Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: Xg6fghVMBn3fq3eXScrIhdPGrJNIxLB/zYVNbyduE+s=
Subject key identifier: 98:CF:07:4A:91:9C:C9:8C:12:EA:2A:B6:A6:32:83:96:2F:1C:17:E5
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 019D39AF03A6BEA979B2170E5F4D37BBD1D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 1863
Signing time: Sun 29 Mar 2026 13:01:03 +0000
Manifest this update: Sun 29 Mar 2026 13:01:03 +0000
Manifest next update: Mon 30 Mar 2026 13:01:03 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: k0uJvH8+CW5edY5yfjzS19LFqoXkzxucY74VuLnL2vM=)
2: bfmoXJzoDdpM9K6Axg6RQ6PcK7A.roa (hash: z7weft+bC6v8Gp+CtsE+ZYXb+kZuusFeVfZLKQMSX24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:03:a6:be:a9:79:b2:17:0e:5f:4d:37:bb:d1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Mar 29 13:01:03 2026 GMT
Not After : Mar 30 13:01:03 2026 GMT
Subject: CN=98cf074a919cc98c12ea2ab6a63283962f1c17e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:47:7f:21:2c:d1:56:9a:2a:2e:72:ef:ae:6b:
64:65:f6:8a:b2:a9:c2:96:db:cc:f9:e8:bf:97:8e:
77:3c:b0:03:63:9d:e8:7c:d6:e1:22:7a:7a:42:36:
dc:97:25:01:00:35:de:f2:ee:02:2b:6d:38:5f:6d:
09:18:46:da:09:ea:e5:cd:27:6f:76:80:58:7d:c4:
be:ea:54:ff:ef:45:1e:43:28:1c:43:b6:3a:dd:16:
58:8d:1d:59:d4:aa:05:60:82:c7:0b:3f:72:69:9f:
23:5c:c2:1f:e3:6e:57:9e:de:ee:51:e4:bf:3e:75:
de:b6:70:76:ec:fc:b8:15:3a:95:ac:1d:58:4e:14:
7c:42:0a:82:88:16:ab:6f:ab:bb:0a:6e:a1:43:f2:
eb:ae:61:70:c0:05:1e:c3:c8:b2:09:70:c7:14:34:
61:36:ab:4a:40:9f:90:33:24:db:3f:95:01:da:de:
e3:55:2d:cb:c8:65:24:43:31:0a:12:29:d1:ca:56:
28:df:f4:68:3b:dc:47:bb:93:5f:a3:cd:5d:0e:1b:
c7:e4:9b:44:5b:e9:60:b4:e0:ff:a0:4a:36:6d:25:
ec:f3:b7:68:33:eb:2f:46:d2:1f:6d:0c:65:15:74:
fa:3b:5c:f6:4b:70:72:ce:c8:e6:0a:7e:e1:59:f6:
bb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CF:07:4A:91:9C:C9:8C:12:EA:2A:B6:A6:32:83:96:2F:1C:17:E5
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:f5:bf:aa:81:b7:0b:ea:29:aa:6b:ff:12:bf:bb:1b:d7:1a:
16:61:75:80:76:80:46:1f:bd:f1:bd:cf:ae:b3:d7:af:e9:b6:
d8:6f:48:dd:88:08:7b:c3:c1:d3:42:31:d7:57:53:ef:64:43:
d7:08:5f:c1:a1:d5:97:7a:cc:50:bb:3d:00:31:06:fb:17:ef:
c2:a4:d3:55:f8:b0:62:02:bc:62:4f:e9:d2:20:bf:b0:77:c5:
da:e8:fc:c8:19:76:f7:e7:9d:00:18:17:c2:35:ea:9c:c5:5f:
df:5e:1c:ca:60:1e:12:07:9a:de:41:46:2d:51:2a:7b:d0:12:
e7:56:d6:2f:9e:95:21:e0:80:32:5d:99:9d:44:97:cb:8a:ef:
cc:33:78:6d:ac:d7:84:1f:66:82:e8:9b:f5:a7:1b:8e:9c:20:
4d:90:b4:b0:32:cc:0f:c7:32:14:14:2c:fe:c5:41:c9:2b:62:
92:3a:50:0b:5f:52:58:77:b9:6b:fe:ca:8c:8c:0a:42:17:bd:
69:5f:b5:0e:ec:3e:d5:bc:35:ee:52:67:0c:cf:42:8e:af:3d:
65:f9:aa:1b:45:46:3a:47:78:af:b2:57:4c:75:37:cc:16:27:
3c:01:9a:2e:26:84:5f:74:6d:8a:c6:2f:2a:68:e5:f0:8e:92:
4d:a9:9d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:44:33 2026 by rpki-client