Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier: I25jFOpkXVZgigL5mVcyPAQnUkhaSez+pXovj38gcpc=
Subject key identifier: C9:93:90:CC:8B:B0:AD:6B:D5:3F:28:D1:87:6A:0C:18:9F:CA:7F:DA
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial: 019D386569908078DC96F02204793D309AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number: 0BE9
Signing time: Sun 29 Mar 2026 07:01:03 +0000
Manifest this update: Sun 29 Mar 2026 07:01:03 +0000
Manifest next update: Mon 30 Mar 2026 07:01:03 +0000
Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: sT6Y8kxRXuffS5fffGqr+wW3XMFMhUTNUNEjqfUa/7s=)
2: _-JfME-Erck4pkvS4WQAD8N3srk.roa (hash: QrEZHXMbaydoz+Hi0SYY4JVGJuxwhF6iX/ilfGhMhOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:69:90:80:78:dc:96:f0:22:04:79:3d:30:9a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Validity
Not Before: Mar 29 07:01:03 2026 GMT
Not After : Mar 30 07:01:03 2026 GMT
Subject: CN=c99390cc8bb0ad6bd53f28d1876a0c189fca7fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5e:89:df:92:f6:84:5a:1e:2a:eb:f3:19:6f:
4d:69:72:5b:2d:76:c9:8d:cc:05:0a:dc:9d:58:24:
e7:3f:2f:df:1d:34:62:d3:a1:f0:77:30:0d:6b:19:
41:a0:9a:aa:75:6c:c5:75:e9:35:31:6b:78:9d:57:
4d:3d:8e:88:9d:7c:ec:b3:29:15:2a:8b:a3:52:d2:
07:54:15:e2:7c:b8:45:f8:8e:d0:c8:49:9e:d2:6d:
09:e2:70:a1:db:db:64:1b:b5:02:ba:e0:a3:0c:5b:
a6:df:42:8b:04:2b:15:d6:c0:82:cc:35:c4:98:16:
ed:8c:fb:d3:f3:08:0a:88:f3:1e:a3:7b:17:30:41:
5a:b5:fd:68:e3:84:cb:9c:f4:2d:b2:a2:e6:77:8a:
52:4c:70:74:fa:59:08:54:79:6f:cc:b2:b2:96:83:
70:5c:a5:40:f2:26:24:13:3d:a9:6e:7b:a2:94:97:
00:8b:86:e7:79:9d:08:a1:49:88:e4:98:d7:ea:81:
bb:f2:0f:a8:56:5a:33:86:f9:9d:28:31:fd:77:cf:
f2:11:bd:0b:42:69:59:c2:8e:c5:63:ac:21:6b:d3:
79:06:62:48:cc:41:69:1f:0f:f4:0f:9a:7a:ab:d5:
f0:58:cf:68:7e:ef:8b:f6:98:92:e9:67:46:f1:5f:
a3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:93:90:CC:8B:B0:AD:6B:D5:3F:28:D1:87:6A:0C:18:9F:CA:7F:DA
X509v3 Authority Key Identifier:
keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:6a:a8:2d:53:b1:bc:a4:28:e0:31:8e:fa:67:42:66:bc:d7:
8b:39:45:91:7a:16:92:9d:13:7d:08:17:b2:d5:6c:34:a6:5b:
99:28:ca:95:4e:22:78:af:d8:25:8d:95:c1:b0:69:f8:8e:68:
e6:cf:20:34:33:82:c2:4c:eb:c3:1a:36:5f:4a:17:7c:7e:50:
64:17:09:76:30:5b:c5:7f:67:10:86:70:d7:65:1a:9e:97:79:
20:e3:5c:ae:91:fd:18:95:58:23:dc:79:86:a5:42:a4:6a:62:
68:3d:7f:ba:66:1d:7f:b6:14:b2:24:89:e3:87:99:58:4a:aa:
99:d0:01:fa:24:9d:07:4e:53:5b:ae:40:ce:d3:20:53:14:a1:
16:24:0c:16:b4:2c:77:d6:42:09:f0:37:8b:2e:b1:ec:df:fc:
cf:77:39:af:d0:7d:42:cf:00:a3:f1:0f:c4:93:63:25:53:2e:
7b:e4:34:be:89:2c:44:ec:ad:df:20:c5:e4:9f:a8:75:16:5b:
b7:e0:5d:89:b8:d1:c9:46:3a:73:e6:d1:ab:c9:83:f9:14:ee:
aa:4e:5f:42:7e:d0:36:63:cf:ef:21:9a:1a:04:e6:fd:13:9a:
bb:4d:0b:6b:d3:9b:86:6b:31:fe:90:b7:17:36:01:61:16:6a:
03:53:83:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZWmQgHjclvAiBHk9MJr3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNDFjODViNDc0ZThiNmMwMDg5MWQ5NTQxMjRmZjBjODEy
MDBkOGMwHhcNMjYwMzI5MDcwMTAzWhcNMjYwMzMwMDcwMTAzWjAzMTEwLwYDVQQD
EyhjOTkzOTBjYzhiYjBhZDZiZDUzZjI4ZDE4NzZhMGMxODlmY2E3ZmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV6J35L2hFoeKuvzGW9NaXJbLXbJ
jcwFCtydWCTnPy/fHTRi06HwdzANaxlBoJqqdWzFdek1MWt4nVdNPY6InXzssykV
KoujUtIHVBXifLhF+I7QyEme0m0J4nCh29tkG7UCuuCjDFum30KLBCsV1sCCzDXE
mBbtjPvT8wgKiPMeo3sXMEFatf1o44TLnPQtsqLmd4pSTHB0+lkIVHlvzLKyloNw
XKVA8iYkEz2pbnuilJcAi4bneZ0IoUmI5JjX6oG78g+oVlozhvmdKDH9d8/yEb0L
QmlZwo7FY6wha9N5BmJIzEFpHw/0D5p6q9XwWM9ofu+L9piS6WdG8V+jUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMmTkMyLsK1r1T8o0YdqDBifyn/aMB8GA1UdIwQY
MBaAFOBByFtHTotsAIkdlUEk/wyBIA2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMt
NDZiYjNmYTI4YjAwLzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMtNDZiYjNmYTI4YjAw
LzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMWqoLVOx
vKQo4DGO+mdCZrzXizlFkXoWkp0TfQgXstVsNKZbmSjKlU4ieK/YJY2VwbBp+I5o
5s8gNDOCwkzrwxo2X0oXfH5QZBcJdjBbxX9nEIZw12Uanpd5IONcrpH9GJVYI9x5
hqVCpGpiaD1/umYdf7YUsiSJ44eZWEqqmdAB+iSdB05TW65AztMgUxShFiQMFrQs
d9ZCCfA3iy6x7N/8z3c5r9B9Qs8Ao/EPxJNjJVMue+Q0voksROyt3yDF5J+odRZb
t+BdibjRyUY6c+bRq8mD+RTuqk5fQn7QNmPP7yGaGgTm/ROau00La9Obhmsx/pC3
FzYBYRZqA1ODAQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:03:05 2026 by rpki-client