Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: kIhamOMSbkE9w16jCirEt+dwvSfyGgex8ziOiu0SMuI=
Subject key identifier: 47:88:BD:DB:0C:C8:48:64:45:BB:79:67:AB:05:0F:8E:52:34:B8:AB
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 019E8DC99353A3E9A20F37353F4C676ABCA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 056F
Signing time: Wed 03 Jun 2026 14:00:58 +0000
Manifest this update: Wed 03 Jun 2026 14:00:58 +0000
Manifest next update: Thu 04 Jun 2026 14:00:58 +0000
Files and hashes: 1: L5BfioWz08XOKOc7LGuDTFScCDM.roa (hash: oJjcndnAKImb4AebXhMuHLKYhu0NzBboRQfoXDCNW0c=)
2: Tcg_tO4TH6VzGp-S2NuzlB5WECE.roa (hash: vf8tQnW7oqoTXI/ZHAP1eVwRqXSdr72IdtoqliIf4Ys=)
3: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: f7Slqc2Zo+9g4InpzIEos41Vp596uxYfyCGGZdb+Iyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8d:c9:93:53:a3:e9:a2:0f:37:35:3f:4c:67:6a:bc:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Jun 3 14:00:58 2026 GMT
Not After : Jun 4 14:00:58 2026 GMT
Subject: CN=4788bddb0cc8486445bb7967ab050f8e5234b8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e8:bf:fe:c8:ef:8f:6f:ad:d9:4c:9f:39:2e:
bf:47:a8:df:ca:1f:07:f2:a6:0f:c7:63:ae:02:27:
5e:a5:60:80:e3:79:94:89:68:43:14:c1:ce:0c:98:
e0:70:c7:da:f9:cc:ba:4d:1d:f9:ce:09:ca:71:47:
2a:e2:18:25:a4:4a:4a:31:b6:07:43:31:5c:99:18:
41:c5:94:67:26:3f:a8:06:6e:86:00:13:8e:42:50:
09:99:7a:1e:8b:8e:46:93:39:ef:2d:cc:b2:96:ef:
98:3b:15:40:e3:29:e7:31:61:ef:9b:fe:85:5d:59:
9f:84:51:a1:21:bf:5c:a5:42:87:3f:f9:74:db:1b:
40:26:78:ba:4f:51:3f:40:eb:9b:ca:a1:1d:56:77:
01:85:d5:c8:63:5b:bf:24:9f:2f:db:6c:ea:7b:b8:
1d:ad:22:cc:cc:c8:c8:02:37:55:6a:cf:e6:f5:47:
a1:f8:fb:89:cc:3f:95:00:08:6a:0c:35:5e:f6:8d:
44:82:12:c2:ab:d6:d1:9e:16:c2:07:00:7c:16:62:
29:ba:54:16:b8:ce:77:2f:76:e8:1b:1b:0b:6b:8d:
63:f9:e6:91:b6:08:ae:6d:8d:c5:7b:96:79:3b:c8:
af:5f:6f:59:31:8d:5b:ac:b7:9b:9f:e9:4f:1c:78:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:88:BD:DB:0C:C8:48:64:45:BB:79:67:AB:05:0F:8E:52:34:B8:AB
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:b7:d4:3d:c2:61:81:81:b7:64:b5:37:ba:b1:3d:f1:7e:e1:
ec:bf:7b:e3:bb:e5:01:7d:35:40:98:55:8f:f2:d8:8b:c2:7b:
32:c5:0e:98:b0:02:f7:d9:7c:3d:19:73:96:52:01:1b:a9:f9:
2c:f2:dd:74:1f:02:94:51:71:a7:6a:d0:f3:79:c8:11:16:d3:
20:22:e0:5c:90:b2:a6:61:f0:b5:00:94:dd:58:94:ec:b6:45:
3d:bd:2a:11:c9:41:25:61:31:93:b4:04:9d:3c:43:6f:8d:1f:
27:23:ec:ce:b9:50:69:42:b5:0b:b6:2c:d2:5c:d8:83:34:77:
7f:69:35:41:61:34:7a:d5:28:6a:f2:f0:4f:0b:05:71:ac:16:
ab:09:2b:a0:2c:d6:b3:86:fe:b6:a8:88:e1:24:2e:02:47:85:
ea:60:15:57:ad:64:4e:e8:03:b6:7c:bb:20:7b:b3:48:bb:de:
9b:66:3c:5f:12:8d:01:93:3a:36:46:c6:05:91:35:4d:3f:d9:
70:cc:3f:49:0e:1c:5e:ee:d5:b1:bb:76:c9:d9:a4:29:c4:8d:
12:4e:25:af:a0:60:3e:be:74:4c:24:71:4e:46:d4:63:2a:9a:
02:8a:fa:5f:51:84:5d:3a:c7:a3:1d:fd:63:c3:ed:44:fc:8c:
f1:20:d5:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6NyZNTo+miDzc1P0xnaryjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmODVlOTkwMzU0Mzk3ZTM2YzBjYTkwM2EwYzYyMGM3NzA5
ZWZkY2QwHhcNMjYwNjAzMTQwMDU4WhcNMjYwNjA0MTQwMDU4WjAzMTEwLwYDVQQD
Eyg0Nzg4YmRkYjBjYzg0ODY0NDViYjc5NjdhYjA1MGY4ZTUyMzRiOGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+i//sjvj2+t2UyfOS6/R6jfyh8H
8qYPx2OuAidepWCA43mUiWhDFMHODJjgcMfa+cy6TR35zgnKcUcq4hglpEpKMbYH
QzFcmRhBxZRnJj+oBm6GABOOQlAJmXoei45GkznvLcyylu+YOxVA4ynnMWHvm/6F
XVmfhFGhIb9cpUKHP/l02xtAJni6T1E/QOubyqEdVncBhdXIY1u/JJ8v22zqe7gd
rSLMzMjIAjdVas/m9Ueh+PuJzD+VAAhqDDVe9o1EghLCq9bRnhbCBwB8FmIpulQW
uM53L3boGxsLa41j+eaRtgiubY3Fe5Z5O8ivX29ZMY1brLebn+lPHHgafQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEeIvdsMyEhkRbt5Z6sFD45SNLirMB8GA1UdIwQY
MBaAFH+F6ZA1Q5fjbAypA6DGIMdwnv3NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEt
OGM5ZDU4MjNiYWQ5LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEtOGM5ZDU4MjNiYWQ5
LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACrfUPcJh
gYG3ZLU3urE98X7h7L9747vlAX01QJhVj/LYi8J7MsUOmLAC99l8PRlzllIBG6n5
LPLddB8ClFFxp2rQ83nIERbTICLgXJCypmHwtQCU3ViU7LZFPb0qEclBJWExk7QE
nTxDb40fJyPszrlQaUK1C7Ys0lzYgzR3f2k1QWE0etUoavLwTwsFcawWqwkroCzW
s4b+tqiI4SQuAkeF6mAVV61kTugDtny7IHuzSLvem2Y8XxKNAZM6NkbGBZE1TT/Z
cMw/SQ4cXu7Vsbt2ydmkKcSNEk4lr6BgPr50TCRxTkbUYyqaAor6X1GEXTrHox39
Y8PtRPyM8SDVFA==
-----END CERTIFICATE-----
Generated at Wed Jun 3 23:04:13 2026 by rpki-client