Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: oB/x7HegUriEIu/pMJBfn9/l1aw9RG7hUlc7QYFW2FE=
Subject key identifier: B9:BD:EC:47:C1:66:95:62:04:6B:52:21:A6:F5:DE:B8:DA:29:0D:88
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019CAF10B8C41BFE0BB45B2B57996F9D6D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 1590
Signing time: Mon 02 Mar 2026 15:00:34 +0000
Manifest this update: Mon 02 Mar 2026 15:00:34 +0000
Manifest next update: Tue 03 Mar 2026 15:00:34 +0000
Files and hashes: 1: 0gIiALe6pz1IQicIRlap9JpEjvk.roa (hash: a8WIdauJpV7mniv+m0G3DWtScZS35ac1cb7lSAK0pD4=)
2: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: ey95mQiLQcjGT5J8zo2r9H3ZbZuFw4MPqnAWCEU9c1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:b8:c4:1b:fe:0b:b4:5b:2b:57:99:6f:9d:6d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Mar 2 15:00:34 2026 GMT
Not After : Mar 3 15:00:34 2026 GMT
Subject: CN=b9bdec47c1669562046b5221a6f5deb8da290d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b6:7a:a5:7b:4a:11:bd:96:21:ce:be:14:37:
34:83:c8:a3:50:d8:48:b9:b0:5f:ec:44:e0:af:8b:
44:b2:b9:b3:79:23:27:98:dc:73:58:e6:c5:20:b9:
25:46:40:91:4c:e6:83:77:3d:7d:c6:4b:f8:e2:f1:
db:97:c1:b9:7b:eb:68:9b:88:7c:30:ad:4b:bc:cc:
ab:f4:1a:c2:38:c5:60:3b:c2:bc:62:3b:83:14:89:
66:a6:dd:92:e9:5c:ad:cf:23:f6:d7:02:ac:98:aa:
53:0d:fd:3b:f5:54:8b:76:41:70:4b:16:98:29:06:
28:a5:c8:9e:90:31:39:07:f7:66:99:0e:e1:af:67:
6f:fb:7c:a8:77:a4:33:ab:4a:c3:6f:eb:b9:36:1a:
8d:c1:6f:57:3f:3b:33:14:29:b9:4f:71:77:23:0e:
be:1c:d9:24:90:e3:a2:2f:47:e3:d2:ce:72:12:4e:
42:ce:e3:eb:f9:4d:46:f7:0d:0c:9b:a4:ec:68:ef:
71:5c:e5:1a:e9:35:ad:b7:80:09:59:df:7c:a4:f0:
22:e1:5c:42:6a:26:96:f5:2f:3a:7c:f6:e5:c6:3e:
91:2d:38:d7:bc:0d:ec:2a:bd:0b:f2:2c:af:45:c2:
52:b8:ad:8b:68:0b:6d:dd:09:93:59:c1:a6:a9:a4:
98:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BD:EC:47:C1:66:95:62:04:6B:52:21:A6:F5:DE:B8:DA:29:0D:88
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:4b:3a:37:ac:e0:8c:7b:f9:8c:11:0a:17:58:9e:a1:ad:57:
26:af:46:bd:a8:4c:e0:1c:6e:ad:b3:3e:20:ee:16:67:9d:9e:
a7:f1:1e:55:63:88:61:68:a6:0a:c3:28:99:5a:cf:96:c2:9f:
b2:d2:b4:7e:26:6d:53:67:a3:fa:17:28:c6:e7:1c:f1:98:31:
d2:1c:c5:72:01:50:f0:d3:e3:b1:a2:47:45:f7:f5:f5:66:0c:
6d:75:66:c5:ef:18:14:db:7f:50:8b:e3:fd:1c:83:65:ec:71:
13:84:23:31:6f:2f:7f:90:7d:45:f2:6c:16:d2:04:2e:33:6e:
b5:23:a5:a0:54:6e:d8:e9:3e:b4:61:b4:1b:69:b3:aa:65:f3:
72:7d:2b:c2:bc:82:bb:d3:32:fe:47:2b:60:4b:6e:31:38:21:
55:f0:d8:2f:48:d4:cb:01:ad:50:2c:5a:42:58:e6:b9:2d:04:
e7:58:78:a0:25:bf:fd:c5:18:55:83:71:24:ba:05:ab:06:94:
15:db:7d:2d:2e:27:8e:da:64:c8:81:29:cd:f5:d8:72:6a:cb:
c2:18:ac:a0:4c:32:73:7a:bf:c6:45:17:39:36:16:53:36:3b:
c1:5a:fc:b8:9e:b6:1f:8e:09:fa:7c:9e:74:fa:15:1b:51:99:
79:45:a5:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvELjEG/4LtFsrV5lvnW1xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYTEwZGU2ZmZhZTU5MDQyNzI0NGEwMzM0M2RiNjZhYzU2
NDI3NWEwHhcNMjYwMzAyMTUwMDM0WhcNMjYwMzAzMTUwMDM0WjAzMTEwLwYDVQQD
EyhiOWJkZWM0N2MxNjY5NTYyMDQ2YjUyMjFhNmY1ZGViOGRhMjkwZDg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorZ6pXtKEb2WIc6+FDc0g8ijUNhI
ubBf7ETgr4tEsrmzeSMnmNxzWObFILklRkCRTOaDdz19xkv44vHbl8G5e+tom4h8
MK1LvMyr9BrCOMVgO8K8YjuDFIlmpt2S6VytzyP21wKsmKpTDf079VSLdkFwSxaY
KQYopciekDE5B/dmmQ7hr2dv+3yod6Qzq0rDb+u5NhqNwW9XPzszFCm5T3F3Iw6+
HNkkkOOiL0fj0s5yEk5CzuPr+U1G9w0Mm6TsaO9xXOUa6TWtt4AJWd98pPAi4VxC
aiaW9S86fPblxj6RLTjXvA3sKr0L8iyvRcJSuK2LaAtt3QmTWcGmqaSYXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLm97EfBZpViBGtSIab13rjaKQ2IMB8GA1UdIwQY
MBaAFOKhDeb/rlkEJyRKAzQ9tmrFZCdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTct
NTc1NTQwNTg2MjBiLzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTctNTc1NTQwNTg2MjBi
LzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs0s6N6zg
jHv5jBEKF1ieoa1XJq9GvahM4BxurbM+IO4WZ52ep/EeVWOIYWimCsMomVrPlsKf
stK0fiZtU2ej+hcoxucc8Zgx0hzFcgFQ8NPjsaJHRff19WYMbXVmxe8YFNt/UIvj
/RyDZexxE4QjMW8vf5B9RfJsFtIELjNutSOloFRu2Ok+tGG0G2mzqmXzcn0rwryC
u9My/kcrYEtuMTghVfDYL0jUywGtUCxaQljmuS0E51h4oCW//cUYVYNxJLoFqwaU
Fdt9LS4njtpkyIEpzfXYcmrLwhisoEwyc3q/xkUXOTYWUzY7wVr8uJ62H44J+nye
dPoVG1GZeUWlaA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:58:18 2026 by rpki-client