Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: rwolfIVdlKuFgFtTb5klIKN1+JtYEgGWqmE98U826QA=
Subject key identifier: BB:99:75:FB:1C:E0:90:91:2E:9D:C1:CF:67:0A:46:C3:38:4C:38:A2
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 019F11899D919C3471B7A78B7CD24015B51A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 1219
Signing time: Mon 29 Jun 2026 04:00:59 +0000
Manifest this update: Mon 29 Jun 2026 04:00:59 +0000
Manifest next update: Tue 30 Jun 2026 04:00:59 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: dj28M5hmaOk3i2zkj7rFlrE+UENWoTu+6DTmoi4unIo=)
2: Q_JnpghBEdCLh0xBHJB-tx_t2gw.roa (hash: Ab9wt6TXLrpI0IOi098sXRGVv7NV4z8Pe9YK/pyc2Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:89:9d:91:9c:34:71:b7:a7:8b:7c:d2:40:15:b5:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Jun 29 04:00:59 2026 GMT
Not After : Jun 30 04:00:59 2026 GMT
Subject: CN=bb9975fb1ce090912e9dc1cf670a46c3384c38a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:e7:52:be:ee:ea:0c:78:8a:3f:3c:eb:9e:
b9:34:d6:b1:79:09:5d:88:a1:4c:86:2d:2d:3e:74:
a9:71:21:4a:a9:c8:eb:4b:94:71:af:79:36:61:b6:
b2:9e:c2:ba:35:6b:9c:31:bf:e6:5e:f2:34:0b:2c:
38:ef:cc:72:75:91:a2:ad:e2:de:0f:c6:08:a8:31:
81:00:84:f1:0c:38:35:c1:ea:d8:ba:f2:1c:e1:f1:
09:2c:6b:a5:54:c0:75:f1:5d:36:85:94:3e:8b:bc:
33:fc:9e:3a:1a:9e:8c:95:ea:7b:64:0f:25:0b:4d:
26:39:38:2a:d0:a5:b1:14:82:80:6a:20:68:77:92:
e8:f6:5f:e4:c2:d8:79:f8:fd:ea:8e:8c:4b:6b:4b:
02:f5:5c:59:8e:f0:20:85:55:11:a6:26:34:9f:22:
39:f7:d3:2e:de:63:58:1e:b6:30:75:98:d3:f7:a3:
ed:34:fb:d2:2e:c9:a0:6b:4f:c2:29:08:c4:5e:6a:
35:25:35:f1:ad:77:3b:d0:8d:86:b9:f0:2f:78:fa:
0c:f1:08:76:07:b8:cc:76:eb:84:38:37:57:a4:7b:
68:42:bb:09:1f:ef:31:75:5b:94:ed:0e:73:83:15:
12:4f:6a:75:30:f4:57:c3:ed:c4:18:d6:44:22:8c:
13:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:99:75:FB:1C:E0:90:91:2E:9D:C1:CF:67:0A:46:C3:38:4C:38:A2
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:3b:bf:c7:88:37:e6:6a:a7:c8:d3:d9:88:b2:dd:e6:55:b9:
6f:ac:67:08:84:db:f2:0b:ef:8c:63:0f:7c:f8:7a:cc:d9:e7:
ac:80:de:0c:8c:13:28:de:24:73:54:69:91:15:d1:1b:39:e3:
21:94:a5:2d:50:3e:d6:5f:df:80:7a:3a:8a:90:52:2c:13:55:
a1:d9:74:f3:57:05:a0:17:5e:2e:83:27:1c:62:b8:e2:15:f3:
60:a6:d0:65:c2:4a:bb:bd:ed:e6:ae:0b:af:51:af:b5:b3:69:
6a:43:71:24:d7:a1:e4:2d:b9:d1:52:eb:3e:e5:1c:a6:2b:cf:
55:a6:1d:c0:95:4f:3b:cb:54:b1:9f:fe:af:c6:ec:d2:0f:75:
96:7f:57:41:ff:92:a6:3c:73:0a:b1:fc:7f:75:a0:4e:5c:4e:
5a:16:11:be:9e:f7:3b:a3:2e:9f:f5:de:58:74:22:b0:21:07:
bf:90:65:62:ad:f4:f7:9f:48:f6:1c:35:37:d8:92:e7:4f:33:
f5:ed:b6:7d:e4:b0:0b:eb:83:5d:10:16:e7:0c:f5:96:74:31:
3a:68:0e:06:d3:ed:a1:e6:87:7b:58:ca:34:2f:86:2a:7c:95:
1a:54:43:7e:e9:05:26:0d:fc:e1:99:80:f3:ae:5c:16:6d:a4:
3f:fa:32:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:28:02 2026 by rpki-client