Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: f5yC3fcPQSuNN4IududWLLPR9dXd9Blkbkx8HH0SS2U=
Subject key identifier: D1:42:22:CF:CE:59:38:F9:62:1A:78:80:E8:16:6A:97:42:AF:BB:DB
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 019EBF5AD64A1DEDB4E7876F217E0C1EB7B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 1617
Signing time: Sat 13 Jun 2026 05:01:01 +0000
Manifest this update: Sat 13 Jun 2026 05:01:01 +0000
Manifest next update: Sun 14 Jun 2026 05:01:01 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: 6y9p1z3VtVhB6ceokdFH1L5K672zLzmxem94Gtg7A0U=)
2: WlHlPJ2Yx-QYEFNJTd1fZunOqeI.roa (hash: V3F5Ix6QWwGrgFg4N8xfN4dbqz/bAEkV9NWs0dFeZ8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:d6:4a:1d:ed:b4:e7:87:6f:21:7e:0c:1e:b7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Jun 13 05:01:01 2026 GMT
Not After : Jun 14 05:01:01 2026 GMT
Subject: CN=d14222cfce5938f9621a7880e8166a9742afbbdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5c:f1:7a:f8:91:27:99:95:c0:3e:fc:7c:39:
16:23:75:3c:8b:94:60:6b:fb:0f:65:88:1d:46:7b:
9d:c7:1e:ca:f9:3a:32:47:a3:db:e0:73:3d:14:47:
64:dd:37:5b:67:e0:b9:d3:da:44:b0:62:91:b6:1a:
41:00:40:2b:38:c2:60:b2:9b:22:9f:18:07:f8:7c:
73:cc:aa:47:3b:b2:93:4a:5d:f5:29:f5:5d:db:da:
bb:d3:11:2e:4c:8a:d2:27:fd:f5:51:d6:e4:9b:72:
00:c9:61:5c:e8:46:47:3a:5e:95:12:40:e3:87:25:
0c:11:74:90:94:fc:53:46:21:d8:65:eb:6d:d8:83:
c4:bb:f0:f7:7e:1d:f2:41:51:28:dc:86:65:8c:52:
dc:c7:73:ad:15:2f:0d:36:97:9a:f0:35:1d:39:6e:
f0:d2:09:79:56:39:a5:9c:d2:35:d3:7d:21:33:44:
d3:36:75:a2:32:a0:9e:04:db:a4:7a:3c:fe:05:08:
a3:39:cb:94:44:ff:92:0f:a5:87:25:87:c1:0d:0d:
c1:11:be:16:e0:eb:4c:31:76:97:d6:3d:f2:c2:ed:
37:67:58:1d:96:5d:59:5d:2b:07:93:5f:f0:30:79:
36:86:56:a2:55:55:de:9b:b3:e4:9c:f6:f3:cf:bc:
38:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:42:22:CF:CE:59:38:F9:62:1A:78:80:E8:16:6A:97:42:AF:BB:DB
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:f1:48:80:36:00:a4:7a:8e:57:22:b0:2b:85:fc:98:06:8a:
ad:88:f1:49:e2:ff:26:c5:d2:8f:91:22:e4:e6:5e:4b:22:88:
7b:55:e8:fe:d7:8d:37:8a:26:10:47:37:58:c5:c0:63:b0:26:
4f:98:75:d2:16:63:b3:57:5d:19:f2:d6:07:03:aa:b1:09:f8:
34:cd:7b:72:5b:01:73:a8:8a:97:ce:0f:22:43:47:06:bc:bf:
85:4a:b3:91:de:c8:be:4f:52:ee:0b:78:75:a9:a6:0b:fa:0a:
e9:fe:f0:9d:10:72:ad:60:9d:e8:e8:b9:62:ca:58:cf:f8:6f:
c3:56:35:e7:a2:f9:8e:60:53:7b:d9:91:8a:4a:5d:41:39:0b:
24:13:ad:5f:be:e7:fa:f8:b7:24:19:47:4b:6b:1d:c9:fd:23:
c6:0b:f0:3c:19:46:bd:ed:27:73:aa:82:b6:37:3f:5d:7b:c5:
37:c9:b3:e2:20:98:73:70:0c:0f:94:e3:ca:8c:d1:53:88:d9:
a5:8e:d8:1c:f0:ab:80:b4:21:00:77:db:ff:24:53:f7:15:e1:
b3:23:a5:c5:d6:63:2c:b9:89:e0:41:d2:4c:a6:42:99:16:c3:
b5:f0:78:77:74:2f:f7:50:5e:ad:b7:2e:d9:8f:69:65:74:5d:
50:b5:4d:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:55:26 2026 by rpki-client