Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: RYU92nddTyJJi0dtfjYgRAAgFCRLyXmQCBwzcDndEuU=
Subject key identifier: 84:7B:3E:9A:CB:43:EC:4A:A7:1F:7B:62:28:4D:80:6C:4D:09:04:B4
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 019E300484DB1CFC9F44E66752597442E5B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0DE9
Signing time: Sat 16 May 2026 09:01:02 +0000
Manifest this update: Sat 16 May 2026 09:01:02 +0000
Manifest next update: Sun 17 May 2026 09:01:02 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: IppBwMpO4bgLjg+iJMd6vJ967CYObZjnm3iowfYs0Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:84:db:1c:fc:9f:44:e6:67:52:59:74:42:e5:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: May 16 09:01:02 2026 GMT
Not After : May 17 09:01:02 2026 GMT
Subject: CN=847b3e9acb43ec4aa71f7b62284d806c4d0904b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:43:51:9b:b5:f6:bc:86:f6:97:16:92:cb:
05:11:c6:b3:42:4b:c4:c7:45:02:5b:08:01:f5:22:
bd:5c:01:cd:26:9e:df:9c:2a:5b:62:2e:bf:80:cf:
21:b5:05:46:35:fa:85:1e:09:c0:06:0e:58:d8:f6:
e7:f8:54:7e:46:43:11:58:d1:f6:45:bc:03:a7:55:
92:3c:7f:25:e2:08:b6:f1:82:27:8d:4a:55:66:98:
2c:bb:30:4c:b5:28:ec:ac:d0:b9:6e:43:b1:c6:b4:
6c:1e:ca:0f:a2:d4:e7:a5:1d:ab:f9:5b:13:dd:75:
54:e0:10:ba:9e:44:1d:b2:7a:df:02:7a:c4:fd:f3:
c2:1b:d5:fb:d5:ad:54:86:ba:59:f6:dc:6a:45:e0:
fd:ee:8a:5d:4f:e7:5b:7a:9b:c1:8f:44:e1:93:be:
83:f5:e7:59:57:a4:8f:48:5f:7b:c0:7e:13:4d:df:
5f:31:5a:6d:ec:ee:19:72:c1:b9:26:bd:3a:8b:4b:
41:c3:6a:42:1a:18:c8:db:25:be:7a:13:1e:5f:a9:
13:50:dc:d4:cf:64:db:bf:59:21:c7:4b:f9:ad:73:
48:0c:0c:f2:77:74:ba:29:24:d5:77:b0:a1:5e:da:
4f:33:73:3b:43:1c:09:0c:14:94:8b:f3:4e:ba:3b:
42:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7B:3E:9A:CB:43:EC:4A:A7:1F:7B:62:28:4D:80:6C:4D:09:04:B4
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c4:54:9d:c0:09:39:78:96:3e:89:67:c7:4d:b7:7c:e9:0f:
85:2f:31:16:23:6b:0e:bc:4a:7e:80:70:b5:94:0a:a2:24:fb:
7a:42:25:99:f4:28:1e:eb:ad:f3:1c:1b:ba:c7:43:99:5e:c6:
d2:2b:82:34:54:3a:da:88:10:86:88:0e:95:c6:e6:33:e5:42:
65:24:26:32:3f:3c:2e:2d:65:b9:90:ad:bf:27:64:d2:50:7b:
e6:7b:5b:3a:ab:24:87:71:cb:6f:f1:90:60:c6:64:1f:a3:c4:
78:be:3e:b2:59:89:ae:33:6a:63:80:34:06:50:5e:51:b2:12:
cf:35:ce:fa:92:0c:51:cf:bb:14:51:b4:88:0d:34:b3:4e:7d:
d0:fb:50:41:eb:68:8b:4d:e4:9f:76:42:27:05:81:ca:3a:29:
e8:d4:c0:e3:04:0f:32:e3:c8:25:27:cb:c2:02:8c:9e:a1:d7:
18:6c:64:3b:d5:a8:0b:9b:fa:e2:49:fb:aa:a0:8a:d3:4b:c8:
f0:de:c1:2f:66:21:6b:ef:a5:7f:59:1d:8d:dd:a0:43:6f:9b:
0e:2a:21:9b:65:1c:c5:2e:1a:03:ae:e0:50:42:66:d9:b1:ef:
5d:df:34:0c:eb:18:64:16:65:17:5e:0e:81:60:e3:3e:bc:7a:
d9:31:00:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:49 2026 by rpki-client