Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
File: 4N8zRFExdiUqLLaQvPcF1kmBEfU.mft (raw, json)
Hash identifier: ThI32LUPbD5HcSuHrC/tp6ylYX/CWQuVfiyrZP1heT8=
Subject key identifier: 10:56:06:6E:2F:15:E9:78:1D:C1:C2:FC:2D:17:71:5D:F9:16:2D:5B
Authority key identifier: E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5
Certificate issuer: /CN=e0df3344513176252a2cb690bcf705d6498111f5
Certificate serial: 019F190CB261EDDE95889F47ADF3CEB9B15B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
Manifest number: 0CA3
Signing time: Tue 30 Jun 2026 15:01:30 +0000
Manifest this update: Tue 30 Jun 2026 15:01:30 +0000
Manifest next update: Wed 01 Jul 2026 15:01:30 +0000
Files and hashes: 1: 4N8zRFExdiUqLLaQvPcF1kmBEfU.crl (hash: lwdbv/H2lH0XTsaujxT7+Wt+KXmxYRWNlvkF6sJIig8=)
2: G_3AbkBvxlIP88eiGt3CS6nBjms.roa (hash: HxmAkTnKX1MXFmf40b0A8DoHMlH+AhQxL52OcvMUs9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:b2:61:ed:de:95:88:9f:47:ad:f3:ce:b9:b1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0df3344513176252a2cb690bcf705d6498111f5
Validity
Not Before: Jun 30 15:01:30 2026 GMT
Not After : Jul 1 15:01:30 2026 GMT
Subject: CN=1056066e2f15e9781dc1c2fc2d17715df9162d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:29:26:5b:51:40:5e:f2:c4:58:bf:35:a3:
e7:d3:c5:0a:4b:ff:5f:24:6b:9d:14:62:2d:9a:f7:
fd:17:c4:48:58:e8:27:87:6b:16:c0:bf:19:f5:05:
99:3d:87:06:d0:b5:92:e0:02:e8:8f:57:71:2a:92:
9b:5e:68:02:2e:bb:c6:31:c9:99:a0:ee:12:3c:ee:
a7:65:07:28:e5:99:9a:a1:d9:03:53:b5:57:25:d8:
8d:8d:29:2b:de:a3:31:dd:9a:9c:38:6b:69:3a:c6:
61:be:d3:a6:c7:1a:e8:4f:8f:b3:04:0d:18:a5:d6:
27:6e:4b:a9:b0:51:f5:5e:7c:82:49:24:1f:78:5c:
8a:62:b0:c0:96:b6:23:69:62:28:f8:ff:e8:28:03:
fe:93:73:6f:b8:68:47:c3:bc:76:fc:39:3c:3b:9e:
2f:a4:1b:23:8c:84:b9:04:ec:7f:71:9f:d8:09:46:
48:93:a1:b1:fb:7e:29:d3:24:b0:5d:03:25:4c:4a:
8e:9e:a1:56:75:50:45:14:aa:eb:20:46:54:0a:ee:
38:60:79:f6:31:ad:a0:1a:9a:70:9e:b2:3a:6d:ce:
68:ff:cb:08:87:9e:ce:91:1c:e4:30:4c:18:52:d7:
cd:ba:45:73:af:38:c8:e9:0f:ab:07:0d:1e:9e:52:
79:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:56:06:6E:2F:15:E9:78:1D:C1:C2:FC:2D:17:71:5D:F9:16:2D:5B
X509v3 Authority Key Identifier:
keyid:E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:1e:44:56:85:c7:2a:8e:52:c0:55:94:2b:21:05:30:59:82:
14:a6:8a:48:72:ad:0b:62:10:a1:9a:06:57:1a:59:f2:86:10:
22:de:21:c4:65:41:1e:9e:c1:38:f1:db:4f:62:0d:0c:08:81:
1c:27:03:44:b9:1d:83:47:6d:d4:c5:c9:f7:ac:45:36:71:70:
7c:e9:af:2e:ff:d8:02:a6:aa:5f:a4:81:d0:f0:dc:4b:2d:6f:
1d:f6:0f:82:96:72:79:95:16:3e:53:7e:d1:b7:a0:68:22:64:
d5:0a:78:bb:ff:4d:6e:91:9f:e1:ba:38:ef:6d:c7:70:d6:7a:
38:c0:99:a3:15:30:72:5e:0b:cf:ed:a8:41:eb:6d:e3:7e:50:
b1:5b:be:35:ee:ee:4b:ca:a3:84:d2:50:ff:ac:39:48:a6:10:
c6:d0:bc:1b:b9:f5:1c:a6:2a:2a:d4:93:79:ea:ba:e0:d6:9d:
21:a5:c1:c2:6a:d1:79:fc:7f:f7:94:b4:d2:d2:08:fc:c1:5b:
e5:74:04:b7:fb:9a:a4:bb:6d:55:9c:30:b9:ab:06:ef:01:e7:
14:86:9c:3e:51:a4:fa:15:42:03:7b:52:c8:c1:9e:76:fe:6e:
42:a0:27:7a:66:04:5f:ef:29:01:c9:de:5b:0b:19:8d:96:1c:
93:31:b9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:17:26 2026 by rpki-client