Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
File: 4N8zRFExdiUqLLaQvPcF1kmBEfU.mft (raw, json)
Hash identifier: oy0wkzqMg805aYoiXm6U4caSpJUFhsX2L+foXaPtfwA=
Subject key identifier: 0E:81:A7:36:7A:26:A0:2C:93:65:6B:71:69:DE:42:56:42:C8:F2:7C
Authority key identifier: E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5
Certificate issuer: /CN=e0df3344513176252a2cb690bcf705d6498111f5
Certificate serial: 019D382E82546237013B336EA6DF6C3B9D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
Manifest number: 0BAA
Signing time: Sun 29 Mar 2026 06:01:05 +0000
Manifest this update: Sun 29 Mar 2026 06:01:05 +0000
Manifest next update: Mon 30 Mar 2026 06:01:05 +0000
Files and hashes: 1: 4N8zRFExdiUqLLaQvPcF1kmBEfU.crl (hash: VjoUC3C2Ild9XJCAjPIuud0Zwve8Sl+Psv5luKbyQ84=)
2: G_3AbkBvxlIP88eiGt3CS6nBjms.roa (hash: HxmAkTnKX1MXFmf40b0A8DoHMlH+AhQxL52OcvMUs9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:82:54:62:37:01:3b:33:6e:a6:df:6c:3b:9d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0df3344513176252a2cb690bcf705d6498111f5
Validity
Not Before: Mar 29 06:01:05 2026 GMT
Not After : Mar 30 06:01:05 2026 GMT
Subject: CN=0e81a7367a26a02c93656b7169de425642c8f27c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f0:f2:c0:81:74:9b:8f:21:45:01:62:80:38:
b9:5a:ac:84:89:da:02:ba:b7:4f:ca:72:cb:a7:71:
6b:c9:20:4c:82:b7:14:c8:73:b6:6a:ca:75:5e:a1:
e0:e7:8d:fb:21:ff:6c:5d:1a:1b:18:f1:a4:d3:5a:
6e:da:85:52:f5:db:3c:e5:a0:0d:db:f2:0d:3b:bf:
3d:16:b2:42:e1:ea:55:b3:63:a8:a2:57:34:f2:b4:
38:fc:01:ff:96:a0:08:07:27:6c:5f:0a:ac:6b:ee:
cf:5c:ff:bd:71:16:b2:7a:09:87:79:cc:e6:3d:e1:
cc:de:2b:fe:ae:be:4e:f2:9a:8b:0f:d7:f5:62:34:
c6:c6:43:78:99:f9:73:31:bb:d0:13:fb:7f:21:c8:
75:7e:d7:18:2c:af:73:ae:bf:3d:63:bd:73:47:6b:
7f:ef:b7:1e:e4:a4:e7:30:9d:73:19:7e:f0:1b:2c:
7b:60:39:ab:0c:55:27:5d:c2:87:6a:b6:fd:9f:a4:
50:df:21:d7:bc:de:1b:4f:08:6d:35:5f:17:84:19:
1f:18:5f:f8:8c:ab:cb:52:6c:13:ab:35:6c:d3:65:
11:94:21:ce:a1:fe:73:32:b8:db:47:78:0c:c3:fd:
68:9a:56:6a:fe:f7:ba:64:16:19:21:58:36:a4:ba:
19:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:81:A7:36:7A:26:A0:2C:93:65:6B:71:69:DE:42:56:42:C8:F2:7C
X509v3 Authority Key Identifier:
keyid:E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b8:fb:de:5c:a9:b5:7f:f9:5a:e5:1e:da:aa:e2:4c:23:6a:
0a:c0:0a:ea:bb:d9:f1:08:cd:0d:2d:9d:2b:f2:76:71:a9:6e:
1b:3f:84:e1:dd:34:84:4b:a7:80:da:74:30:a0:72:30:d3:7c:
7b:65:f9:08:19:be:49:47:ea:e3:43:8e:b9:49:5e:8d:5a:d3:
10:51:ab:0b:3d:09:3b:87:cd:20:c5:45:ea:e0:f3:a5:36:5f:
16:da:14:17:d7:55:83:e5:3c:e4:96:6b:29:5a:f5:bd:df:37:
0b:9b:f7:66:99:27:51:e8:05:5b:3b:5a:8c:de:c5:77:47:9b:
b8:45:f3:88:94:ff:fe:95:f1:c5:9c:7f:87:f6:f8:ce:79:86:
e3:ea:b3:e7:2e:22:a8:46:38:66:b3:8a:21:7a:95:77:73:e2:
db:0c:31:a6:7a:ca:e0:d2:b6:5b:3f:a7:de:77:1a:27:9e:98:
7c:2e:e1:bf:c1:31:56:20:6e:8c:0e:73:28:23:30:f7:3b:f4:
ea:0e:5b:25:bb:a3:ab:d7:9f:c5:02:ce:97:1c:2c:e0:64:fa:
6d:c6:39:0a:99:bb:7f:ca:98:09:4d:14:f4:b1:ed:d5:39:57:
b5:cf:e9:64:e6:b3:95:bf:d8:89:9e:20:69:d0:54:8e:de:d7:
86:76:ad:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LoJUYjcBOzNupt9sO51VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZGYzMzQ0NTEzMTc2MjUyYTJjYjY5MGJjZjcwNWQ2NDk4
MTExZjUwHhcNMjYwMzI5MDYwMTA1WhcNMjYwMzMwMDYwMTA1WjAzMTEwLwYDVQQD
EygwZTgxYTczNjdhMjZhMDJjOTM2NTZiNzE2OWRlNDI1NjQyYzhmMjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPDywIF0m48hRQFigDi5WqyEidoC
urdPynLLp3FrySBMgrcUyHO2asp1XqHg5437If9sXRobGPGk01pu2oVS9ds85aAN
2/INO789FrJC4epVs2Ooolc08rQ4/AH/lqAIBydsXwqsa+7PXP+9cRayegmHeczm
PeHM3iv+rr5O8pqLD9f1YjTGxkN4mflzMbvQE/t/Ich1ftcYLK9zrr89Y71zR2t/
77ce5KTnMJ1zGX7wGyx7YDmrDFUnXcKHarb9n6RQ3yHXvN4bTwhtNV8XhBkfGF/4
jKvLUmwTqzVs02URlCHOof5zMrjbR3gMw/1omlZq/ve6ZBYZIVg2pLoZhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6BpzZ6JqAsk2VrcWneQlZCyPJ8MB8GA1UdIwQY
MBaAFODfM0RRMXYlKiy2kLz3BdZJgRH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9jYzNiNmUtYjc0OS00NWYxLWE4Njgt
MjVlMjFjOWU3ZGU5LzEvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9jYzNiNmUtYjc0OS00NWYxLWE4NjgtMjVlMjFjOWU3ZGU5
LzEvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFrj73lyp
tX/5WuUe2qriTCNqCsAK6rvZ8QjNDS2dK/J2caluGz+E4d00hEungNp0MKByMNN8
e2X5CBm+SUfq40OOuUlejVrTEFGrCz0JO4fNIMVF6uDzpTZfFtoUF9dVg+U85JZr
KVr1vd83C5v3ZpknUegFWztajN7Fd0ebuEXziJT//pXxxZx/h/b4znmG4+qz5y4i
qEY4ZrOKIXqVd3Pi2wwxpnrK4NK2Wz+n3ncaJ56YfC7hv8ExViBujA5zKCMw9zv0
6g5bJbujq9efxQLOlxws4GT6bcY5Cpm7f8qYCU0U9LHt1TlXtc/pZOazlb/YiZ4g
adBUjt7XhnatoQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:47 2026 by rpki-client