Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
File: 4mthhRZS_I_twBGm8i966ba-sKM.mft (raw, json)
Hash identifier: AoF92oK56lJ/wDPhCHPBd7uCxWSJpScs8B8nfqJoyYU=
Subject key identifier: 58:E6:39:FA:0C:E4:92:77:70:0C:78:49:41:A5:EA:DD:65:9B:74:DD
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 019D98BDD15FA67A90C93277431A89E0466F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
Manifest number: 0CED
Signing time: Fri 17 Apr 2026 00:01:09 +0000
Manifest this update: Fri 17 Apr 2026 00:01:09 +0000
Manifest next update: Sat 18 Apr 2026 00:01:09 +0000
Files and hashes: 1: 4mthhRZS_I_twBGm8i966ba-sKM.crl (hash: p/WhLMKKv0d65yqK6NxoqvVurOmIPu2m9MG37p48AWY=)
2: 6c0GmPSIo0E5XPLL6BcvGXFoeoU.roa (hash: XKGNTxIctVAHlMjqMo1n+V2kjvQsJG2Ze8aGQf0oQWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:d1:5f:a6:7a:90:c9:32:77:43:1a:89:e0:46:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: Apr 17 00:01:09 2026 GMT
Not After : Apr 18 00:01:09 2026 GMT
Subject: CN=58e639fa0ce49277700c784941a5eadd659b74dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:22:4b:74:ed:63:02:ab:13:e3:8d:56:30:df:
0b:f4:c7:a9:55:0e:af:67:a5:55:04:6e:76:c9:0e:
4f:a0:1f:a6:fe:ad:06:dd:8b:75:a4:e3:77:1a:ad:
4f:98:41:bf:ce:86:c2:8b:d1:68:3a:bf:b8:fb:78:
12:8d:c8:5a:2d:a9:c3:4d:75:51:29:82:f0:42:c7:
54:6f:27:d0:58:61:89:de:30:3a:28:2f:79:18:cc:
3d:9f:d0:c5:3c:29:2f:db:db:a6:a3:26:2e:84:db:
52:f5:08:b9:c2:53:8e:1d:d7:e6:fc:f4:fe:f1:40:
34:89:1a:f9:ff:72:93:b7:38:14:a3:e5:71:c4:74:
f4:93:57:12:99:a2:c9:86:00:b5:af:68:43:8f:9d:
43:8f:b0:0c:12:81:ca:b8:55:42:a7:27:34:07:5b:
38:e0:24:81:82:5b:17:08:e4:e4:f6:34:27:19:89:
c4:f2:b4:67:c0:8a:ab:55:11:e2:08:26:24:46:07:
25:d7:3f:27:05:0e:32:fb:52:c9:cb:a3:6c:93:41:
0b:24:60:50:c2:b5:a2:93:d6:a9:7a:98:fd:fc:a7:
7d:df:a3:7d:a9:98:15:15:eb:d4:38:e1:b6:2c:d3:
5a:15:b6:13:bd:95:40:c8:21:8d:00:56:fa:cc:e1:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E6:39:FA:0C:E4:92:77:70:0C:78:49:41:A5:EA:DD:65:9B:74:DD
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:73:8f:57:8c:11:2a:96:3e:b7:95:30:a3:e9:f1:f4:29:b9:
7a:a7:61:2f:b8:d8:2b:f8:d8:12:61:42:fa:c3:a3:f6:93:e1:
56:58:28:f1:1c:34:c9:99:f7:14:22:21:34:1d:54:ea:b3:e4:
bd:c7:95:ef:72:94:f1:49:5d:45:e0:8f:6e:5e:70:b9:28:6a:
7a:d8:ef:b2:ae:2a:ac:97:40:62:22:c0:99:7a:4b:5e:ac:22:
6e:56:c1:d8:c1:0e:ae:18:45:b0:14:37:52:08:c8:d0:1d:6d:
b0:f8:70:61:a7:ca:55:01:be:2e:01:82:4e:17:a7:60:e1:01:
c2:0d:25:7f:bc:8f:24:37:64:8b:0d:00:d7:b6:bc:4a:3c:b7:
7a:3c:4f:f2:84:80:43:1c:17:f4:0b:53:a8:3c:bb:83:62:c9:
36:80:0f:49:cb:20:b3:40:7f:c0:39:e7:e7:4b:e6:9b:dd:62:
8b:5b:9a:b5:28:82:eb:0f:06:15:df:fc:90:c5:46:09:f2:77:
4f:85:a0:fc:d0:93:d8:7c:0a:bb:27:a4:2c:c9:50:e0:93:b4:
b5:86:4a:04:43:7f:9c:d5:19:c8:f7:30:34:fb:d0:26:7b:a4:
2f:7c:e9:8c:7d:fc:98:40:8a:52:d6:86:cf:47:5f:2d:a0:c6:
ef:bd:ab:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:04:31 2026 by rpki-client