Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
File: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft (raw, json)
Hash identifier: cLq3UO4zwi2jBzefncXNaId5DIe3+6v7CAVRK0Vm0uc=
Subject key identifier: D9:08:BA:E7:2F:26:C7:1B:D7:DD:F1:72:48:56:E5:9A:55:0E:E7:7A
Authority key identifier: E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
Certificate issuer: /CN=e039649faa8f9de3dae91be799a27e2ca6628789
Certificate serial: 019D39AF27DA15046C6C59C63729B172B97D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 13:01:13 +0000
Manifest this update: Sun 29 Mar 2026 13:01:13 +0000
Manifest next update: Mon 30 Mar 2026 13:01:13 +0000
Files and hashes: 1: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl (hash: 2aMHO9NTR9r7e0d+zythI3grL4gRMcl2PUls60xC7J4=)
2: oxOUpQ0FwseclzcVvtlkSLjr_aM.roa (hash: 39PmeADT0B2o6dhGdHc5CXRqYkD6fuj6z5G5c2KqgVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:27:da:15:04:6c:6c:59:c6:37:29:b1:72:b9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e039649faa8f9de3dae91be799a27e2ca6628789
Validity
Not Before: Mar 29 13:01:13 2026 GMT
Not After : Mar 30 13:01:13 2026 GMT
Subject: CN=d908bae72f26c71bd7ddf1724856e59a550ee77a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:38:3b:c2:0f:f2:c0:e5:c5:ff:b6:8e:ef:6a:
b6:93:06:3c:c2:d2:7a:b2:61:50:13:96:25:a3:91:
83:28:0a:e5:38:e6:79:ab:a6:cf:ba:18:56:4e:db:
21:27:d9:14:16:f1:05:99:36:0a:db:e7:ae:40:08:
d5:1e:00:e7:de:49:c2:26:f3:87:35:62:7d:33:31:
d9:da:0e:91:5b:8f:ec:7a:a4:f0:af:bb:cc:07:4c:
15:ed:22:b1:f8:01:f0:16:0a:1c:06:b6:03:af:0f:
47:bb:77:9c:f8:13:c6:ea:15:e9:5a:6b:41:44:6f:
cc:49:f1:1c:b9:d9:eb:78:c4:34:11:e8:53:af:33:
c7:21:22:bf:29:f9:14:9c:de:ce:d1:ba:47:76:b4:
81:51:6b:3d:d8:b3:ea:85:30:29:c1:97:68:7e:e8:
3a:37:91:44:46:e6:88:14:a7:d5:9a:2c:34:4e:88:
7f:c1:5f:6d:f7:fd:01:4e:b6:fd:b4:6d:41:3f:ae:
4c:b1:1c:64:1d:8a:b8:33:e1:ab:a4:c9:41:81:15:
72:65:fa:74:c5:80:3f:66:f2:60:79:73:ed:b9:6a:
33:8e:a4:ae:a2:73:d9:1d:2f:af:e6:19:7d:6e:40:
68:26:89:58:34:c0:c7:d3:70:ac:ca:46:bb:69:c3:
3d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:08:BA:E7:2F:26:C7:1B:D7:DD:F1:72:48:56:E5:9A:55:0E:E7:7A
X509v3 Authority Key Identifier:
keyid:E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:28:85:ac:2c:8f:67:57:a5:26:54:55:5a:06:09:40:25:89:
28:9a:3d:0a:d5:e1:81:09:0e:14:78:41:05:68:22:ca:37:d6:
c6:ab:7c:10:29:37:7d:ff:a7:ad:25:ee:7e:8e:fb:a3:ec:22:
0f:1a:3a:73:69:7a:83:55:82:de:cf:cb:f1:1c:5c:87:76:2c:
c0:65:34:04:aa:dc:75:b9:c4:85:af:46:93:17:54:d9:79:8a:
85:19:f3:6e:54:ac:70:ea:ad:80:ed:f6:13:19:a6:d5:1b:74:
50:61:fe:7b:17:4a:36:ae:55:21:93:27:1f:ee:cd:29:3a:de:
97:6c:69:17:35:17:81:cf:5b:b5:82:d4:3d:f4:f5:7f:dc:ad:
61:8e:76:07:52:a3:a7:11:7e:be:5c:91:de:60:f2:c1:f2:15:
38:87:83:b7:e9:8b:5a:d2:e9:53:92:85:0c:6a:5b:c3:25:6c:
a8:1b:78:5c:22:79:ab:dd:e8:a0:1d:01:93:0d:3c:27:7c:8f:
79:2c:0b:30:2f:4d:0b:e5:22:b8:a8:10:b4:25:21:dc:92:02:
bf:83:4a:1d:b9:03:4c:c4:3e:9b:26:8f:da:9b:63:25:cf:2a:
8d:a5:22:ad:2f:20:51:e9:4d:a9:a5:eb:4c:da:04:ec:f0:80:
80:56:ed:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:59:47 2026 by rpki-client