Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: mX56q3dqwwobeCbP2NbBCf5RnJHutVOlLI68q50CoO4=
Subject key identifier: 69:57:98:E3:86:67:73:AD:A2:3E:A5:3C:F8:DA:E1:74:29:B0:F7:CD
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 019E30E108C3831C5D3DC268AB82C7860A99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 117E
Signing time: Sat 16 May 2026 13:01:54 +0000
Manifest this update: Sat 16 May 2026 13:01:54 +0000
Manifest next update: Sun 17 May 2026 13:01:54 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: 63ie8220OmmoGbSKHiRmibC0k5I/TgFdDyT9Nsj+8XI=)
2: 6jWcTCuvnIbvDAxZuWYVZRLhDLU.roa (hash: LkG1rsHegbWJdLC+vukY1wOXCMcnkOUFAcxz3/K326I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e1:08:c3:83:1c:5d:3d:c2:68:ab:82:c7:86:0a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: May 16 13:01:54 2026 GMT
Not After : May 17 13:01:54 2026 GMT
Subject: CN=695798e3866773ada23ea53cf8dae17429b0f7cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c1:15:54:68:00:f8:8c:4b:4f:36:91:42:0e:
c0:e6:3d:8a:1f:d4:47:7e:55:a6:1c:8b:b8:32:41:
da:86:fd:ff:ed:91:ca:df:72:e0:1b:df:df:62:30:
0c:a6:37:f9:2e:4b:53:96:8a:6b:08:29:58:61:d4:
db:0e:a3:b2:c8:5f:d7:c0:c5:06:c4:fb:91:34:84:
72:b6:d5:c0:37:fe:83:33:ae:ce:3d:67:2f:d0:55:
5b:ff:c5:8a:86:a4:9d:fc:e8:73:87:39:02:59:ec:
42:a2:63:98:d1:6a:76:61:c2:e6:87:5c:a5:39:d6:
79:bc:d0:f2:4b:1e:4a:22:ea:de:11:c6:4e:b0:81:
8a:bb:cb:9f:3a:50:8f:ab:ea:f4:43:37:81:81:3c:
1c:9e:fd:21:2a:ff:85:ef:76:2e:16:c7:66:ed:85:
1c:c6:15:de:d0:e3:30:84:c3:4b:cf:8c:d6:47:88:
42:07:4f:e7:1e:2d:aa:74:0a:c3:5d:0b:f8:d7:05:
26:14:c2:bb:df:f9:d2:15:01:02:fe:db:70:dc:54:
52:c2:83:3e:30:1d:83:3e:0e:80:bd:0c:63:55:59:
86:cb:ee:95:0e:93:6b:81:22:4b:76:1c:c7:c0:36:
1f:03:6d:db:84:c0:ca:69:d2:9a:4d:a7:5b:e7:39:
7f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:57:98:E3:86:67:73:AD:A2:3E:A5:3C:F8:DA:E1:74:29:B0:F7:CD
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:df:ef:96:34:a6:c4:88:0a:86:4a:ce:ec:c4:31:7a:e0:ec:
9b:fe:bf:87:a6:86:29:d2:37:4d:39:20:cf:56:15:78:2c:52:
8c:47:c4:d6:4e:dd:34:a9:11:ba:33:c0:ad:d1:a2:34:3e:7f:
b3:a9:e5:41:a3:2c:39:26:30:4b:c1:33:d8:0b:fa:d8:49:d7:
2d:a0:48:87:bb:fb:88:ff:8c:d6:f8:f9:ea:9d:b6:d6:8f:01:
3f:18:64:c9:0c:1e:07:23:82:31:16:11:5f:5c:34:4c:b2:42:
73:1a:6e:41:82:2e:b5:e4:30:7f:60:91:47:a9:24:0c:9d:c7:
f4:63:c8:d3:a1:c0:2a:34:e2:9a:cb:67:c8:41:e7:b7:13:fa:
e3:6f:bf:f6:b1:82:93:e2:ef:70:29:b7:71:00:31:e8:3c:f2:
da:d4:78:47:0e:11:9b:33:22:09:24:49:57:22:55:bf:28:5f:
de:d6:55:0d:37:8d:6d:50:d4:eb:ef:a7:8f:a3:31:e3:77:ad:
31:46:43:0e:da:b9:0a:7f:83:91:7a:df:e6:41:0c:53:6a:5f:
41:1d:79:5c:44:51:75:b6:b1:8d:f2:16:38:55:be:33:38:a1:
44:5b:b5:36:44:73:68:21:00:65:8c:fd:a1:48:94:2f:92:6c:
f2:b9:70:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:19 2026 by rpki-client