Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: SN47ED5Bf9zxD8gzSqbKlU+YjeQbfvX2jmWoEn1qZgY=
Subject key identifier: F5:E9:99:62:BC:09:C7:D6:71:76:3F:6E:B8:C2:01:76:F7:2C:4F:6C
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 019F189E101B17D91F62BDAFC03D2D8C15FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 195B
Signing time: Tue 30 Jun 2026 13:00:39 +0000
Manifest this update: Tue 30 Jun 2026 13:00:39 +0000
Manifest next update: Wed 01 Jul 2026 13:00:39 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: uQiwtWS0zN4Z+6k8HsabQ5Ajid/mw/7/Mrkh9V2AgSA=)
2: bfmoXJzoDdpM9K6Axg6RQ6PcK7A.roa (hash: z7weft+bC6v8Gp+CtsE+ZYXb+kZuusFeVfZLKQMSX24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:10:1b:17:d9:1f:62:bd:af:c0:3d:2d:8c:15:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Jun 30 13:00:39 2026 GMT
Not After : Jul 1 13:00:39 2026 GMT
Subject: CN=f5e99962bc09c7d671763f6eb8c20176f72c4f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c5:dc:5d:4e:26:18:e7:f0:a8:cf:f6:18:f8:
a0:31:0e:e7:4f:27:cd:58:f1:0f:61:ee:4d:b4:52:
b9:8b:77:d1:a7:3e:d4:a2:1a:ec:ec:34:c7:c4:23:
71:0c:a6:d0:05:be:02:39:37:1f:8a:5e:9a:48:7a:
98:3f:82:73:32:03:54:60:c2:4f:9b:5c:bf:86:55:
60:65:89:41:cc:d2:d7:bc:0d:23:71:99:b8:96:84:
4b:f7:4b:3d:cf:8a:b6:c2:26:f5:d3:0b:34:48:f9:
bd:78:13:a9:dd:a3:3a:12:0a:29:b8:dd:cf:66:11:
5a:b9:75:b2:06:af:f6:d1:58:5c:cc:5d:e0:ac:3c:
97:55:11:ac:5b:bb:de:21:d4:70:9a:7b:06:13:a1:
b7:02:f4:58:4a:94:65:0d:ce:87:1d:ac:ed:bc:eb:
34:3b:a6:db:92:2e:80:00:80:3a:00:39:a3:e8:c4:
5f:30:05:61:d2:e7:0b:06:7a:0a:93:6c:94:36:b7:
73:e5:6d:26:9e:a3:0e:40:a4:11:1f:68:d7:ff:82:
20:65:29:3a:25:6b:8a:92:a5:47:b3:ec:73:ed:7c:
fa:b9:4d:5d:13:1f:7a:f4:26:88:3a:1c:d5:f4:10:
3c:1e:c3:6a:1a:56:f7:a3:0e:c7:71:93:e4:7e:84:
2b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E9:99:62:BC:09:C7:D6:71:76:3F:6E:B8:C2:01:76:F7:2C:4F:6C
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:99:4f:f1:28:c8:da:7d:3c:68:fd:0a:8d:3d:78:14:bc:a1:
01:d4:e4:fe:b3:1c:96:2f:bf:e0:12:3a:52:81:bb:a7:ec:fe:
f3:01:a8:72:5e:1b:8f:52:f2:8a:f2:00:a2:f0:eb:9a:80:9c:
9a:f6:9b:61:41:01:de:07:d6:2b:55:bf:8a:d8:8e:d4:77:35:
03:4c:b7:26:0b:e6:f5:a6:a5:24:94:d7:14:11:3a:94:29:d3:
eb:22:63:21:b2:3c:e6:5e:85:83:27:33:e1:26:f0:66:96:23:
49:1c:6e:28:be:cf:34:82:b9:38:c7:b3:f9:65:0f:3d:89:c5:
ac:91:f5:cd:6d:ad:87:26:4d:6f:1a:bd:cf:d9:8f:73:17:08:
7e:de:36:76:dd:c1:22:9e:4c:57:c4:b0:c5:69:55:63:45:18:
d4:fb:ab:48:63:91:74:80:68:d7:99:f9:49:5f:f9:81:9d:4a:
43:f6:64:db:06:73:6b:a6:27:12:6c:ac:56:67:4a:37:06:a3:
4c:bf:09:4f:d5:f6:95:32:1f:0b:b4:3a:bd:3a:a6:2f:dd:bc:
2d:ae:f0:c5:05:99:ce:b3:eb:52:83:2a:e3:f4:6c:df:28:3d:
e0:92:53:c8:35:47:b1:c5:1e:5f:e3:22:ab:e3:8b:bc:7a:f9:
71:e4:01:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:08:44 2026 by rpki-client