Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: jnv1id7VGiUGFUZibMbQgK1wayxDEdYjf/oUiHQz1rw=
Subject key identifier: 2C:50:71:67:22:1A:09:55:E6:59:84:B8:80:9C:38:05:15:BE:95:C4
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019F18D666263EB9557B56C89D1F6C3DC661
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 1243
Signing time: Tue 30 Jun 2026 14:02:11 +0000
Manifest this update: Tue 30 Jun 2026 14:02:11 +0000
Manifest next update: Wed 01 Jul 2026 14:02:11 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: 8B0T0a6H9Oo+PS2HAZFQyl7frXTY9hILuSIxRvZhvN4=)
2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:66:26:3e:b9:55:7b:56:c8:9d:1f:6c:3d:c6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Jun 30 14:02:11 2026 GMT
Not After : Jul 1 14:02:11 2026 GMT
Subject: CN=2c507167221a0955e65984b8809c380515be95c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f5:14:da:16:1f:d3:6c:43:3c:f3:24:54:ef:
e0:ac:a5:e4:d8:e8:58:01:e8:f4:06:8c:5a:df:72:
67:0a:31:99:c4:93:0b:88:b5:9f:8a:49:01:e3:72:
56:d0:61:a0:da:c5:1a:f4:a5:b1:23:2a:1c:a1:41:
2d:f0:32:d5:85:2a:53:ce:4e:45:5e:3d:08:37:78:
29:4f:d0:8b:6c:42:a6:87:45:32:2e:b1:48:ed:f5:
58:02:e5:0d:78:67:6c:28:59:03:0f:4e:30:44:7f:
3a:59:78:bc:43:d0:40:26:78:ec:57:b5:1a:79:43:
7f:66:8f:f6:bd:c4:f0:64:0b:fc:53:a7:1a:f2:86:
f9:02:6e:88:63:de:df:40:d2:ac:07:bd:3a:df:fa:
8d:11:19:47:aa:53:24:8d:98:35:44:73:69:42:21:
c0:67:1a:71:ea:ce:73:a8:85:59:fc:cf:a3:e6:32:
19:d6:bf:6c:4f:67:50:25:02:0e:15:74:8d:55:50:
15:b9:62:de:4b:5a:13:d7:af:e9:f1:27:a4:bf:00:
13:47:60:54:71:a9:bc:4e:c1:a3:6e:94:d5:d0:73:
14:20:3f:b2:2d:bf:8d:b2:02:59:60:44:66:d1:17:
93:1e:b0:bc:02:56:11:b6:b1:8e:24:c1:26:25:e0:
40:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:50:71:67:22:1A:09:55:E6:59:84:B8:80:9C:38:05:15:BE:95:C4
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:96:d9:83:f3:a8:9b:9e:f2:26:66:db:78:95:e2:f3:20:28:
3c:60:30:07:90:3b:f4:f9:b7:a7:4b:13:7e:24:69:b3:bf:66:
ff:f4:3f:62:16:07:1f:8b:5d:32:48:1d:62:dd:24:e5:21:55:
41:af:74:cf:ee:e6:53:6d:6f:56:38:d3:d6:f9:df:2e:c1:d9:
cd:14:b5:ae:21:3b:ec:9a:35:bf:9c:f1:de:c9:1c:fa:2c:9a:
ed:70:ed:0d:f2:05:aa:3e:43:ac:12:98:c1:35:0c:38:2a:dd:
83:b6:57:0f:d8:a7:c0:79:0f:a1:4b:58:c8:52:ef:9b:fc:6b:
f3:65:dd:e7:e3:e7:05:bd:64:4a:b3:3d:3a:16:90:a3:57:f4:
88:24:61:12:e5:6e:3a:ac:c3:b8:31:a9:7b:e8:71:5d:f1:c2:
84:78:fe:d0:f6:23:21:ed:44:b4:ce:b7:99:25:2c:39:82:17:
42:64:c0:65:ae:83:ea:e8:7f:2f:e9:87:58:51:1d:14:7e:13:
7a:5a:7b:3d:17:ba:98:bc:c4:b0:b4:63:d2:c7:3c:97:88:0b:
36:ad:00:b3:8f:60:e0:2c:04:d3:78:bf:f1:ef:94:5d:44:7a:
84:c8:95:b6:93:b8:4e:1d:4e:30:85:e0:eb:7e:a2:cb:62:23:
5e:a9:d7:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8Y1mYmPrlVe1bInR9sPcZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyODM0NDI5Nzc1ZTY1NTVlNTc0MjQ5MjI4NjI1NGIxZGE5
ZjE5MDMwHhcNMjYwNjMwMTQwMjExWhcNMjYwNzAxMTQwMjExWjAzMTEwLwYDVQQD
EygyYzUwNzE2NzIyMWEwOTU1ZTY1OTg0Yjg4MDljMzgwNTE1YmU5NWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvUU2hYf02xDPPMkVO/grKXk2OhY
Aej0Boxa33JnCjGZxJMLiLWfikkB43JW0GGg2sUa9KWxIyocoUEt8DLVhSpTzk5F
Xj0IN3gpT9CLbEKmh0UyLrFI7fVYAuUNeGdsKFkDD04wRH86WXi8Q9BAJnjsV7Ua
eUN/Zo/2vcTwZAv8U6ca8ob5Am6IY97fQNKsB7063/qNERlHqlMkjZg1RHNpQiHA
Zxpx6s5zqIVZ/M+j5jIZ1r9sT2dQJQIOFXSNVVAVuWLeS1oT16/p8SekvwATR2BU
cam8TsGjbpTV0HMUID+yLb+NsgJZYERm0ReTHrC8AlYRtrGOJMEmJeBALQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCxQcWciGglV5lmEuICcOAUVvpXEMB8GA1UdIwQY
MBaAFOKDRCl3XmVV5XQkkihiVLHanxkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2Mt
ZWE5NzY2NWMxM2RmLzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2MtZWE5NzY2NWMxM2Rm
LzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5bZg/Oo
m57yJmbbeJXi8yAoPGAwB5A79Pm3p0sTfiRps79m//Q/YhYHH4tdMkgdYt0k5SFV
Qa90z+7mU21vVjjT1vnfLsHZzRS1riE77Jo1v5zx3skc+iya7XDtDfIFqj5DrBKY
wTUMOCrdg7ZXD9inwHkPoUtYyFLvm/xr82Xd5+PnBb1kSrM9OhaQo1f0iCRhEuVu
OqzDuDGpe+hxXfHChHj+0PYjIe1EtM63mSUsOYIXQmTAZa6D6uh/L+mHWFEdFH4T
elp7PRe6mLzEsLRj0sc8l4gLNq0As49g4CwE03i/8e+UXUR6hMiVtpO4Th1OMIXg
636iy2IjXqnXFQ==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:09:54 2026 by rpki-client