Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: Ses0tuEncRNmvL2MkIWc9AyiwT8+McJ5uOVONqjW1aY=
Subject key identifier: 33:9E:E7:69:03:4D:40:6D:48:83:3A:2E:47:00:72:1D:4B:49:34:31
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 019F11F81D2B737C5A2B02AC91319705618D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0F86
Signing time: Mon 29 Jun 2026 06:01:40 +0000
Manifest this update: Mon 29 Jun 2026 06:01:40 +0000
Manifest next update: Tue 30 Jun 2026 06:01:40 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: xUwzGT9nopTQdmFvloEkDMlpS8GAtsoiKZW06/8LduE=)
2: CdfLb6TofkWtReh_YXLGBpk_g6c.roa (hash: wzdkGkKknbVJYDWx/Ffoau27HnZpYfEves1fyMYu134=)
3: fqd_p4Wrb6OXddN1aeuYEJC8YH4.asa (hash: jmbRwKrDPkjso/zUasnqP+cDaGWkVpbGq+nQ2VGiSLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f8:1d:2b:73:7c:5a:2b:02:ac:91:31:97:05:61:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Jun 29 06:01:40 2026 GMT
Not After : Jun 30 06:01:40 2026 GMT
Subject: CN=339ee769034d406d48833a2e4700721d4b493431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:29:95:d8:65:84:4a:2f:5e:b1:d2:22:75:60:
3f:e6:c6:00:f6:ef:c4:06:24:cc:f1:bd:b2:d1:35:
5a:3e:00:0e:93:e3:8a:42:c5:bf:b6:2b:18:5b:7a:
53:c7:18:e5:35:77:2d:f3:1f:67:b9:b3:f4:4b:14:
2a:9e:4b:8b:fe:d8:fe:b3:10:0d:d9:95:68:ff:05:
d8:8c:37:00:1e:31:ac:60:fa:1a:8f:06:59:a9:6d:
4d:03:c1:e6:b9:b9:33:8d:46:f0:c9:5b:6e:58:42:
bb:d9:fc:73:62:e5:54:06:d6:ab:d3:fa:55:8c:f8:
b4:08:84:60:d8:5a:3c:27:cb:b1:9a:ed:4b:5e:d5:
5e:b5:04:cc:b3:bc:a9:99:4b:31:9f:3b:25:51:fa:
96:b1:0e:fb:b6:52:e8:fb:8e:e6:aa:b7:55:f3:1e:
43:1c:ab:9d:19:9e:ac:d7:bf:35:98:4b:75:8d:f2:
aa:06:6b:69:63:28:cd:fd:63:ea:0b:30:67:a1:78:
62:80:74:92:48:30:1f:1f:26:68:99:fe:0d:41:16:
2e:0f:9b:42:e7:be:49:d8:9a:ed:93:51:3b:4e:be:
a3:0b:33:e7:8a:c8:e5:ea:c6:07:f6:53:9f:de:86:
91:39:fe:6f:da:68:78:d4:14:c6:ec:68:28:e0:65:
90:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9E:E7:69:03:4D:40:6D:48:83:3A:2E:47:00:72:1D:4B:49:34:31
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:a1:85:19:4e:fd:27:20:4b:d2:c4:50:d1:e3:ba:53:cc:c3:
e4:05:81:b4:c9:59:cb:a6:b0:f0:5a:71:99:6b:14:96:d9:07:
d9:e7:23:a6:1e:15:c9:a5:2f:4a:46:03:82:8b:a6:9f:15:e0:
15:d2:24:6e:54:9f:10:95:f6:aa:49:28:a7:b0:af:e0:cf:8a:
d7:4d:a7:5e:a5:80:89:c2:04:d8:49:c3:8f:93:28:f3:13:09:
bf:54:6b:60:03:ce:85:92:0e:96:2a:24:cd:08:cf:bf:58:7c:
32:5f:53:e7:a8:c4:c1:32:9e:8c:3d:d8:2d:f6:df:a9:af:ad:
35:a6:b4:bf:6e:8d:7c:07:89:70:d4:7c:e8:99:4a:1a:b0:ea:
30:31:21:4d:f4:ef:48:d6:d4:ff:0d:b1:e8:74:57:ad:e2:ab:
8a:c2:68:0d:56:24:52:d3:b3:34:1b:23:cd:90:68:ad:ec:98:
5a:2e:f0:ee:3a:3a:e2:fb:8a:7a:a0:8f:f5:1e:04:04:3f:89:
83:73:fd:5f:29:4a:b0:e7:db:04:36:2f:ed:02:bf:85:e0:60:
b8:6c:f0:02:24:84:cc:0c:57:bb:6f:76:31:74:b1:bb:a1:ca:
6f:f9:32:71:eb:79:df:c6:24:be:3b:34:ca:97:74:77:d3:95:
c4:ed:3e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:40:40 2026 by rpki-client