Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
File: 4tccU1qnoKzpP62r22WD-ISmxiY.mft (raw, json)
Hash identifier: rbK7UHawO0Thr8OpWAf/2LCBb4Tw8NODve33RnMcJTc=
Subject key identifier: AC:5E:76:14:0A:D0:EA:FE:16:0D:4B:53:7E:FD:23:EF:AE:8E:43:1B
Authority key identifier: E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26
Certificate issuer: /CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626
Certificate serial: 019E2F96BEF2C2A2FE39B3252AAC27A196EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
Manifest number: 09E8
Signing time: Sat 16 May 2026 07:01:08 +0000
Manifest this update: Sat 16 May 2026 07:01:08 +0000
Manifest next update: Sun 17 May 2026 07:01:08 +0000
Files and hashes: 1: 4tccU1qnoKzpP62r22WD-ISmxiY.crl (hash: YS2oljTes4lx2z0DQ8EzNQqimn2F7CtXWIS8vRjbhL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:be:f2:c2:a2:fe:39:b3:25:2a:ac:27:a1:96:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626
Validity
Not Before: May 16 07:01:08 2026 GMT
Not After : May 17 07:01:08 2026 GMT
Subject: CN=ac5e76140ad0eafe160d4b537efd23efae8e431b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:52:1d:eb:00:35:0e:40:34:48:0e:8a:39:34:
cc:db:3d:d6:62:4d:7d:79:74:54:24:9f:f2:b3:18:
ed:89:e0:32:39:14:a9:43:f7:4d:b5:8d:41:41:0d:
25:72:1f:80:7f:6b:d4:45:1c:70:cc:52:c5:27:ad:
bf:c5:2b:74:fc:1c:2d:24:02:9c:36:88:db:65:96:
f0:ec:6f:06:a4:45:71:c4:68:9d:d6:3d:2b:ad:5c:
44:9a:27:33:9f:2a:9a:9e:f9:c7:6f:f0:dd:07:14:
b7:61:3f:ce:c8:80:44:0e:74:9a:01:d7:54:1a:2e:
fa:8d:bf:ab:b1:19:48:72:cc:8f:01:34:c7:c6:a4:
25:72:52:2d:38:a0:19:a3:55:11:bc:e6:8f:0e:71:
78:4d:28:8c:53:bc:22:e7:b5:7a:94:b0:44:18:67:
ed:7c:3a:32:d3:ac:68:63:4c:c8:e0:43:2a:3c:ef:
c3:af:e1:6f:30:ad:53:28:9b:96:7a:2c:4e:fa:32:
d3:ae:9b:12:88:ca:ad:97:79:38:a2:27:8f:89:67:
26:00:54:de:21:6c:89:bb:c5:cd:f9:23:f3:d5:17:
7e:4f:10:4e:94:95:8e:af:87:3c:46:9c:43:3c:33:
f7:c7:5c:a6:10:c5:20:a9:b8:ba:ae:03:dc:4b:0e:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5E:76:14:0A:D0:EA:FE:16:0D:4B:53:7E:FD:23:EF:AE:8E:43:1B
X509v3 Authority Key Identifier:
keyid:E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:ba:df:ef:ce:26:97:55:93:9b:1a:91:44:2e:ec:a8:f9:f4:
d7:bf:52:bb:c7:4f:bc:3a:a4:cb:a3:46:c0:36:6e:68:51:e9:
27:8b:f3:ee:53:e9:37:6f:10:66:8e:c2:6d:5e:64:24:fe:89:
fc:03:14:79:12:bf:35:fc:62:88:bf:37:94:c7:32:ec:4a:9d:
c4:68:8c:97:55:a6:2b:4d:3a:6c:e2:44:c9:e0:a3:42:6f:20:
9a:fd:08:3e:7d:65:4f:ef:e9:cf:cb:0a:d1:4d:96:3f:ff:6a:
0a:61:92:25:c8:43:45:63:e0:fb:b4:8f:4b:9b:2a:d6:6d:75:
5a:f7:1e:41:17:13:39:49:db:06:4e:6b:9d:90:86:79:45:7c:
92:6d:a7:ff:fd:ce:0c:64:f5:bd:93:68:9b:2b:9d:97:6d:93:
c2:20:fd:40:bb:cd:f4:11:f0:ff:10:00:be:45:94:34:5a:86:
67:06:2d:18:a4:11:31:ef:30:5e:e0:a2:08:db:26:c2:13:49:
03:20:07:86:9c:d4:2c:de:6d:e1:23:5c:fa:7e:e9:5f:9a:aa:
7e:33:af:ed:3a:bb:33:c6:92:44:02:cc:1a:ef:e5:9a:c0:ee:
a6:a7:9d:5b:2d:f1:c7:c8:2f:0b:9f:20:74:42:9d:38:ed:64:
0e:88:07:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:13:15 2026 by rpki-client