Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: 9r5FWHNqkSEbS/uYICh2suVWn0wjHCAWyeJPxGQKRZM=
Subject key identifier: 22:8B:E2:D4:D2:3A:97:AA:E0:29:BF:4F:54:CA:10:1D:EA:50:83:D9
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019E311789B554D8E751BA0CA0D20D611910
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 11CB
Signing time: Sat 16 May 2026 14:01:26 +0000
Manifest this update: Sat 16 May 2026 14:01:26 +0000
Manifest next update: Sun 17 May 2026 14:01:26 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: g8DFcIf9cV5nu8U8bWckpPee08ihLxJ86Ih/h8hCih0=)
2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:89:b5:54:d8:e7:51:ba:0c:a0:d2:0d:61:19:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: May 16 14:01:26 2026 GMT
Not After : May 17 14:01:26 2026 GMT
Subject: CN=228be2d4d23a97aae029bf4f54ca101dea5083d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f1:68:54:c2:84:2c:00:0a:07:82:fe:be:06:
b4:15:ef:76:7c:0a:4b:0e:1a:96:59:79:7a:9a:95:
f1:90:66:d3:c6:4e:02:46:2a:90:17:3e:97:2c:99:
67:90:0a:84:09:85:fc:9e:c1:2b:ff:76:fa:a0:e4:
12:71:dd:f1:94:71:4b:79:c5:4a:26:99:c8:b2:38:
20:45:56:9b:4b:c8:90:8d:27:3f:92:9a:d3:14:f4:
70:87:e1:c3:08:3b:db:70:3b:54:81:9f:fa:a3:6d:
97:85:80:e0:cc:e6:53:d5:b1:12:c3:d5:83:24:e8:
a2:cf:4e:88:53:b4:83:da:df:11:d1:ec:a1:ce:46:
58:74:af:38:4c:e0:94:3d:ac:ff:91:0c:e0:ed:90:
37:81:bd:ec:9e:72:c2:a7:19:1c:31:f8:bd:c7:52:
2d:3f:b5:19:87:8b:c7:15:b4:8c:58:ab:f1:58:79:
ae:f3:ea:49:8e:e7:9c:c4:1c:cb:fb:f6:5c:26:ff:
67:31:df:54:44:4b:b4:7c:d9:ce:df:4d:f1:bc:f1:
f1:9e:53:9b:db:ed:ef:75:61:13:b6:98:80:96:7b:
23:16:8e:27:f6:70:d0:ac:8d:85:c3:e1:8c:bf:74:
73:cb:d3:5b:55:54:d1:ea:56:e0:96:ac:4d:8e:71:
0b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8B:E2:D4:D2:3A:97:AA:E0:29:BF:4F:54:CA:10:1D:EA:50:83:D9
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:77:e7:19:cc:a1:18:cc:a3:57:e0:f7:0c:b4:88:08:c1:e8:
ad:5c:62:a7:7c:4b:cb:c2:6e:72:ea:f3:f5:19:91:2e:4f:2a:
3c:5f:aa:5f:e7:a1:24:af:ed:0c:9e:ea:a3:be:d7:82:91:19:
d6:8b:00:45:08:66:95:65:0a:e4:83:d3:33:be:f9:7b:3c:a0:
b0:8e:89:20:1e:88:86:12:c5:2e:ea:a4:58:0d:42:ac:60:cb:
4d:8a:7d:8f:87:2a:81:80:1e:50:a1:94:b7:81:56:af:25:29:
6f:76:45:67:2a:3a:60:8d:89:18:5e:1b:99:5a:65:01:2d:b3:
e3:68:a3:ab:a0:7e:9c:59:a8:4d:2d:1f:78:d3:bd:aa:1a:b4:
5c:d9:32:0b:da:04:07:0f:46:72:81:4d:3c:35:ac:15:4a:f9:
38:76:ac:cd:ef:78:51:aa:71:5b:58:7e:d1:51:88:0b:0d:51:
3d:09:b3:54:81:84:4d:c2:1a:59:eb:79:ca:92:94:07:50:6e:
ad:c9:62:f7:10:77:7e:31:37:84:30:83:0b:fe:8c:1a:27:7d:
fb:6c:c8:99:c9:37:9e:c8:dd:13:6d:92:ba:84:6b:b4:c1:62:
15:36:65:47:fe:7e:ca:c5:5b:5f:32:d7:d6:4c:47:b0:e3:06:
10:66:63:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:36:23 2026 by rpki-client