Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
File: S5nNYSQguFk0kdhobOTEr4W5CtU.mft (raw, json)
Hash identifier: a8jpOK9oIuVl6oRohXadZTTw5ERw4eGGGKUbGkiWSqU=
Subject key identifier: A6:33:8C:6F:8D:AA:2D:DE:02:FB:3E:7A:43:49:8E:FA:0D:61:51:B8
Authority key identifier: 4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
Certificate issuer: /CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Certificate serial: 019DCED09DC019A8A0A206577AE2214FDB3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
Manifest number: 030E
Signing time: Mon 27 Apr 2026 12:01:11 +0000
Manifest this update: Mon 27 Apr 2026 12:01:11 +0000
Manifest next update: Tue 28 Apr 2026 12:01:11 +0000
Files and hashes: 1: 8DpSJKviZ7cSTOBb1JPdqUAWjZI.roa (hash: KJ3gvkRDPvd6FYiFgYbSLnhGd4p7f+DOyl+s6ewmo1Y=)
2: NDIauRSXxmTRxMaMxKWAcWs2hiY.roa (hash: niReydPhxoIGyEf8VzGlx6ngoJ93K3AzsN+453eTTKQ=)
3: S5nNYSQguFk0kdhobOTEr4W5CtU.crl (hash: hQjoLqLs12mZ0hHtpLaZIuEQ0eBB6+/nlflewmfRZaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:d0:9d:c0:19:a8:a0:a2:06:57:7a:e2:21:4f:db:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b99cd612420b8593491d8686ce4c4af85b90ad5
Validity
Not Before: Apr 27 12:01:11 2026 GMT
Not After : Apr 28 12:01:11 2026 GMT
Subject: CN=a6338c6f8daa2dde02fb3e7a43498efa0d6151b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:00:d1:38:85:0d:63:f2:60:ba:98:f1:dc:03:
fe:0c:e6:c9:e2:59:f5:3d:be:7d:6d:26:37:0b:25:
a7:4d:09:f8:2c:19:fe:98:0c:48:86:1a:6e:5a:a0:
06:9a:7f:07:82:5f:1b:96:b1:ad:3d:6e:d2:41:46:
f4:75:65:d5:db:a4:18:16:ae:78:0d:d3:90:a3:fb:
e0:cc:84:b1:64:18:14:27:4b:29:23:df:6f:77:e8:
f3:97:67:00:03:3a:68:f2:89:42:e2:81:3a:64:ad:
68:09:36:c2:ae:a3:a8:0e:fa:be:56:9f:4b:1d:0e:
84:75:0b:85:55:06:3d:02:44:b1:e3:03:63:1d:b2:
f8:93:b5:3d:0c:65:82:50:97:99:06:16:2b:0a:95:
bb:9c:82:11:f2:8e:33:bc:26:93:28:bb:36:ec:12:
68:84:f7:98:20:39:c9:79:4c:99:ce:c8:f6:de:3e:
a1:fd:38:70:7a:26:4f:f5:8b:e6:4d:96:64:bf:23:
1e:f2:f7:8b:7c:07:b3:66:c9:20:b8:01:f7:58:9c:
2e:dd:38:92:e8:31:f6:89:8e:00:44:75:e1:4c:66:
78:62:a3:96:90:88:39:01:54:bf:ed:3d:e7:2d:c1:
6c:a6:1c:28:f8:bc:0b:05:ef:8d:60:ba:ac:81:5e:
08:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:33:8C:6F:8D:AA:2D:DE:02:FB:3E:7A:43:49:8E:FA:0D:61:51:B8
X509v3 Authority Key Identifier:
keyid:4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:7d:94:ab:09:f8:f1:50:81:b4:bd:00:47:2f:3f:7a:52:6e:
72:30:63:b2:04:16:09:cd:7a:63:53:cf:a8:85:7a:f4:1b:31:
01:96:90:41:61:ce:4b:28:5b:99:4c:26:aa:1b:57:87:d5:2a:
60:f3:33:45:cf:d9:34:7d:d6:07:83:e7:98:06:0d:b3:c0:34:
70:27:58:bf:7c:fa:02:86:e4:ae:a4:c1:96:19:25:ed:96:19:
c8:7d:2d:be:b5:25:f8:7b:7e:97:19:8e:8e:0e:17:84:f7:f4:
c7:51:93:f3:58:84:7e:45:f4:5d:d1:87:ab:03:68:c6:b2:99:
06:ee:f6:f7:4d:17:ec:78:66:e1:37:d7:ef:51:13:5e:61:14:
0c:77:ab:a5:0c:42:27:1b:0f:0a:e8:7b:96:42:19:e1:71:8f:
91:f1:d6:0c:24:db:66:89:da:42:60:02:00:f6:49:7a:d6:ce:
9d:b3:6e:a1:55:14:19:33:ff:9e:8c:03:16:26:67:f0:34:96:
e0:df:51:4d:e7:b4:c9:a8:fa:d3:2d:c4:7f:75:79:dd:f3:eb:
44:d2:8c:29:41:5f:6f:2e:89:f0:c2:3f:27:1e:a1:bd:9d:56:
f2:f6:04:83:4e:a9:83:5d:29:08:03:d3:05:4e:ab:b1:7b:a2:
59:74:24:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:10:08 2026 by rpki-client