Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: OgaWuagGnd6IGCorp4Mtd865r7P2dSdMBGJ+dBrAfQI=
Subject key identifier: 82:BE:4F:55:DE:73:A9:05:09:70:F4:1F:A4:0F:1C:B0:EF:12:07:D2
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019DA4542C951EC1B11228BD69E3A9CB3006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 160F
Signing time: Sun 19 Apr 2026 06:01:13 +0000
Manifest this update: Sun 19 Apr 2026 06:01:13 +0000
Manifest next update: Mon 20 Apr 2026 06:01:13 +0000
Files and hashes: 1: 0gIiALe6pz1IQicIRlap9JpEjvk.roa (hash: a8WIdauJpV7mniv+m0G3DWtScZS35ac1cb7lSAK0pD4=)
2: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: i/ppSSZ42zdBwRndzjbo60B3hNfLywzbqWlF/mjObMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:54:2c:95:1e:c1:b1:12:28:bd:69:e3:a9:cb:30:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Apr 19 06:01:13 2026 GMT
Not After : Apr 20 06:01:13 2026 GMT
Subject: CN=82be4f55de73a9050970f41fa40f1cb0ef1207d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4b:41:f0:fb:95:12:5c:3f:61:1c:c0:39:f5:
45:c5:0e:37:7d:a5:31:db:12:36:02:bd:4f:a3:a1:
6e:d2:f1:96:e6:a9:6a:75:2c:82:86:b7:80:07:f8:
95:c4:bb:4c:34:f4:fe:fc:db:f3:15:cf:f9:03:2e:
6f:8c:19:8a:4d:d2:3a:ae:1c:fb:09:83:76:34:c5:
51:22:3c:ca:81:7d:0c:18:4e:aa:7f:0f:64:70:7b:
71:c9:08:2a:9b:41:aa:ed:0b:03:1c:e3:96:4c:92:
63:ac:83:0c:a0:66:d7:17:6f:67:5b:6d:21:1f:3a:
06:8d:d8:69:88:1b:f5:de:ad:9b:4f:ad:c8:85:a8:
39:48:38:d7:2f:b7:ae:cf:92:12:a8:e7:0a:fe:f4:
c8:71:c0:5e:43:40:7f:d7:7c:c9:3c:ed:d5:c6:95:
47:b7:e8:2f:4c:76:28:51:8e:73:89:34:a3:3c:74:
d6:40:35:d9:1f:87:83:5e:fe:4f:b4:f9:4a:13:f7:
21:32:58:dd:bc:6e:c8:85:f1:8c:2d:95:8f:f0:71:
84:3d:51:d1:f3:7f:27:a2:25:35:6a:ca:06:58:7b:
27:61:09:4a:f9:a5:8e:b8:5f:34:55:77:a8:59:e6:
19:df:cb:74:f1:ee:74:fa:40:7a:5a:07:25:63:a0:
8e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BE:4F:55:DE:73:A9:05:09:70:F4:1F:A4:0F:1C:B0:EF:12:07:D2
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:82:d5:94:2b:44:4f:50:a6:fd:ab:03:0e:44:22:c6:6e:8e:
68:f4:5c:6b:78:77:eb:dd:51:f7:2f:80:9a:d4:94:d4:47:31:
f0:11:a2:3c:f9:a5:dd:51:04:74:94:16:ad:56:68:65:c4:a7:
d2:81:19:f9:f2:1d:0a:d8:05:e2:f3:5b:0f:d4:d4:24:bf:73:
c7:51:25:bc:a1:17:e9:37:de:98:ac:82:c4:72:11:99:dc:31:
5b:62:6c:fe:8a:70:b0:89:b5:6e:de:23:4c:a0:8e:6b:bf:22:
fb:19:8b:d8:68:c0:c4:5f:bc:a5:4c:31:8b:de:73:a0:63:6b:
c9:3f:d7:72:5b:9c:cc:d1:03:8b:00:f9:cf:5f:fc:ab:05:9f:
bd:fc:a3:69:ea:a7:f0:89:03:7b:56:c1:52:8f:61:59:65:27:
55:f0:89:46:27:58:b3:c6:f0:5e:6b:96:f5:7b:1a:b4:a0:20:
8f:b7:5c:7e:f6:ba:ce:38:a7:9f:f1:40:0d:86:aa:4a:bb:12:
80:df:c3:19:6e:9f:04:9a:0e:d5:16:10:d9:25:d9:2f:70:a4:
12:9c:7b:d2:25:c1:93:67:79:e1:f8:30:21:b0:fd:eb:18:4c:
74:57:f9:d5:b5:b0:21:3c:64:37:f3:a4:23:e9:8c:0b:a9:a0:
89:f9:38:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:24:32 2026 by rpki-client