Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
File: 4sFE7jL911AT5_G4wtgH09rti74.mft (raw, json)
Hash identifier: Me5ADDqG1+hvpQLN+PbLaL/t7T60StmUFaZWs7eBGOk=
Subject key identifier: 53:2D:9A:91:C6:A6:8B:4D:88:56:32:78:6B:EE:06:FA:04:21:E7:8E
Authority key identifier: E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
Certificate issuer: /CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Certificate serial: 019D37C0A674A6A84163C7BDB7BE26DF4AFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:01:05 +0000
Manifest this update: Sun 29 Mar 2026 04:01:05 +0000
Manifest next update: Mon 30 Mar 2026 04:01:05 +0000
Files and hashes: 1: 4sFE7jL911AT5_G4wtgH09rti74.crl (hash: upEd1oijjt2ztAkdC0HLmfuCGrxv6W2e0H/WPmR41ak=)
2: qimpL4GnPOyoUuwHADETW2Ca-BA.roa (hash: 1Q13z0RPNiBFNEdoqsP4b2RZwfD+sGSDYlp0PmV8cak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a6:74:a6:a8:41:63:c7:bd:b7:be:26:df:4a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Validity
Not Before: Mar 29 04:01:05 2026 GMT
Not After : Mar 30 04:01:05 2026 GMT
Subject: CN=532d9a91c6a68b4d885632786bee06fa0421e78e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e1:33:ed:ca:69:6b:32:f6:d9:cc:4c:04:da:
53:a9:d3:fd:c6:77:a0:88:ae:c3:b4:e2:31:9a:6f:
d4:4f:9b:f2:58:55:6c:8f:a1:7f:fc:15:25:09:4e:
29:c5:9a:70:1e:c1:78:30:e9:a7:91:38:9f:7b:b6:
c1:59:bb:1d:02:51:c3:b9:94:ae:ac:6f:ac:44:c1:
f9:7a:8a:6d:df:2e:25:ab:9c:90:17:65:fb:81:e4:
84:9d:24:c1:3c:4a:ba:1f:ea:23:a3:9c:db:3e:4b:
2e:1f:b7:c0:66:73:40:df:d1:a9:c7:4f:5f:44:b9:
36:22:5b:4d:be:79:dd:c8:81:14:82:e3:8a:43:d8:
92:58:50:1e:e2:a8:59:fa:de:76:97:ea:95:07:86:
06:f0:cd:24:d0:fd:13:21:2b:64:7a:ae:2a:d2:7e:
7c:ef:1a:51:ad:38:13:20:7d:19:69:cd:fb:8e:1d:
75:71:28:22:bb:c2:ca:be:0f:69:4d:ee:9b:c1:83:
84:41:19:38:2b:4d:c8:99:3d:23:9d:29:3e:61:fa:
da:d7:63:d4:c6:76:1f:2f:45:2d:06:0a:96:9a:88:
15:e9:0c:68:05:0a:7d:d2:81:b7:cd:9a:0b:66:fb:
b7:b4:64:d0:9a:60:1f:08:1f:4b:57:3a:4b:4b:92:
f4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2D:9A:91:C6:A6:8B:4D:88:56:32:78:6B:EE:06:FA:04:21:E7:8E
X509v3 Authority Key Identifier:
keyid:E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:df:c9:65:97:c7:1a:53:06:01:2c:02:91:82:16:63:d2:fa:
79:f2:e5:12:2a:b1:15:2d:20:93:57:21:eb:aa:b1:03:58:e8:
0e:4b:db:94:e8:26:a6:4c:0d:10:05:8a:0b:3a:72:07:9e:3b:
12:0e:a3:26:61:24:ae:b3:8e:4e:77:4d:3d:c4:15:f4:47:a3:
d4:e9:f7:18:23:49:82:31:4c:4a:7e:34:21:87:dc:66:7d:08:
ff:24:4a:17:a1:3b:50:19:ec:3b:bc:96:ea:6d:ca:e4:d8:6b:
11:60:a7:46:0c:7a:82:bc:60:ad:4f:73:8b:c1:8d:71:32:fb:
93:ba:98:13:fd:d6:5f:7a:de:95:4d:38:ba:26:28:d9:e7:29:
9a:d2:44:8c:7b:42:2b:6b:78:46:3c:68:45:a6:fc:5d:d4:1c:
d7:bf:35:ee:cd:47:8e:d4:2d:2b:eb:20:61:e5:f6:49:4c:33:
30:e6:56:ae:b7:9d:c7:e8:7c:e2:0d:3f:5d:7e:17:03:b0:f2:
c5:8c:17:6e:34:ec:e0:eb:66:39:e0:5f:4c:4b:e2:57:b1:a4:
bf:4a:b5:5b:2a:e4:d1:22:f9:5a:3c:c7:d5:ca:64:f7:be:c0:
37:f6:4c:83:a4:24:b5:92:94:d0:95:62:c5:75:07:45:bf:81:
af:96:16:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wKZ0pqhBY8e9t74m30r6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzE0NGVlMzJmZGQ3NTAxM2U3ZjFiOGMyZDgwN2QzZGFl
ZDhiYmUwHhcNMjYwMzI5MDQwMTA1WhcNMjYwMzMwMDQwMTA1WjAzMTEwLwYDVQQD
Eyg1MzJkOWE5MWM2YTY4YjRkODg1NjMyNzg2YmVlMDZmYTA0MjFlNzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+Ez7cppazL22cxMBNpTqdP9xneg
iK7DtOIxmm/UT5vyWFVsj6F//BUlCU4pxZpwHsF4MOmnkTife7bBWbsdAlHDuZSu
rG+sRMH5eopt3y4lq5yQF2X7geSEnSTBPEq6H+ojo5zbPksuH7fAZnNA39Gpx09f
RLk2IltNvnndyIEUguOKQ9iSWFAe4qhZ+t52l+qVB4YG8M0k0P0TIStkeq4q0n58
7xpRrTgTIH0Zac37jh11cSgiu8LKvg9pTe6bwYOEQRk4K03ImT0jnSk+Yfra12PU
xnYfL0UtBgqWmogV6QxoBQp90oG3zZoLZvu3tGTQmmAfCB9LVzpLS5L0YQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMtmpHGpotNiFYyeGvuBvoEIeeOMB8GA1UdIwQY
MBaAFOLBRO4y/ddQE+fxuMLYB9Pa7Yu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNGRTdqTDkxMUFUNV9HNHd0Z0gwOXJ0aTc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC81OWUxNGUtNDE1Zi00MDFhLWFkY2Ut
ZTFkZjQ1OTgwYzc4LzEvNHNGRTdqTDkxMUFUNV9HNHd0Z0gwOXJ0aTc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC81OWUxNGUtNDE1Zi00MDFhLWFkY2UtZTFkZjQ1OTgwYzc4
LzEvNHNGRTdqTDkxMUFUNV9HNHd0Z0gwOXJ0aTc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh9/JZZfH
GlMGASwCkYIWY9L6efLlEiqxFS0gk1ch66qxA1joDkvblOgmpkwNEAWKCzpyB547
Eg6jJmEkrrOOTndNPcQV9Eej1On3GCNJgjFMSn40IYfcZn0I/yRKF6E7UBnsO7yW
6m3K5NhrEWCnRgx6grxgrU9zi8GNcTL7k7qYE/3WX3relU04uiYo2ecpmtJEjHtC
K2t4RjxoRab8XdQc17817s1HjtQtK+sgYeX2SUwzMOZWrredx+h84g0/XX4XA7Dy
xYwXbjTs4OtmOeBfTEviV7Gkv0q1Wyrk0SL5WjzH1cpk977AN/ZMg6QktZKU0JVi
xXUHRb+Br5YWFQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:03 2026 by rpki-client