Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: 20pVufOfmRfQbSGLfMXn0tlyxnFBDCkcW0ebbTexwrs=
Subject key identifier: AC:85:A5:30:F3:EC:80:54:7E:51:5D:C6:CD:34:E5:BF:2A:BF:A2:A4
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 019E30E068F9CD12F12A93DC820FEA9AD2CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 18E3
Signing time: Sat 16 May 2026 13:01:13 +0000
Manifest this update: Sat 16 May 2026 13:01:13 +0000
Manifest next update: Sun 17 May 2026 13:01:13 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: WJ3Kb3tZiKN6SoEWRClzptKjyjMT1zwGRXBs0r4vNuw=)
2: bfmoXJzoDdpM9K6Axg6RQ6PcK7A.roa (hash: z7weft+bC6v8Gp+CtsE+ZYXb+kZuusFeVfZLKQMSX24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:68:f9:cd:12:f1:2a:93:dc:82:0f:ea:9a:d2:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: May 16 13:01:13 2026 GMT
Not After : May 17 13:01:13 2026 GMT
Subject: CN=ac85a530f3ec80547e515dc6cd34e5bf2abfa2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:be:41:64:4d:11:a9:9f:58:0e:8c:a4:b8:3d:
f6:47:a8:1a:25:5b:12:f2:da:6f:3d:72:c0:10:e2:
8d:53:d0:4a:27:95:b0:cd:f4:9d:2f:c3:f0:40:25:
bf:b6:38:b6:df:66:06:13:f8:02:6d:a4:55:41:6f:
a7:e7:bf:7b:d1:25:bb:37:24:0d:19:11:22:ce:8a:
df:71:11:56:5f:16:39:56:33:68:02:05:74:ba:1d:
51:89:f4:40:e0:f6:0e:8a:45:09:a7:6c:73:a6:47:
bf:38:ef:58:83:01:17:c3:63:97:e1:b2:fe:de:1c:
c5:36:8a:32:30:a9:76:c4:f6:14:7f:0a:32:7d:51:
67:1a:0f:e4:92:89:b5:8e:88:d1:52:46:13:dd:9e:
80:98:4a:91:a4:2e:fc:72:6b:44:f4:b9:97:13:76:
ee:69:a3:64:55:72:ab:9f:f4:11:b3:43:c7:85:bc:
4b:1f:19:99:79:75:e5:0b:87:23:a7:08:5b:73:c4:
35:bf:b9:32:41:1b:b3:f7:c6:fe:d9:2e:10:f5:91:
b6:b0:59:5f:76:20:2f:44:d1:e0:65:4a:7b:2b:a9:
85:84:9d:02:a2:82:cd:fe:4a:e4:9f:e3:5a:b7:a3:
4b:8c:94:d5:c7:98:17:46:c0:3d:17:60:4d:c9:33:
bd:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:85:A5:30:F3:EC:80:54:7E:51:5D:C6:CD:34:E5:BF:2A:BF:A2:A4
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:34:79:95:32:3f:55:9d:88:5d:de:66:4b:f3:27:24:84:ab:
6e:9a:5a:4d:44:f1:e3:24:97:81:6a:9b:80:67:55:af:69:8c:
45:89:94:29:16:8c:f6:78:04:a8:6b:84:f3:ae:83:82:fe:bd:
2e:c7:c2:8b:b1:1f:c7:7a:f2:d7:42:53:40:b3:4d:7c:3a:c6:
8b:b2:fc:7e:25:de:a4:ac:cc:9e:9d:12:28:df:14:6c:8b:19:
18:79:de:03:53:b1:10:e4:77:f5:76:05:c8:72:fb:68:cd:6d:
e3:d2:a4:61:3d:1f:62:19:7c:c5:04:1a:b9:29:24:4c:9a:20:
e3:59:e6:d3:41:7d:23:44:e7:d1:9e:4b:f2:31:5d:cf:f4:29:
6a:62:46:c9:82:1b:3a:93:37:89:ca:16:ae:bb:75:10:e8:6a:
6b:80:ef:cb:8d:1b:ef:a7:0c:a0:f3:6f:ab:72:8a:1d:49:40:
3a:2e:dd:5c:84:b0:6e:ea:84:fb:ab:a0:d5:9b:4f:ae:54:6d:
97:01:6f:b6:2c:4e:bb:38:15:f5:b6:7d:fa:28:16:2d:8d:b6:
6a:55:db:8f:37:f5:a9:5e:57:fd:17:08:84:0a:81:0b:6c:bc:
ec:4b:56:8e:45:04:90:e4:87:fa:b8:f2:f0:b5:93:23:d4:25:
84:fe:e3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:35:28 2026 by rpki-client