Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: 1535Ic19A2FiqUT0e7bMmNQs+YIcllHLX/LNmlZjTHI=
Subject key identifier: 49:C1:F4:EF:B7:4D:44:31:B9:E3:2C:43:9A:26:D3:4A:8F:ED:08:9D
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019D37F72BA4DCBE74B1A7BBEE56549531B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 114A
Signing time: Sun 29 Mar 2026 05:00:38 +0000
Manifest this update: Sun 29 Mar 2026 05:00:38 +0000
Manifest next update: Mon 30 Mar 2026 05:00:38 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: h5zNWMuCqPz2aInY2OpQs835xESav9XDURKR//b53EM=)
2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:2b:a4:dc:be:74:b1:a7:bb:ee:56:54:95:31:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Mar 29 05:00:38 2026 GMT
Not After : Mar 30 05:00:38 2026 GMT
Subject: CN=49c1f4efb74d4431b9e32c439a26d34a8fed089d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:19:6d:c3:5d:4e:d3:8b:1f:5b:bc:4a:fe:
2b:f6:7a:13:8a:90:39:81:93:e5:1d:60:22:69:79:
f5:7f:51:90:a7:b5:4e:49:fe:df:b7:05:cc:8f:1c:
3c:22:c0:0a:ee:15:e9:31:a7:81:03:72:e7:db:83:
eb:a0:74:79:68:4b:29:84:26:20:cb:85:a6:e1:50:
9b:58:9f:a9:c2:c9:2d:b3:d7:b9:4c:c5:ca:27:bd:
2f:ef:a7:d7:2c:e2:fd:ea:92:b6:2e:0e:a9:93:24:
f2:00:4c:11:ec:2a:70:e7:6d:12:d3:63:f5:50:4c:
76:8f:ad:69:20:75:62:74:0f:25:19:4a:ab:35:1f:
36:0d:30:41:8b:a2:89:1e:43:b7:38:e3:b6:a7:fb:
90:67:64:f6:ec:36:a2:e4:07:17:7c:cb:d2:74:69:
70:b3:ff:9d:2f:b8:b1:d7:b4:2b:3e:bb:fb:4e:53:
3e:6f:87:56:33:f3:c7:21:63:92:34:4c:e6:96:30:
3c:7c:50:34:2c:09:4d:ee:70:af:d3:85:70:dd:51:
8d:c9:9f:e9:fc:7f:60:9e:47:d9:fa:7e:58:78:11:
a7:66:53:23:dc:5b:55:25:84:ee:d2:c7:90:a7:bb:
72:c3:d8:fc:13:7d:12:57:90:8a:0c:cf:35:8f:1b:
5f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C1:F4:EF:B7:4D:44:31:B9:E3:2C:43:9A:26:D3:4A:8F:ED:08:9D
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e9:e9:28:b9:41:69:7c:1f:bd:47:bc:92:d3:d4:7c:f1:7d:
88:6b:cf:44:7a:a7:63:de:67:3c:fb:fc:e4:2a:e4:44:fd:78:
1f:28:8d:09:3c:77:d9:3a:6b:27:ac:fe:d0:1b:3f:05:0e:83:
15:db:f0:16:a1:73:de:72:b6:92:9d:c3:3d:de:19:0e:ae:64:
e1:8e:78:c9:fc:88:33:cf:25:1c:90:82:7a:d2:ec:d3:4b:55:
c3:0c:9e:07:d0:b8:9f:b4:72:da:fc:04:c2:e2:8b:91:29:81:
a2:b2:75:b0:42:5c:e6:49:20:1a:23:19:2d:f6:37:0a:84:0d:
6a:5b:84:0f:41:94:b6:09:d6:8e:2a:ac:a8:f4:a5:c1:4f:cb:
1f:3f:26:25:88:0e:aa:f3:a2:5c:83:ef:2d:3e:d1:8d:ae:74:
e4:c5:58:f3:fe:be:b7:2b:b6:d8:29:7e:ab:c5:d5:4b:e5:60:
d6:82:69:04:02:9c:f4:17:60:4b:ca:19:08:fc:ad:09:1b:3b:
08:06:34:6a:11:2d:3c:c4:c9:ad:a2:07:b4:28:7d:98:77:b4:
0f:7e:1f:e9:61:4b:9c:ac:cd:c8:26:b5:8b:41:bb:06:18:5c:
2a:e5:d8:f3:aa:1a:5a:8e:5c:66:76:ae:9f:7d:86:53:8f:5d:
c2:52:f4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:53:45 2026 by rpki-client