Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: Tk4iVDsWETTpNsHqOEFPScddHj1qb+apUg2a4+PED3s=
Subject key identifier: 92:CD:B3:87:3B:52:79:4F:89:63:93:CD:62:4E:E9:D8:C7:2E:5E:B2
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 019EBEEC805D7395187B6A871A15DD0A04EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0F5B
Signing time: Sat 13 Jun 2026 03:00:30 +0000
Manifest this update: Sat 13 Jun 2026 03:00:30 +0000
Manifest next update: Sun 14 Jun 2026 03:00:30 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: EDf8QTsl5rB8UYDzHrp0YRZYKz1IWVeueIE234Fa29Y=)
2: CdfLb6TofkWtReh_YXLGBpk_g6c.roa (hash: wzdkGkKknbVJYDWx/Ffoau27HnZpYfEves1fyMYu134=)
3: fqd_p4Wrb6OXddN1aeuYEJC8YH4.asa (hash: jmbRwKrDPkjso/zUasnqP+cDaGWkVpbGq+nQ2VGiSLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:80:5d:73:95:18:7b:6a:87:1a:15:dd:0a:04:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Jun 13 03:00:30 2026 GMT
Not After : Jun 14 03:00:30 2026 GMT
Subject: CN=92cdb3873b52794f896393cd624ee9d8c72e5eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:96:bf:39:75:d2:ed:ab:0a:5a:4b:41:87:a3:
15:2c:0f:23:2b:a6:b9:80:36:80:a0:55:2a:53:6c:
95:d9:c5:f1:f0:55:0c:9a:4f:41:45:6a:98:3e:ae:
fe:7f:6a:8d:83:9a:46:c3:81:74:a6:2f:78:c2:64:
79:94:f8:cf:b4:75:78:a0:08:aa:f6:a5:a5:ff:5d:
c6:ef:5f:cb:55:37:27:a7:0b:50:d2:22:6c:f6:11:
45:54:ed:d3:13:e7:e3:69:be:18:87:b8:a9:82:3a:
f7:81:7c:a2:c1:6d:1f:b8:da:d3:49:f6:e4:eb:ef:
af:0b:fa:31:90:f6:22:5e:8d:7a:52:0b:9c:5a:b7:
6d:d9:93:26:5b:65:d1:db:57:b9:5b:da:85:07:fe:
9a:6b:08:a1:1f:74:cd:ba:36:87:a7:9b:52:12:5e:
68:fa:0d:d8:f0:b3:94:3f:56:bf:6b:94:13:2f:74:
4b:f2:08:58:cb:92:d7:87:5d:20:62:0a:fe:fe:1a:
f5:dc:36:74:03:8b:e0:7d:71:ae:c4:38:4c:09:59:
bc:d4:6e:f2:2a:61:01:bc:29:f1:7a:8e:c0:44:6a:
c0:d8:b7:05:3b:c7:0d:44:98:02:ef:01:8d:b9:94:
82:84:30:fc:07:ce:83:4a:aa:e7:1e:ca:24:50:b9:
83:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CD:B3:87:3B:52:79:4F:89:63:93:CD:62:4E:E9:D8:C7:2E:5E:B2
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:98:36:25:b5:c6:94:af:7f:c6:d4:e4:cb:7c:ab:7a:c2:33:
94:66:44:b9:59:43:24:0a:bf:1a:02:5a:20:6a:cf:25:11:a6:
ec:24:3f:cb:54:0d:ea:61:a8:aa:f6:57:0b:e9:a3:7e:b5:1f:
3f:7b:e9:66:6e:24:13:98:09:68:a0:9b:dd:ae:c5:4c:96:79:
61:5f:6a:bb:99:8d:ed:9e:5c:65:7a:77:8f:5d:5d:6c:ef:11:
75:25:d9:1e:45:81:36:00:93:e2:ff:97:1d:21:e3:7d:25:b6:
cf:64:be:82:6b:e6:09:0e:f5:3f:60:f8:14:ad:5f:7f:4d:a8:
13:fa:1d:8d:d6:62:53:bc:f2:c4:14:ef:08:3d:17:3e:3a:a6:
36:2f:9e:2e:b1:6c:71:a9:bf:4a:c1:6f:53:82:42:05:9f:00:
cc:55:c4:ff:b0:04:67:c7:77:ed:ca:d0:53:49:85:95:c7:a8:
dd:5d:41:37:8a:02:bc:50:11:19:98:57:5d:b3:3d:3c:52:e4:
ac:38:7a:a5:be:06:86:81:ad:14:7b:6b:ae:5d:1e:9e:3c:36:
96:14:a8:b2:25:2d:68:b2:1b:e5:e3:b4:83:2f:43:31:a5:7f:
76:68:cf:4a:50:2b:45:03:78:95:d2:b3:af:e8:ef:31:55:eb:
67:a0:75:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:35:45 2026 by rpki-client