Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: YJwvoDMuS0EEZVbri5AJDz6hSKEC15Y2/taz9rN0mQ8=
Subject key identifier: F8:54:4F:65:95:A4:1C:C5:1E:0C:26:07:B6:08:BC:E4:BE:2F:CB:91
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 019CE5911FE03F4B7D798AB1F1EC1DE8509A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 15BB
Signing time: Fri 13 Mar 2026 05:00:19 +0000
Manifest this update: Fri 13 Mar 2026 05:00:19 +0000
Manifest next update: Sat 14 Mar 2026 05:00:19 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: qs54PLU6Q2NDYmtsDqu9IgslCl5Nf8sCdb2X7GB6gTw=)
2: i0WslBSNbZGrjfVFMISsJmr6unc.roa (hash: 1n8qaJxx+xqAWzWkPFiEInqRBUPmVPxyAAXtCgkJ0/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:1f:e0:3f:4b:7d:79:8a:b1:f1:ec:1d:e8:50:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Mar 13 05:00:19 2026 GMT
Not After : Mar 14 05:00:19 2026 GMT
Subject: CN=f8544f6595a41cc51e0c2607b608bce4be2fcb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:6e:75:81:d9:43:a1:03:e9:bf:6c:00:3f:
9e:4b:73:5c:e3:8c:2d:2b:55:87:9f:3a:4c:e5:74:
fe:20:d6:3f:f1:fe:33:ae:3b:67:08:81:03:19:f2:
7c:11:10:62:1d:52:6f:38:c1:9c:65:07:cb:e3:d1:
d3:4d:51:e0:d5:e3:df:89:8c:30:71:04:1d:27:6e:
13:73:db:f9:6c:b3:c1:f8:77:36:6a:8b:14:e4:a8:
5f:85:ed:60:12:ca:9d:a3:82:89:5c:e4:1d:bf:38:
50:1b:fb:35:4d:d7:ca:59:b3:c1:ea:af:a6:91:aa:
95:56:5c:22:f4:c3:2a:fd:19:af:2a:3e:c6:e8:8a:
60:a9:44:06:21:37:84:a9:11:6b:bf:b7:12:b3:0b:
b3:e4:cc:4c:3f:b7:d9:67:79:ed:c2:e6:3d:08:4d:
25:7d:dc:93:83:53:ed:98:93:a9:da:96:99:df:33:
59:a6:4a:5d:cb:bf:ef:4d:ea:ef:f9:0a:ba:d5:c8:
ec:3c:3d:1f:56:cb:ef:3d:34:a7:ee:42:bd:29:e8:
81:6d:5f:80:14:5f:88:32:b1:ae:83:f3:a1:93:17:
e2:27:fb:61:4c:7a:e2:b0:93:5d:66:46:7c:fa:0f:
e3:89:13:28:5d:87:58:10:00:d2:d1:0f:1d:ec:ef:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:54:4F:65:95:A4:1C:C5:1E:0C:26:07:B6:08:BC:E4:BE:2F:CB:91
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:d6:de:84:31:c8:bf:10:c1:7c:48:4a:e9:90:c7:0d:68:be:
88:c5:8e:66:73:df:d7:0d:37:22:e7:f3:99:db:ce:b2:23:e8:
26:84:1d:37:53:27:48:87:b7:9d:3e:19:26:20:59:40:6b:f5:
b8:65:c4:49:e2:e7:d0:4b:41:20:7b:1d:5e:69:f3:04:1b:c2:
79:3e:33:bf:b0:37:98:64:20:d0:c7:2e:92:05:dc:a4:e0:7f:
1a:78:39:09:a6:f4:90:25:c4:d2:4d:68:5e:b8:7d:27:1a:c3:
f9:b4:12:f4:1b:86:0d:11:ba:c9:cc:dc:8c:55:4f:80:00:11:
a3:31:cd:74:8e:5e:59:3d:a9:7f:a7:0c:9e:a4:af:44:a1:c9:
92:0d:b3:a6:d3:43:65:35:ae:87:a7:4e:bc:69:d4:57:d6:3f:
35:69:3c:7a:23:d9:38:72:9d:fe:c9:87:f5:e6:a3:44:2f:2a:
86:1a:7d:86:48:5b:e6:d4:14:85:d6:15:65:d3:01:fa:e4:10:
61:7a:5c:f0:6b:1e:1c:a8:4d:4e:3b:47:19:c1:30:e0:77:b6:
1d:9c:64:93:fa:54:30:56:f6:6b:c7:ca:f6:ce:75:af:03:78:
42:a7:2a:3c:99:e6:f6:db:fc:0c:26:ae:84:08:6e:f2:28:f3:
99:53:e9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 16:24:16 2026 by rpki-client