Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft
File: 4xubYpkE1DhFESeFW1L4guvhYqo.mft (raw, json)
Hash identifier: CKer1bkHgQBEZunzH9b3bBJEqfsUmDOJh3BMLaiwjpA=
Subject key identifier: 4E:09:40:AE:BD:83:00:81:6E:EF:1E:F5:7E:6E:9E:E3:AD:37:98:B5
Authority key identifier: E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA
Certificate issuer: /CN=e31b9b629904d438451127855b52f882ebe162aa
Certificate serial: 019E30E1071A484F92B9F099ACEC21825270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft
Manifest number: 1241
Signing time: Sat 16 May 2026 13:01:54 +0000
Manifest this update: Sat 16 May 2026 13:01:54 +0000
Manifest next update: Sun 17 May 2026 13:01:54 +0000
Files and hashes: 1: 4xubYpkE1DhFESeFW1L4guvhYqo.crl (hash: YZBlLF6WJf+pkrJQN6i4UpsutRI72h5wPmx99RQe5PI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e1:07:1a:48:4f:92:b9:f0:99:ac:ec:21:82:52:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e31b9b629904d438451127855b52f882ebe162aa
Validity
Not Before: May 16 13:01:54 2026 GMT
Not After : May 17 13:01:54 2026 GMT
Subject: CN=4e0940aebd8300816eef1ef57e6e9ee3ad3798b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:55:23:d9:07:33:9a:db:a8:38:89:a8:4e:
eb:f9:6e:c3:51:3f:89:76:2b:6d:ea:04:37:e2:3e:
28:8b:2a:90:43:e9:a4:20:69:5c:05:4b:ff:53:3a:
90:c0:94:75:cd:76:81:4b:1c:e7:27:cb:27:a0:3e:
31:dc:a0:b7:d0:6d:6c:4f:b7:f6:be:23:2f:42:40:
91:ac:b6:24:08:ad:dd:1f:6f:85:16:1a:b0:4a:cb:
72:2b:20:5b:a1:99:cb:2a:aa:4b:36:42:69:1c:3a:
f2:9d:73:bf:97:93:ab:ed:7a:53:84:a8:d2:5a:7e:
2d:4e:39:61:a5:41:e6:7d:26:fb:5d:c8:e0:c2:af:
49:c9:7a:f4:56:b0:69:aa:b5:36:8b:54:f7:fd:64:
1d:50:2c:c3:85:a7:0e:73:fd:5e:1e:89:9b:35:2c:
5a:68:9f:59:3b:fd:77:55:10:d8:eb:83:27:03:66:
9b:38:3f:14:2c:c5:05:4e:b7:f1:5c:63:2b:de:bb:
d6:4d:9a:0c:5b:d4:77:b9:a4:48:62:3b:3b:30:88:
5c:85:5c:a4:c7:be:9e:ec:6c:79:bd:c5:83:cf:16:
55:0d:5b:90:c8:82:3d:17:4a:6c:35:f1:f8:d7:b4:
63:4e:d0:ae:6b:88:ef:6b:31:79:a2:36:fb:42:de:
73:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:09:40:AE:BD:83:00:81:6E:EF:1E:F5:7E:6E:9E:E3:AD:37:98:B5
X509v3 Authority Key Identifier:
keyid:E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:5e:c2:ce:50:8e:e6:4b:7a:14:8d:cb:53:ce:27:89:b6:1c:
b9:8a:f1:98:1b:69:71:09:9a:05:b7:be:26:8d:6a:3d:14:0c:
bc:87:19:85:c7:10:ee:b8:f3:3b:51:c6:ae:d8:ad:cb:6e:51:
60:9f:5c:5e:b1:35:e9:67:f3:88:ea:18:27:48:cf:bb:3f:f8:
6a:15:d0:9e:e2:84:5a:91:fe:08:9c:4c:12:a8:63:a7:c6:16:
b4:19:f3:cd:ec:54:83:24:07:b7:c8:51:a7:4c:c1:fc:5e:5c:
7a:41:c5:60:ba:d7:34:d7:04:20:27:7e:58:e3:da:1c:ab:d7:
39:10:b9:29:24:bf:f8:9d:da:55:06:32:23:be:c2:ef:d9:4b:
27:24:70:f8:76:f3:32:14:c5:14:7b:45:a7:5d:9a:8d:0d:1d:
6f:36:6b:4f:0c:34:07:76:8d:ea:d1:39:74:1a:e1:3b:dd:e4:
27:d5:4d:45:21:79:9e:ad:58:dc:d2:e6:c0:02:d7:67:ec:70:
82:79:70:e1:8f:31:95:f3:8e:9a:68:c9:12:a6:a6:e7:8e:cb:
4b:b3:8b:70:a7:a4:c9:7c:2b:55:1b:76:4d:74:ae:6f:d6:4b:
36:fe:c3:95:c0:c5:48:24:d6:e3:c2:18:b2:ec:13:c4:54:c4:
03:d5:4c:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4QcaSE+SufCZrOwhglJwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMWI5YjYyOTkwNGQ0Mzg0NTExMjc4NTViNTJmODgyZWJl
MTYyYWEwHhcNMjYwNTE2MTMwMTU0WhcNMjYwNTE3MTMwMTU0WjAzMTEwLwYDVQQD
Eyg0ZTA5NDBhZWJkODMwMDgxNmVlZjFlZjU3ZTZlOWVlM2FkMzc5OGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCZVI9kHM5rbqDiJqE7r+W7DUT+J
ditt6gQ34j4oiyqQQ+mkIGlcBUv/UzqQwJR1zXaBSxznJ8snoD4x3KC30G1sT7f2
viMvQkCRrLYkCK3dH2+FFhqwSstyKyBboZnLKqpLNkJpHDrynXO/l5Or7XpThKjS
Wn4tTjlhpUHmfSb7Xcjgwq9JyXr0VrBpqrU2i1T3/WQdUCzDhacOc/1eHombNSxa
aJ9ZO/13VRDY64MnA2abOD8ULMUFTrfxXGMr3rvWTZoMW9R3uaRIYjs7MIhchVyk
x76e7Gx5vcWDzxZVDVuQyII9F0psNfH417RjTtCua4jvazF5ojb7Qt5zbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE4JQK69gwCBbu8e9X5unuOtN5i1MB8GA1UdIwQY
MBaAFOMbm2KZBNQ4RREnhVtS+ILr4WKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2Ut
ZGVkN2FkNWE4ODcwLzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2UtZGVkN2FkNWE4ODcw
LzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVl7CzlCO
5kt6FI3LU84nibYcuYrxmBtpcQmaBbe+Jo1qPRQMvIcZhccQ7rjzO1HGrtity25R
YJ9cXrE16WfziOoYJ0jPuz/4ahXQnuKEWpH+CJxMEqhjp8YWtBnzzexUgyQHt8hR
p0zB/F5cekHFYLrXNNcEICd+WOPaHKvXORC5KSS/+J3aVQYyI77C79lLJyRw+Hbz
MhTFFHtFp12ajQ0dbzZrTww0B3aN6tE5dBrhO93kJ9VNRSF5nq1Y3NLmwALXZ+xw
gnlw4Y8xlfOOmmjJEqam547LS7OLcKekyXwrVRt2TXSub9ZLNv7DlcDFSCTW48IY
suwTxFTEA9VMPw==
-----END CERTIFICATE-----
Generated at Sat May 16 17:14:01 2026 by rpki-client