Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: NI6NiaZSy+hL/8UM/78rO5FCw+VBTovOSvj7nbuvLMQ=
Subject key identifier: FA:2C:EE:CD:78:06:78:7E:41:EC:22:6A:24:EF:53:51:DE:BD:10:FA
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 019E303BB9E53FDFC4153BD37DBCBC945F6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 1916
Signing time: Sat 16 May 2026 10:01:20 +0000
Manifest this update: Sat 16 May 2026 10:01:20 +0000
Manifest next update: Sun 17 May 2026 10:01:20 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: CK+DHnpGKyBZ2S/wLKLc7tBTV7iez/bs0O5l+58jjEM=)
2: D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa (hash: kVx9KqwTwAznM+coaQfniQbA9ErAhmA+cdao1OKFFKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:b9:e5:3f:df:c4:15:3b:d3:7d:bc:bc:94:5f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: May 16 10:01:20 2026 GMT
Not After : May 17 10:01:20 2026 GMT
Subject: CN=fa2ceecd7806787e41ec226a24ef5351debd10fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d2:6f:c9:92:f9:3c:03:4a:0f:ae:69:fd:4f:
f2:e5:c8:84:0c:16:08:09:0b:0b:06:20:38:87:9d:
57:2b:c9:b2:21:ee:1f:b4:df:40:9d:fc:5f:4f:e9:
97:ec:be:29:76:f0:7c:93:0a:4f:4d:e8:4c:69:02:
92:e8:b6:c3:45:26:73:4e:b6:6e:c9:a3:7c:8b:0c:
45:db:bb:08:76:25:bc:54:3e:8a:3a:c1:44:ec:92:
0e:30:bc:bd:a1:ad:ed:99:82:7a:21:04:ab:7c:07:
02:89:15:ef:b4:7b:fb:4f:44:5b:d4:a8:89:b9:dd:
d3:b9:37:41:6d:59:64:0a:9b:ec:6e:61:b6:c6:d6:
fd:d3:50:16:c4:12:19:e6:92:7d:45:39:a1:ac:98:
f2:d2:d8:c9:cf:2d:4d:e7:4c:bb:64:aa:8f:aa:d5:
46:a7:fb:7c:03:a1:32:5b:1b:c9:55:3a:7b:17:51:
4c:3e:56:cf:e1:34:49:34:19:a5:02:95:b3:3d:11:
4e:64:d8:95:ba:f1:f2:8b:64:b7:c9:7b:94:48:45:
4c:62:45:ef:a1:ec:ca:20:28:98:98:ef:f6:86:d0:
2d:a5:dc:2e:82:14:ca:05:d7:b4:c9:6f:c7:f4:79:
cd:13:33:cc:05:73:bb:48:29:b6:34:3d:5b:54:0f:
a4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2C:EE:CD:78:06:78:7E:41:EC:22:6A:24:EF:53:51:DE:BD:10:FA
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:6a:7a:30:54:99:84:cf:22:d1:af:54:da:2e:9d:5b:fc:f4:
77:89:97:0d:27:d4:69:a2:c0:59:c0:7d:bd:99:87:07:12:35:
0a:8c:5c:b3:32:58:5e:e0:3a:d9:00:73:3c:6d:2b:0c:de:d1:
bb:de:2c:51:85:4d:bd:0f:35:33:c1:12:96:5a:03:10:7e:17:
72:62:0b:d4:03:ce:2e:58:d3:0e:75:2b:d6:c3:06:1e:bb:41:
91:a6:cc:f7:80:f9:86:39:8c:0e:f0:86:50:74:12:5a:c4:81:
bc:27:41:02:91:8a:1c:ac:87:b8:2f:08:b0:1f:17:89:18:0c:
66:b7:73:64:4a:a0:33:e4:f5:76:ef:ec:71:86:d6:e3:5f:b8:
1b:29:ea:ef:9b:e8:8b:94:bf:b3:fc:4f:7b:cb:88:88:8e:b2:
4d:d1:e0:23:6f:20:fa:9c:7f:11:5f:0b:d3:e2:6b:e9:a6:93:
00:da:36:05:02:c6:40:80:54:81:b5:2f:45:54:27:3e:ea:0c:
87:e0:c8:7a:d7:6a:f4:b9:f1:88:ab:8f:b8:65:a6:ba:ba:53:
05:9a:e7:30:dc:4f:20:b4:d9:1c:13:fc:b6:5e:16:df:32:6b:
72:2a:d1:8c:90:75:f4:37:d8:06:ef:8d:be:d6:7a:37:c1:5f:
59:56:76:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:44 2026 by rpki-client