Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: 0y1n2b21ZAy6YORp4N/nxuXR35Qc1JL+3YIbGNKAGSA=
Subject key identifier: 23:DC:20:43:9F:7F:5B:10:D3:8D:FE:92:0D:F8:27:FD:6F:C3:44:1E
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 019EB8EABC6EF20BDF745BF004999BD07986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 16AD
Signing time: Thu 11 Jun 2026 23:00:51 +0000
Manifest this update: Thu 11 Jun 2026 23:00:51 +0000
Manifest next update: Fri 12 Jun 2026 23:00:51 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: wbO6NXolzUXmsa0oHtJE5GjtzbqA9DBLy//2MkfaMac=)
2: i0WslBSNbZGrjfVFMISsJmr6unc.roa (hash: 1n8qaJxx+xqAWzWkPFiEInqRBUPmVPxyAAXtCgkJ0/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:bc:6e:f2:0b:df:74:5b:f0:04:99:9b:d0:79:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Jun 11 23:00:51 2026 GMT
Not After : Jun 12 23:00:51 2026 GMT
Subject: CN=23dc20439f7f5b10d38dfe920df827fd6fc3441e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3f:7f:4e:4a:e0:ea:4f:88:f2:cc:29:03:17:
31:9a:88:55:16:9f:64:83:8e:9c:f7:91:10:9b:24:
81:c5:a2:36:25:21:28:34:2e:eb:94:e5:8d:19:70:
77:fb:a3:21:cc:06:61:b8:93:8b:4b:1d:1d:13:8c:
d8:18:11:88:b6:a7:5a:f1:cc:05:a9:06:2c:a8:39:
ec:23:1c:56:7b:36:62:c3:3c:70:32:0d:9f:4f:f1:
d4:9d:37:90:aa:01:4e:69:96:49:f6:4c:b7:7d:51:
f5:5a:22:29:e4:d0:c7:de:6b:50:8d:57:9b:67:3d:
2b:59:34:d0:94:4e:e7:8f:23:47:68:f4:a1:4e:32:
c1:f6:87:0a:e3:2a:89:54:43:f9:23:b6:b0:60:49:
16:68:5b:ca:23:7f:de:42:86:8f:ec:cb:9e:d6:19:
5e:d9:23:57:2f:0f:ea:5c:06:1f:01:62:a5:9e:e9:
2a:a7:cd:fa:ea:6b:a8:3b:2e:72:ed:f4:8d:ff:7e:
0d:c5:4c:b5:ff:22:ca:28:39:9d:23:fe:66:da:03:
95:ed:a0:8f:18:6a:2f:f8:41:e8:61:c5:43:39:ec:
81:5b:4c:44:cd:b9:3e:16:12:d0:c5:73:3e:f9:8f:
10:c6:43:4a:bd:e8:01:d0:e6:65:c5:65:93:ec:3e:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DC:20:43:9F:7F:5B:10:D3:8D:FE:92:0D:F8:27:FD:6F:C3:44:1E
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:47:ca:a3:c6:e7:73:d2:04:bf:ef:e2:02:63:c0:fe:5b:e3:
78:98:d7:cf:bf:71:2a:cb:94:17:2f:db:60:3d:66:d9:4d:1b:
72:b8:cb:20:97:e2:e3:ac:25:67:d4:16:37:b0:21:97:21:d1:
44:6a:03:4c:dc:6f:1d:4d:2c:11:98:a7:ac:55:cf:47:b8:bf:
8b:eb:92:4c:56:43:38:52:3f:bb:49:74:33:c2:99:15:5d:73:
2f:f8:83:f5:cf:1e:15:5d:42:9c:72:9b:cd:2c:96:ca:40:30:
17:84:0a:f0:6e:10:c5:2b:44:dd:ea:8c:e4:57:7b:ac:64:f2:
e5:08:53:ea:54:b4:ec:f4:9e:e6:44:18:19:99:bb:3f:95:e2:
92:b8:d7:01:f9:f8:94:36:46:08:85:4f:5b:21:c6:4f:29:23:
7b:67:8f:be:4d:25:87:98:41:93:5f:48:f9:ea:13:70:7c:99:
2b:8b:c9:d3:51:0e:45:26:32:a7:a7:d0:27:3a:da:e8:95:e7:
82:8b:9d:10:bd:6d:37:ae:3c:a3:0b:2a:df:d6:af:20:95:fc:
c1:63:50:4c:13:8d:da:17:e3:76:33:e7:12:91:68:83:9a:37:
fa:7b:b9:3c:ec:e3:4f:d8:80:9e:a7:23:99:11:d3:50:74:fa:
22:3c:37:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:36:51 2026 by rpki-client