Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
File: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft (raw, json)
Hash identifier: O67Un3R86LvhQCd+UUZl7qUDiV0XCueTsVZ6jIhmQHI=
Subject key identifier: 02:21:18:49:1F:E8:7F:AF:58:D4:44:1D:B4:AF:D2:26:4C:35:49:CF
Authority key identifier: E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
Certificate issuer: /CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Certificate serial: 019E3005214B51EB2C2EBED7ACA0C257E75B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
Manifest number: 1090
Signing time: Sat 16 May 2026 09:01:42 +0000
Manifest this update: Sat 16 May 2026 09:01:42 +0000
Manifest next update: Sun 17 May 2026 09:01:42 +0000
Files and hashes: 1: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl (hash: 5lHGtQzo8WcYBYM5pqt3jr6RL4eTBm1VYJiEyI0K+KE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:05:21:4b:51:eb:2c:2e:be:d7:ac:a0:c2:57:e7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Validity
Not Before: May 16 09:01:42 2026 GMT
Not After : May 17 09:01:42 2026 GMT
Subject: CN=022118491fe87faf58d4441db4afd2264c3549cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:a4:6f:2e:76:37:af:4b:b8:03:cb:d7:af:
4e:ac:d7:90:ea:c8:76:cb:bd:7c:26:85:6f:e4:b7:
54:12:58:ef:01:c0:1c:f4:5b:83:d7:bd:48:1d:d2:
75:48:c0:1e:e9:d7:2b:b2:ac:62:f5:d3:ea:7a:5a:
c0:37:6b:03:ef:3f:0d:c8:fd:71:4c:50:57:4f:6c:
47:3b:ca:39:13:a6:e1:c8:7e:42:e2:50:00:1f:ea:
53:c8:81:84:7a:1d:2d:b3:2e:2d:e7:f9:9b:d0:4e:
fe:4c:10:99:b6:11:a4:81:31:76:c3:6e:56:fb:28:
86:ab:8d:bb:2f:7b:0d:be:ee:fb:b1:aa:18:0d:f5:
cb:f2:63:e9:25:5c:70:94:2e:ff:80:a1:bf:a9:e9:
33:f5:9e:8c:f4:49:aa:45:7e:23:c1:36:60:13:49:
7a:6b:17:01:96:38:76:8d:4c:85:56:bb:4a:a2:17:
4b:e6:aa:ee:cc:11:e9:b7:f9:d2:7b:d1:2b:3c:16:
d1:90:ab:11:e3:fc:06:1e:13:6e:c4:76:09:60:16:
9f:d5:0d:00:f8:4c:a0:67:67:c0:74:e0:ce:32:05:
6c:ed:49:c6:a2:3b:7a:99:74:ec:df:e9:2b:dc:94:
ff:16:2d:13:ba:f7:c2:3e:03:a5:92:06:6b:94:cd:
00:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:21:18:49:1F:E8:7F:AF:58:D4:44:1D:B4:AF:D2:26:4C:35:49:CF
X509v3 Authority Key Identifier:
keyid:E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:46:55:48:23:f6:00:00:0a:df:e1:67:92:30:8d:5a:b4:6f:
57:a7:58:39:3e:5c:44:c9:b1:70:c4:0c:6d:e3:30:0f:67:50:
89:ba:70:2c:0e:db:af:21:48:26:f0:f2:72:85:fc:4d:f5:fb:
9a:e4:92:02:a9:06:25:18:36:c6:2d:b8:c0:b3:0a:12:c2:5b:
fa:83:72:bf:46:75:c0:b0:18:52:8a:24:65:09:ab:c0:ff:5f:
7b:7b:c1:98:68:8d:db:13:eb:e1:77:d2:b4:f6:f7:2f:11:68:
4e:23:76:6e:fd:9f:4a:ff:a9:5a:fe:e1:bd:8f:9e:b8:d1:47:
63:23:db:14:95:a6:6c:0c:c9:46:47:a3:3a:c1:95:2a:82:cc:
7a:90:48:64:87:bd:4a:fb:6a:95:0c:07:0b:f0:44:13:af:f7:
7d:d5:81:8b:e4:29:6e:e9:fa:a1:0a:cf:fd:27:ba:44:90:ca:
0f:1f:9a:5c:07:93:30:92:07:9a:d7:80:dc:08:d2:e2:08:de:
6b:e1:aa:95:67:e4:aa:16:86:5e:f1:e3:71:6b:e3:07:5a:6d:
52:5e:c3:1e:93:cc:cf:7c:98:32:09:fc:9a:9b:e8:4d:24:f1:
2a:b0:a6:24:ca:39:e8:7f:31:4a:42:37:52:5d:04:b2:4c:28:
94:75:47:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:44 2026 by rpki-client