Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: PPTfk9bQXHS/djaj78rhrl7IgP18BtL8nEIcBFpU5Ck=
Subject key identifier: 73:64:27:AC:52:FC:EB:76:4A:B4:F0:EA:77:D1:E1:A9:A7:FF:D0:35
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 019F189EE1CEFDB98121B730D51B2BAFC9F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 11F6
Signing time: Tue 30 Jun 2026 13:01:33 +0000
Manifest this update: Tue 30 Jun 2026 13:01:33 +0000
Manifest next update: Wed 01 Jul 2026 13:01:33 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: iMnEt7ugjKs8X710/9tU7oDxAjsLsNOFLyE9xVmG/AU=)
2: 6jWcTCuvnIbvDAxZuWYVZRLhDLU.roa (hash: LkG1rsHegbWJdLC+vukY1wOXCMcnkOUFAcxz3/K326I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:e1:ce:fd:b9:81:21:b7:30:d5:1b:2b:af:c9:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Jun 30 13:01:33 2026 GMT
Not After : Jul 1 13:01:33 2026 GMT
Subject: CN=736427ac52fceb764ab4f0ea77d1e1a9a7ffd035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a6:b7:40:5c:22:07:14:30:35:bd:8e:02:4c:
40:38:e9:c9:ed:49:ea:74:7c:bb:f3:1d:b4:0b:6a:
79:6e:d4:6a:f4:1c:fa:6d:c1:da:a1:6e:40:71:f4:
9c:ed:cb:45:af:84:81:03:97:14:70:ac:aa:20:5f:
6c:04:2b:72:a3:19:b3:ff:8f:ca:19:70:90:b0:71:
0b:74:d3:69:f2:75:51:7a:8e:00:bf:f3:65:ce:10:
54:19:81:e3:3d:15:05:06:38:73:2f:98:76:25:9b:
5d:25:d3:79:d5:3d:55:84:d2:3f:b1:71:5d:22:1d:
c3:71:6a:9e:6b:0f:06:eb:7c:36:b1:01:ed:8e:00:
20:a7:58:f7:10:c4:76:df:42:bd:1e:bc:c9:7c:98:
0e:d9:30:5d:c7:79:cc:26:71:06:bd:fa:33:1e:a0:
ac:7d:80:95:22:0c:c2:80:fb:ee:48:71:4f:5e:58:
85:0e:3d:fe:c3:44:7c:00:d7:ce:29:44:14:78:1c:
d1:83:66:41:72:05:c8:6e:c8:cb:2f:9d:0d:9a:f0:
6b:0b:62:f5:f5:72:5a:81:6c:f5:4e:37:b4:fe:74:
08:7f:8d:9f:d5:db:75:0e:e4:1f:70:f7:a7:e5:de:
96:60:f9:ad:f7:f3:c5:d8:8a:0c:e8:10:4b:57:29:
77:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:64:27:AC:52:FC:EB:76:4A:B4:F0:EA:77:D1:E1:A9:A7:FF:D0:35
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:42:59:ea:55:ae:6b:91:0f:2b:fa:22:22:68:9c:b7:b5:64:
1a:7e:34:85:d1:a1:de:a7:53:35:bd:e3:55:e2:ed:b0:dd:32:
43:01:f3:81:f2:92:07:55:f8:d0:c4:7a:f1:ed:94:ac:1b:9e:
18:8b:a0:2c:a9:cc:d5:75:86:96:8f:63:74:38:90:43:09:59:
0a:44:59:53:c8:15:0a:98:24:05:5a:78:52:d9:63:11:d3:89:
69:61:d4:a3:2d:3b:58:db:2d:0d:ce:04:bc:8c:4d:c7:0f:db:
7e:ad:e9:a7:58:88:0d:4b:f9:e5:73:08:61:d6:39:df:5b:64:
69:45:f5:0e:ae:ef:35:12:0d:6a:0a:28:f6:11:3a:f1:8d:22:
76:c6:f9:c1:e0:b3:98:75:c0:ed:66:ba:f0:bb:bf:84:ab:37:
25:40:64:a2:3a:fc:52:71:59:a4:df:b7:7c:75:b3:53:5b:2b:
f5:d7:1d:fa:81:55:2e:1d:0a:ef:06:f0:b9:49:ca:60:5a:0d:
4f:6b:b9:65:b5:d2:43:c5:9c:33:12:5e:6a:d0:3c:8e:05:97:
3f:05:ee:8c:8e:ea:e2:7a:ac:1c:d3:da:b1:6a:95:30:91:46:
81:1a:49:05:ee:64:b5:e7:82:6d:02:46:8b:c7:6d:51:f3:8e:
46:1e:8d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:16:45 2026 by rpki-client