:e4:06:b6:a3:eb:1e:02:ca:f3:7f:b5:a1:
fd:53:73:74:7f:ae:64:24:f6:14:36:3d:70:32:19:
47:d2:17:6c:e4:b8:ad:5b:65:4f:d5:e6:34:b0:de:
01:0f:bc:3f:53:ea:81:f6:97:8e:af:0f:0b:ab:4e:
8e:77:31:1e:51:5c:fb:40:8c:67:13:bb:54:f5:ee:
40:a7:c8:f8:90:2f:48:69:39:67:af:a7:b0:58:01:
67:8d:f2:de:0f:9d:bb:01:ef:0b:65:68:eb:95:1e:
e9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9D:C8:1D:E8:07:AC:D6:6A:F9:F7:14:FD:CF:0D:01:47:97:45:7D
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f3:4f:fe:e0:7b:9d:5d:56:1b:52:52:ed:e8:82:76:d3:5b:
80:9e:a2:8f:fc:a2:3f:a5:3b:0d:1e:7b:f8:7d:d2:91:3c:b9:
d0:47:be:c1:37:c1:21:00:1f:83:c3:30:05:1e:da:72:03:e5:
4f:55:76:94:2b:ae:45:07:e9:67:2c:ef:98:50:0e:68:3a:e2:
14:44:7a:5b:ca:1e:c2:b0:eb:36:b1:8b:5b:00:99:08:35:63:
e9:c1:db:dc:65:85:68:d5:2b:e6:e5:5a:06:bb:2b:f2:7c:20:
cd:30:4c:1e:ba:51:c4:e7:66:8b:db:c3:33:7a:f3:97:90:cd:
cf:f9:71:65:f1:f1:65:2f:cd:93:45:b3:bf:2d:31:47:c0:0e:
94:83:01:c5:16:81:23:0c:db:29:98:b4:b2:7c:21:46:35:73:
9a:c3:31:c5:ba:e9:79:ae:b5:1f:7e:ce:76:b9:a5:a6:26:45:
21:b6:60:62:23:16:9f:33:9a:ac:3b:d3:a0:8c:1e:34:9c:0e:
bb:ed:0f:86:de:c6:5c:08:2c:83:5f:ec:04:a4:41:19:ba:c2:
0c:d1:2b:a4:84:60:af:3b:c5:5f:19:d2:94:1e:24:f7:e9:6c:
52:51:b5:23:43:f0:74:35:ca:73:26:a6:14:af:52:a8:db:9e:
28:e8:9e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:16:45 2026 by rpki-client