Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
File: 4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft (raw, json)
Hash identifier: d+jTkMvmDvnY2q6s1Fz8d1u1JPhigg/X0zDQ2isxGig=
Subject key identifier: 5F:14:EB:6B:21:E1:BE:CE:94:E6:CB:B6:59:93:39:F8:21:0E:72:D5
Authority key identifier: E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C
Certificate issuer: /CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
Certificate serial: 019DCE2B431F9CD84A04153806E1270B15C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
Manifest number: 0CDE
Signing time: Mon 27 Apr 2026 09:00:34 +0000
Manifest this update: Mon 27 Apr 2026 09:00:34 +0000
Manifest next update: Tue 28 Apr 2026 09:00:34 +0000
Files and hashes: 1: 4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl (hash: QluaP3rjo1wGkpch86gzBA4AWBy+0plrxvw/fx2Kk2M=)
2: xdfHz51H2U_drRVl99FgU2CFlPQ.roa (hash: BLDc4xOeEFuPu6EvzSRPfHwGo2Y4vTDZuLs9dGjD79Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:43:1f:9c:d8:4a:04:15:38:06:e1:27:0b:15:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
Validity
Not Before: Apr 27 09:00:34 2026 GMT
Not After : Apr 28 09:00:34 2026 GMT
Subject: CN=5f14eb6b21e1bece94e6cbb6599339f8210e72d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8d:fb:d0:91:bb:42:41:03:4f:9b:5f:33:28:
2b:51:b8:54:df:19:7c:1d:d4:aa:c7:74:61:ca:f1:
be:24:43:a7:51:aa:32:d7:31:65:9f:94:89:ea:0c:
21:86:5d:b9:7c:21:c9:5a:ef:32:87:26:05:6e:6f:
a6:71:bd:74:50:90:28:a4:c6:72:d8:eb:ab:91:66:
53:9c:a6:e9:a5:21:db:f4:d8:8f:00:91:9c:35:3f:
08:b6:7e:a4:42:83:90:09:41:da:67:39:0d:b7:9d:
92:18:c3:fb:c0:0d:89:53:ae:00:59:17:c1:4e:d5:
d3:7b:38:0d:5f:bd:49:54:59:a7:0d:c3:2f:7c:d0:
fe:93:bf:86:86:ae:b4:c5:7f:47:f1:28:34:63:2d:
92:3b:28:96:41:ec:87:51:e7:e1:42:14:e2:1d:5f:
8a:bc:2f:c4:36:1a:29:08:0b:85:90:c9:f8:d0:7a:
7e:a8:d9:7d:cf:9f:cf:05:cb:09:d6:dc:0e:5e:b3:
1a:d1:86:2d:8e:38:f0:5e:1e:59:c1:82:b5:34:d9:
36:47:f2:ad:27:68:72:d9:9e:24:67:76:9c:35:9b:
4f:ae:67:20:6e:39:4d:e9:cc:c7:05:33:f9:c3:d7:
49:b0:94:03:c3:da:5c:91:15:66:a6:d4:be:06:f2:
9d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:14:EB:6B:21:E1:BE:CE:94:E6:CB:B6:59:93:39:F8:21:0E:72:D5
X509v3 Authority Key Identifier:
keyid:E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:23:fd:cd:f2:0e:03:c7:36:e6:03:52:26:e9:aa:e1:f0:1b:
ad:44:df:a3:d0:1a:44:92:b7:4b:d9:01:fd:d2:95:5c:b0:c1:
e5:d8:9d:92:5b:5b:20:a0:68:37:a8:b7:31:b2:3e:b1:78:74:
5d:4a:0d:c3:0a:52:86:c3:c8:a5:65:7a:9a:46:7b:e0:c7:38:
3a:7e:57:1b:a1:ab:b8:9f:f9:5e:af:54:55:49:96:ce:cf:d3:
3e:e1:ca:8f:de:ab:c8:61:20:98:76:c8:b7:95:6b:3c:fa:83:
62:7f:7e:d1:7f:92:9b:dd:23:f1:b6:4f:8e:8a:ee:9f:a3:76:
b2:10:bb:87:b8:3d:f2:06:a1:1c:c8:27:78:ce:95:9a:b0:b2:
28:f2:ca:d1:11:9a:c2:83:8d:7c:f1:0e:90:a4:3a:71:80:5f:
49:a3:4b:d0:27:d7:6a:aa:a4:e1:38:1d:eb:a5:ae:4f:ba:bc:
03:c2:8d:20:18:9a:80:13:81:fc:a7:ba:6a:2e:69:a0:91:1c:
22:99:a0:a6:75:7e:a0:3a:14:50:d1:44:a1:4b:48:0d:a3:eb:
eb:0c:61:45:da:69:f5:c9:f8:74:6e:79:c1:4b:ef:d2:10:3a:
45:6c:0d:65:85:7b:a1:ae:a6:52:4c:4a:09:a2:19:ae:57:e9:
c6:62:4a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 13:26:41 2026 by rpki-client