Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: fUg+vIAwrNPrid6UUdOu1umDX/DidWtgkJjK6+j0LQg=
Subject key identifier: 02:2E:5F:A1:A7:F2:BE:67:CE:D0:AD:D2:44:A3:03:A0:7F:D9:40:25
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 019D390A240AAEA013143A4B9810710AE7D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 10:00:59 +0000
Manifest this update: Sun 29 Mar 2026 10:00:59 +0000
Manifest next update: Mon 30 Mar 2026 10:00:59 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: KvnIKBsXoGxJkqvlhmZ9xhDJVi7Xq6Ae/WXVSjFKmFo=)
2: D3RzDDZgPLG3UCsxVx6Q8ZzLm1I.roa (hash: kVx9KqwTwAznM+coaQfniQbA9ErAhmA+cdao1OKFFKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:24:0a:ae:a0:13:14:3a:4b:98:10:71:0a:e7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: Mar 29 10:00:59 2026 GMT
Not After : Mar 30 10:00:59 2026 GMT
Subject: CN=022e5fa1a7f2be67ced0add244a303a07fd94025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:94:f0:8c:c4:41:d4:16:5d:18:2f:6a:f4:eb:
4c:6d:77:d6:69:c7:87:73:c9:15:21:2f:00:60:9b:
46:6b:04:f3:0a:79:69:b7:b6:ef:88:87:8a:5c:16:
0b:5f:55:97:d0:ee:ae:42:0f:2d:f2:3b:2d:39:ae:
28:45:e8:01:27:95:17:4d:2b:83:1a:40:8e:92:4e:
a4:64:e5:c8:92:38:5e:d2:28:19:14:7e:72:8c:98:
4a:30:0e:46:3b:94:1f:72:8c:86:a6:08:45:e0:92:
23:52:d6:8f:6e:e8:c6:d5:b9:0e:8c:a0:dc:b1:42:
73:5d:bc:c9:cc:98:42:77:29:09:fd:c7:86:f4:22:
0d:35:92:fc:dc:55:d1:e2:6e:d2:b4:a4:31:29:9d:
9e:c3:32:b1:00:de:ad:16:7c:49:4a:a7:45:3b:74:
ab:c5:04:9b:22:a2:ad:7b:8d:96:ab:32:98:27:98:
ed:5b:62:f2:81:e7:a8:31:28:7f:6a:bc:2b:6f:f1:
b1:29:81:58:dd:6c:d9:c0:c2:30:2c:a4:39:d8:7e:
47:e3:5d:76:43:d1:35:54:2b:4c:63:af:49:1c:3b:
73:9d:4e:83:5b:91:fb:5c:5e:1d:c4:37:5c:61:ef:
d6:42:c7:7e:d8:50:06:ee:3a:f8:9a:26:65:7c:52:
a1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2E:5F:A1:A7:F2:BE:67:CE:D0:AD:D2:44:A3:03:A0:7F:D9:40:25
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e8:3b:ea:39:ee:a6:97:44:8e:85:c5:b2:1e:41:a0:18:f7:
9d:36:06:ce:e4:fb:bb:75:e8:18:44:33:5d:66:05:fa:2a:7f:
53:33:d6:81:07:a2:3e:19:40:29:a5:90:76:5b:42:08:34:6c:
93:c3:d8:80:1e:07:89:f5:4c:b4:57:c8:49:7b:7e:62:b0:fb:
87:08:9c:4d:f6:13:ff:56:40:e5:83:61:ae:1c:95:3e:b7:9a:
69:c1:e7:4e:03:3e:dc:f3:48:35:5f:0a:3e:c7:15:9c:6f:f8:
d0:0c:d3:df:40:23:22:90:13:0c:4f:21:6d:af:68:7c:d0:b7:
32:2c:e7:1f:3e:c9:7e:9c:42:6a:a9:c5:c4:f3:7b:2c:da:4d:
b6:69:c6:10:4f:bc:9d:08:7f:50:13:52:6b:90:39:a6:df:40:
34:da:82:b2:d8:cd:52:6a:39:0a:94:ec:69:49:78:ea:ae:f9:
a2:5a:ae:e5:93:7e:c9:c6:b2:ec:12:85:f8:d5:09:57:42:dc:
26:c8:4e:cf:bd:b7:6d:a4:01:66:5d:03:3b:b4:cb:c5:47:67:
a4:9b:24:9e:d2:f1:33:8a:12:3d:f5:a5:33:40:53:92:b2:e6:
d5:3a:a3:cd:d3:6e:50:21:39:4a:8c:fc:6b:bc:ac:f5:7e:79:
e5:89:4f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:13 2026 by rpki-client