Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
File: 4tNxxKeqqFX4zDsa6oAilCCoDyA.mft (raw, json)
Hash identifier: 6z3aiTFhTFE+N9ICgEOI9IqmA3uArsKbt7GMu3/iWtI=
Subject key identifier: B3:93:5B:9F:06:CF:0B:C0:C5:18:C9:DA:3D:A4:58:CF:41:5B:95:B0
Authority key identifier: E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
Certificate issuer: /CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Certificate serial: 019E30052059B7AB22C362FE6AA212A3AAC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 09:01:42 +0000
Manifest this update: Sat 16 May 2026 09:01:42 +0000
Manifest next update: Sun 17 May 2026 09:01:42 +0000
Files and hashes: 1: 4tNxxKeqqFX4zDsa6oAilCCoDyA.crl (hash: svtnGCZTcI2EtsH0e6PGTzi+UMJx+FQJnK6fgsPv+LU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:20:59:b7:ab:22:c3:62:fe:6a:a2:12:a3:aa:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Validity
Not Before: May 16 09:01:42 2026 GMT
Not After : May 17 09:01:42 2026 GMT
Subject: CN=b3935b9f06cf0bc0c518c9da3da458cf415b95b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3d:73:8b:55:ff:0d:27:21:6e:c9:f9:70:04:
f5:08:e4:53:5c:89:7e:2b:ea:e4:0d:f9:7e:26:02:
02:f0:ec:3f:d8:96:c9:fc:d0:b7:82:ed:7b:ae:3c:
10:db:a1:cc:a2:fc:59:4c:c8:5f:64:22:14:41:a8:
94:90:ac:3f:be:d4:75:65:e9:31:5f:05:45:97:af:
8f:b3:1a:59:96:16:b6:31:c9:90:f1:18:33:b6:d6:
1a:fc:6f:d7:de:06:da:fd:0d:36:ac:9b:f6:8b:14:
39:86:85:d9:69:a4:07:46:1a:d8:b4:a4:b4:88:ab:
4e:db:ef:f4:0e:f0:28:ba:c8:0b:8e:35:01:3c:c3:
2d:20:e6:e1:9c:0b:04:75:48:9b:85:79:d3:13:3b:
55:3f:ea:c1:bf:c9:50:9a:40:cb:5a:55:8c:66:66:
98:8e:a4:89:62:f3:a1:98:0d:de:1d:92:34:e4:ea:
2d:dd:21:db:0b:ca:f6:67:6a:bc:20:aa:37:8f:61:
d9:ba:91:d0:b5:fb:07:09:3b:b4:88:d3:87:be:32:
c2:72:b5:05:65:9a:de:31:fa:00:d3:22:3c:68:e7:
22:55:bd:59:7a:c4:06:0f:62:05:f8:43:4b:e5:89:
83:c4:12:2d:fe:de:93:f0:af:83:2c:e7:d8:d0:c1:
17:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:93:5B:9F:06:CF:0B:C0:C5:18:C9:DA:3D:A4:58:CF:41:5B:95:B0
X509v3 Authority Key Identifier:
keyid:E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b6:12:41:40:c4:f6:e7:f1:89:fc:8e:41:21:fe:c1:5c:5e:
1b:7c:82:b0:47:1e:74:c3:42:cd:7b:54:32:01:43:a5:9e:72:
11:b1:fd:80:25:4f:5f:21:84:ba:b4:d1:ec:82:90:2b:1c:05:
86:ba:3d:78:4e:72:49:9e:27:0c:df:a1:98:78:d7:c5:e3:82:
78:79:a0:35:13:05:f9:79:04:e3:a0:5f:15:53:48:25:c3:6e:
63:e9:67:ae:f5:f9:fb:6b:6e:60:7f:d9:73:d3:0b:a7:16:78:
d7:90:fa:8a:d0:dd:66:0a:47:15:a5:f3:ac:ee:fc:79:94:1c:
1d:77:1d:9e:1c:66:a6:47:d0:74:67:97:46:b4:42:77:91:ae:
31:3b:c9:1b:8b:7d:26:54:1e:17:c4:93:a0:3f:64:7d:41:cf:
e5:36:44:f6:2c:a1:18:94:40:7f:54:ab:9e:a3:77:3c:81:0c:
7a:8b:22:c3:02:be:fa:84:12:93:61:46:5c:cb:39:81:75:7e:
93:dc:c1:df:54:3e:f5:de:ee:59:54:71:5d:57:57:37:f9:eb:
2b:03:f1:b7:d3:e4:ba:5c:23:fb:76:a5:65:ec:b8:5f:e3:38:
cd:39:b5:71:7b:83:9c:18:f5:4e:6f:42:f1:f3:1e:d2:cf:a9:
59:27:a9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:32:12 2026 by rpki-client