Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: ThwLc8ym9xprf96p1fFQDC797MnNKICOB/kC9Hq/l0k=
Subject key identifier: 5D:10:30:C9:01:70:13:DB:C7:13:9D:5A:57:4D:76:07:91:0A:C1:F8
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 019D3865B37C4ECD61FA4D06137FE02CA6D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 1124
Signing time: Sun 29 Mar 2026 07:01:22 +0000
Manifest this update: Sun 29 Mar 2026 07:01:22 +0000
Manifest next update: Mon 30 Mar 2026 07:01:22 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: WPU1hPQF+YnTRA9ybWdZ1ouiKkbi4qMyZ7rBsLrQ0Bg=)
2: Q_JnpghBEdCLh0xBHJB-tx_t2gw.roa (hash: Ab9wt6TXLrpI0IOi098sXRGVv7NV4z8Pe9YK/pyc2Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:b3:7c:4e:cd:61:fa:4d:06:13:7f:e0:2c:a6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Mar 29 07:01:22 2026 GMT
Not After : Mar 30 07:01:22 2026 GMT
Subject: CN=5d1030c9017013dbc7139d5a574d7607910ac1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:73:a4:cc:41:63:cc:65:9a:eb:16:ad:8d:0b:
35:fe:16:f4:88:e7:3c:e3:65:fb:3e:4d:bf:a6:c5:
e0:91:9b:c0:e3:62:51:fd:4e:e2:07:a5:50:1a:6e:
bd:73:57:f9:42:6a:3c:dd:97:33:27:26:19:36:f3:
56:ba:f7:ae:09:d9:7e:b4:ce:9e:f0:13:3b:72:8d:
5e:04:02:bd:f8:2c:6b:e4:fc:a3:84:06:70:54:0b:
39:f3:69:dd:d8:5c:68:8e:e1:e0:4b:a2:a9:e7:f4:
82:da:9e:de:cb:54:7b:b2:ed:5d:c4:7d:d7:c1:34:
85:0a:00:a9:75:2f:11:15:0e:cf:94:3a:1b:9a:42:
94:f9:88:a9:f0:ec:20:d7:2f:94:4b:e4:21:21:fc:
98:f6:6e:8a:ed:f8:92:28:3a:a0:dd:69:6e:f8:31:
05:c5:b3:98:e6:f1:43:f0:a7:a6:cb:f8:ee:66:09:
3d:87:34:15:c9:0e:25:f4:71:bb:97:60:a3:33:38:
a0:3f:cd:09:ef:fb:b2:02:b8:97:8a:e0:1d:62:6b:
e8:82:4d:99:2c:14:49:65:3a:e2:ca:0d:eb:e2:50:
33:5a:11:2b:4c:ce:82:b4:26:e0:75:ca:74:d8:33:
61:a1:8d:41:c5:83:69:5d:37:49:d2:6e:1e:b8:73:
a2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:10:30:C9:01:70:13:DB:C7:13:9D:5A:57:4D:76:07:91:0A:C1:F8
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:fe:97:49:85:82:17:a1:8a:01:a6:86:90:1f:4a:34:1a:23:
2e:f6:03:80:78:bb:f0:79:dd:cc:04:78:50:83:93:d6:2a:bd:
c5:a5:9a:ee:2f:b5:f4:38:0a:11:45:99:18:42:ff:95:41:a4:
4a:c1:cd:1f:03:91:2a:a2:ba:d8:1e:a6:c4:1a:24:3a:a4:76:
03:79:77:1e:bb:f7:b1:81:bc:33:ae:5c:d0:85:92:57:c9:f0:
f9:7c:95:ae:85:c7:50:e1:72:1e:98:04:23:43:28:3f:6f:5e:
44:c4:98:54:b2:d7:c4:b9:e8:0c:fb:77:4e:49:b4:5d:8f:f1:
dd:9c:e9:95:bf:81:73:40:cb:ba:f3:06:00:e5:41:ac:e6:16:
70:a4:17:d9:df:e7:93:b6:e9:5c:96:2a:54:04:f3:e9:84:05:
e0:39:ee:50:4e:f8:09:99:e4:0e:7d:93:2d:9f:25:10:66:35:
c7:0e:10:f7:b5:76:56:68:fe:58:f0:eb:b8:c4:c1:48:ab:1e:
30:ac:e3:18:8a:55:16:79:11:fe:55:84:ab:a7:61:77:b3:a5:
e2:60:5a:01:5f:c4:c4:c6:99:a6:d1:90:26:87:0f:c0:4b:10:
18:d8:4c:a7:4d:f3:4b:54:69:61:df:fb:0c:d9:d6:64:3f:80:
3f:54:5f:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZbN8Ts1h+k0GE3/gLKbSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyMDRhMWMyY2E0YTRkYjAzMzM3NWUzNjBkZTMyMzc5MGJh
NmE1YjkwHhcNMjYwMzI5MDcwMTIyWhcNMjYwMzMwMDcwMTIyWjAzMTEwLwYDVQQD
Eyg1ZDEwMzBjOTAxNzAxM2RiYzcxMzlkNWE1NzRkNzYwNzkxMGFjMWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonOkzEFjzGWa6xatjQs1/hb0iOc8
42X7Pk2/psXgkZvA42JR/U7iB6VQGm69c1f5Qmo83ZczJyYZNvNWuveuCdl+tM6e
8BM7co1eBAK9+Cxr5PyjhAZwVAs582nd2FxojuHgS6Kp5/SC2p7ey1R7su1dxH3X
wTSFCgCpdS8RFQ7PlDobmkKU+Yip8Owg1y+US+QhIfyY9m6K7fiSKDqg3Wlu+DEF
xbOY5vFD8Kemy/juZgk9hzQVyQ4l9HG7l2CjMzigP80J7/uyAriXiuAdYmvogk2Z
LBRJZTriyg3r4lAzWhErTM6CtCbgdcp02DNhoY1BxYNpXTdJ0m4euHOiCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF0QMMkBcBPbxxOdWldNdgeRCsH4MB8GA1UdIwQY
MBaAFOIEocLKSk2wMzdeNg3jI3kLpqW5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGIt
Y2Y0YmQ0ZjNmMjlkLzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGItY2Y0YmQ0ZjNmMjlk
LzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIf6XSYWC
F6GKAaaGkB9KNBojLvYDgHi78HndzAR4UIOT1iq9xaWa7i+19DgKEUWZGEL/lUGk
SsHNHwORKqK62B6mxBokOqR2A3l3Hrv3sYG8M65c0IWSV8nw+XyVroXHUOFyHpgE
I0MoP29eRMSYVLLXxLnoDPt3Tkm0XY/x3Zzplb+Bc0DLuvMGAOVBrOYWcKQX2d/n
k7bpXJYqVATz6YQF4DnuUE74CZnkDn2TLZ8lEGY1xw4Q97V2Vmj+WPDruMTBSKse
MKzjGIpVFnkR/lWEq6dhd7Ol4mBaAV/ExMaZptGQJocPwEsQGNhMp03zS1RpYd/7
DNnWZD+AP1RfLg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:33 2026 by rpki-client