Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
File: 4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft (raw, json)
Hash identifier: FxrlBuHSDY8CQMSYFr+4S1CD5Wa5P4N6YAGIAiLziBY=
Subject key identifier: 5D:45:75:67:2E:BA:20:AC:D0:A9:53:5A:5D:EE:55:B1:AE:DF:CD:AF
Authority key identifier: E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C
Certificate issuer: /CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
Certificate serial: 019CE290C97290C9163D674E5A5A83B48258
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
Manifest number: 0C64
Signing time: Thu 12 Mar 2026 15:01:05 +0000
Manifest this update: Thu 12 Mar 2026 15:01:05 +0000
Manifest next update: Fri 13 Mar 2026 15:01:05 +0000
Files and hashes: 1: 4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl (hash: R+ywcm4qCr21T9fNqG/l42GSYVlJW22S7lixHfKVxLc=)
2: xdfHz51H2U_drRVl99FgU2CFlPQ.roa (hash: BLDc4xOeEFuPu6EvzSRPfHwGo2Y4vTDZuLs9dGjD79Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:90:c9:72:90:c9:16:3d:67:4e:5a:5a:83:b4:82:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e00a6f2e633fcf3adef8725cc5be0ea7915dd40c
Validity
Not Before: Mar 12 15:01:05 2026 GMT
Not After : Mar 13 15:01:05 2026 GMT
Subject: CN=5d4575672eba20acd0a9535a5dee55b1aedfcdaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ba:3e:64:59:5c:54:f8:6f:c8:a6:b9:bb:ac:
4e:92:ab:f5:8a:81:b0:a3:30:47:a6:54:b4:0f:c3:
ad:f1:39:a9:50:cb:48:78:9a:4c:da:cb:96:82:49:
52:e4:dd:27:68:ab:2c:69:88:2f:0b:54:88:f3:c4:
2b:8f:3e:f4:af:c3:5f:42:62:ae:be:78:35:a9:85:
b9:e3:90:c1:e8:5e:4a:13:03:2a:25:3b:fe:9a:58:
47:cb:74:79:ec:46:4c:f0:0b:5a:f2:7b:fe:68:24:
f5:86:df:5e:a3:7d:e4:01:b1:50:04:bc:13:70:4e:
e2:95:d1:3e:2c:bf:40:ff:91:e1:0e:40:66:55:17:
96:0c:9e:f7:78:1e:eb:73:e6:9b:22:b1:36:81:61:
1a:31:d6:c4:59:72:56:96:3c:1f:84:48:39:27:3b:
b0:ec:50:d5:00:98:bd:7a:0e:6e:6a:35:20:30:61:
43:04:5e:2f:9f:1a:6a:58:58:d1:84:b3:09:ff:2f:
71:96:f9:3b:53:3e:bc:4c:15:a7:a0:47:9e:92:73:
89:24:2e:2c:e1:32:e9:c4:39:8e:9a:f9:fa:b5:d0:
e1:13:9f:97:8d:3b:21:96:7f:b2:61:a2:4b:52:dd:
20:06:47:bc:e4:dd:2d:91:43:32:bf:ab:ea:38:94:
05:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:45:75:67:2E:BA:20:AC:D0:A9:53:5A:5D:EE:55:B1:AE:DF:CD:AF
X509v3 Authority Key Identifier:
keyid:E0:0A:6F:2E:63:3F:CF:3A:DE:F8:72:5C:C5:BE:0E:A7:91:5D:D4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c0443e-9608-4196-9625-d096f1e25e97/1/4ApvLmM_zzre-HJcxb4Op5Fd1Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:85:9f:fc:a0:1d:a6:70:8f:9e:64:2b:7d:a1:35:eb:9f:b0:
32:44:f2:71:89:72:38:4c:63:0e:f6:ff:b9:ca:76:4e:e6:76:
80:fe:51:ac:cf:63:dc:88:fd:3d:17:50:a5:26:1a:9a:82:8b:
aa:34:07:aa:ac:ac:ac:ad:29:ac:42:44:9f:77:60:7a:43:71:
69:66:e4:43:4f:ff:5a:62:ec:7a:f0:8a:0e:e8:81:e9:bd:cf:
8f:a5:d2:5c:31:c3:89:08:cb:17:fd:ff:5c:05:fe:2a:96:e2:
12:67:e8:cb:58:47:9d:eb:94:1d:c4:fb:3a:16:c9:2b:d8:74:
5f:0d:b7:6c:89:7e:0d:84:80:29:d9:06:53:4c:4d:69:cc:3a:
aa:08:68:45:90:95:1a:8f:dd:1d:04:3f:67:20:2f:6a:41:ba:
60:0d:a6:d3:7d:fd:12:b4:c2:8d:3e:ff:25:4e:7d:74:6b:19:
6e:71:c9:31:1e:5e:8c:ed:d9:3b:1a:1e:70:c3:56:0b:42:51:
ac:ff:75:a6:5b:40:b6:48:27:23:01:cc:04:95:15:24:2d:14:
85:87:30:23:40:85:c3:bb:76:fc:83:95:e7:d7:08:15:05:c8:
12:4d:4e:d1:bb:10:d4:bd:1b:fa:44:15:12:6a:24:e4:9d:82:
28:99:1b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 23:32:01 2026 by rpki-client