Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
File: c4DHWfVY-ca-iN0iakOdmcnqzww.mft (raw, json)
Hash identifier: X8TfVEoYRwge2rh1vBWib3+eCTM4JspKNDS6JKwEgGw=
Subject key identifier: 44:36:AC:9C:B8:D2:FE:A3:2E:08:F4:BC:89:E6:68:FB:08:36:1E:2F
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 019E3185E3AA759564D30EA70AB28B2A1AE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
Manifest number: 1042
Signing time: Sat 16 May 2026 16:01:58 +0000
Manifest this update: Sat 16 May 2026 16:01:58 +0000
Manifest next update: Sun 17 May 2026 16:01:58 +0000
Files and hashes: 1: SyzDr7afLaGB0eh8BGltmqw92Ho.roa (hash: 050EI4bgC2uJSD8MPwN8yNb/BaQ/4SeM3IGk1KBixYk=)
2: c4DHWfVY-ca-iN0iakOdmcnqzww.crl (hash: CzreUWd50Ei2S/RLKZPfllbfrHvI7AX9bsjFZWyikPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:e3:aa:75:95:64:d3:0e:a7:0a:b2:8b:2a:1a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: May 16 16:01:58 2026 GMT
Not After : May 17 16:01:58 2026 GMT
Subject: CN=4436ac9cb8d2fea32e08f4bc89e668fb08361e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7b:6b:d0:4f:d1:a4:e8:15:19:12:62:35:96:
ea:22:84:27:c2:2f:b7:0a:1d:b5:e9:9e:ad:4d:ed:
03:d2:54:e8:90:15:f7:6d:9b:e7:4b:8c:20:db:e1:
07:ba:ce:bf:9e:e7:04:c5:10:46:c8:9e:35:c7:69:
c3:db:e2:d2:65:cb:bb:f1:b2:69:b5:73:6d:09:9a:
ff:31:c8:8e:23:f6:d7:32:51:bd:cd:ba:54:f1:21:
ac:db:c8:3c:6e:4f:e1:2e:62:3e:26:f9:92:5c:80:
da:c8:74:1e:59:03:e0:b9:1f:87:64:c4:4e:8f:2e:
19:ef:48:08:94:c9:fa:8c:4b:5b:10:fc:d3:9c:b3:
a9:6e:7c:10:e1:c1:1d:0d:5b:1b:20:2e:ec:00:a3:
a7:df:26:b9:bc:6e:55:07:9e:4e:b6:13:fd:d7:92:
68:df:d7:40:8f:6a:17:c2:60:6e:28:0a:b6:c5:49:
34:9b:d2:7c:35:cb:b7:0d:61:41:d2:25:b2:f0:ac:
26:b8:f3:33:f7:bb:e2:1c:3e:e0:18:27:30:22:80:
ef:d3:fd:75:8f:e8:89:e7:6a:1e:4c:81:13:a2:5e:
1f:45:24:fa:67:58:ac:33:cd:cc:75:ca:c3:c5:c7:
c1:41:44:e6:28:68:33:ed:4e:57:97:6d:9b:09:26:
43:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:36:AC:9C:B8:D2:FE:A3:2E:08:F4:BC:89:E6:68:FB:08:36:1E:2F
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:8e:c8:93:f5:d8:38:07:45:63:de:3b:51:09:b3:0a:77:7d:
d3:47:22:a8:bf:0b:49:6d:11:87:f9:96:2e:4e:33:20:3b:2e:
8d:3e:4e:c2:06:60:24:75:17:17:c4:4f:22:3e:f7:46:ae:ca:
30:ff:ff:57:9e:d4:b6:1b:af:26:2c:b9:84:f0:11:59:68:2b:
97:7f:4a:c6:3c:0f:fc:0c:b3:a7:66:52:17:a7:ca:86:a6:0a:
58:ee:6f:2b:5d:75:fe:38:54:d3:32:36:5c:30:ad:a2:2d:5c:
5c:28:07:ef:95:fe:25:88:a3:93:8f:f5:5b:3a:0e:4f:60:d0:
31:e3:25:1f:41:f6:2e:3d:df:41:ad:6c:63:1d:ac:1f:f4:a0:
be:0c:c2:55:6c:9b:20:4b:aa:5d:e1:cc:cf:09:1d:bc:dd:35:
be:41:cb:39:4e:88:34:86:f0:d9:43:92:b8:0d:d7:7e:2b:8c:
79:57:25:f9:85:d4:b1:7d:6b:26:79:98:28:82:c5:82:ac:a8:
a7:ad:49:c1:78:7d:73:2b:b3:be:62:d5:fe:95:e6:f4:18:c6:
00:da:4a:9d:f3:1d:2e:12:e6:68:39:b4:86:89:51:63:4d:bc:
25:55:29:ca:9e:98:10:02:64:ad:a3:89:e0:8e:17:dd:29:7a:
bd:fe:52:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:40:43 2026 by rpki-client