Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: DBSmO52IjcOxg7apTVIvS93HYzOsM/7w1LoPN6oLZlI=
Subject key identifier: E7:8C:24:97:D1:BF:28:0F:4E:E6:5B:FF:E2:E5:D1:65:69:BC:AC:A2
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 019F17F9B3F6EE4E38695DB771508286DB5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 198E
Signing time: Tue 30 Jun 2026 10:01:08 +0000
Manifest this update: Tue 30 Jun 2026 10:01:08 +0000
Manifest next update: Wed 01 Jul 2026 10:01:08 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: u9R4HyalPkUlPbnuNtpi3GaV9zYauU2DSh9lNBIA2NQ=)
2: D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa (hash: kVx9KqwTwAznM+coaQfniQbA9ErAhmA+cdao1OKFFKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:b3:f6:ee:4e:38:69:5d:b7:71:50:82:86:db:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: Jun 30 10:01:08 2026 GMT
Not After : Jul 1 10:01:08 2026 GMT
Subject: CN=e78c2497d1bf280f4ee65bffe2e5d16569bcaca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a4:b9:ce:d1:b9:92:eb:60:69:ab:27:c0:8f:
6a:d8:4e:47:58:ce:19:3f:66:54:11:c4:10:16:d9:
2c:68:58:6b:e2:a8:62:79:8c:bf:84:30:bf:02:4c:
46:70:7c:30:3d:9b:c4:e6:1a:b5:f3:c5:17:cb:c4:
7a:ab:4b:8b:89:8f:93:a8:2f:dd:a9:71:53:d9:8e:
e7:b0:0d:2f:aa:7d:58:9e:6c:9f:8c:47:c6:20:a6:
52:54:06:e0:5e:97:a2:cf:a8:7f:f7:d8:4d:41:39:
01:58:57:ba:7d:64:dd:62:59:8e:21:73:13:2a:a0:
85:19:11:79:96:df:89:62:3e:13:f6:6c:02:4d:18:
d6:2e:78:51:68:92:0c:b2:b0:43:a9:bb:8d:d3:b6:
94:f2:3a:54:9f:59:ee:4a:8b:0f:a6:53:0d:76:56:
1d:8a:7b:e5:03:90:db:0b:9a:a4:e2:e8:5c:0d:01:
af:f1:e3:0a:cb:39:90:a6:f3:46:fb:02:ef:a7:ac:
a5:b9:82:db:75:8c:6a:59:27:79:b3:f6:b4:09:91:
89:4c:00:53:e2:59:31:8b:c3:f6:13:74:4d:b5:40:
1e:1f:8d:32:b5:1f:f2:0f:9c:c3:38:2e:3d:f7:c6:
5d:9f:2a:cf:31:6b:34:83:2a:33:69:5a:0f:ff:fb:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8C:24:97:D1:BF:28:0F:4E:E6:5B:FF:E2:E5:D1:65:69:BC:AC:A2
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:6f:3c:88:ab:5a:45:51:1b:86:a4:cb:0b:d8:5b:1a:37:93:
de:43:31:dd:69:88:82:6f:f9:d6:96:68:d6:31:e1:ba:3f:6b:
ea:0a:4b:48:5e:54:6f:4d:77:8c:d6:d7:12:ea:64:01:b0:8c:
9e:fc:c3:20:2e:f7:69:0d:08:eb:d1:23:0b:cd:72:ff:13:45:
e8:83:b5:4a:74:ed:2a:7e:54:5a:58:6f:bc:88:af:23:a3:a8:
ba:aa:5e:a4:26:d0:eb:82:24:a9:88:41:a9:09:61:0d:3a:b8:
77:b5:97:4c:45:9a:bc:c3:7c:c5:ce:f8:b1:81:1e:40:f9:b1:
e9:da:a4:1d:34:b0:c1:b0:3e:1f:cb:6d:ac:4a:b0:f3:cf:50:
65:ce:8a:38:e6:17:3b:dd:da:8a:49:76:9d:96:b0:1c:5e:41:
d1:ee:b4:56:7c:4d:3e:7a:b5:2e:db:2d:e0:95:91:47:2a:1a:
ab:5c:21:c7:cf:75:b3:9f:27:aa:a7:97:f3:9e:83:ae:9d:63:
44:99:8d:64:81:c3:ad:73:36:f0:e8:90:6d:3a:33:67:5f:f9:
2b:e0:f5:d7:a6:66:73:f5:60:3a:cc:64:64:0a:23:fb:26:4e:
cd:77:07:51:6a:21:59:96:af:98:9a:21:93:39:f5:24:05:1f:
8a:3f:90:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:01 2026 by rpki-client