Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: mpkaKaV7UzHqvJOw2Cctp9BZdagz63ahIA8C+2qQVfk=
Subject key identifier: E0:58:F7:6F:A4:47:A2:5E:B5:73:BD:F2:97:97:C0:B6:45:FD:A6:2E
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 019CABD918EF45D55714C76B6C27E977C2D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0D20
Signing time: Mon 02 Mar 2026 00:00:57 +0000
Manifest this update: Mon 02 Mar 2026 00:00:57 +0000
Manifest next update: Tue 03 Mar 2026 00:00:57 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: /n8Gw6B9abR9d6Z+MqDr+P7uXuuGNz1thw3hiyZTnNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:18:ef:45:d5:57:14:c7:6b:6c:27:e9:77:c2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: Mar 2 00:00:57 2026 GMT
Not After : Mar 3 00:00:57 2026 GMT
Subject: CN=e058f76fa447a25eb573bdf29797c0b645fda62e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:46:4c:b0:5d:a5:5e:dd:68:62:0e:a2:4f:
fd:24:62:8e:53:56:cd:7c:10:2d:de:49:31:93:4b:
5a:f5:38:78:33:b1:28:8f:a9:40:10:f1:2d:18:1d:
6c:84:bb:92:0a:8c:e0:da:88:83:f2:91:5d:cc:56:
4e:0f:fd:96:af:3b:04:c5:c2:89:b3:fe:77:ef:a4:
8d:ca:01:27:fb:30:94:01:4d:0b:d3:0c:be:25:f0:
d2:d3:34:2b:06:46:fb:1c:d1:ea:98:7a:38:45:4c:
f1:e4:8e:e0:0f:04:5d:17:11:e0:d6:2a:df:7c:38:
cc:d9:8d:5f:29:bf:97:85:33:22:bf:18:ae:9e:0a:
bf:3c:8a:7a:a1:c2:cc:1e:fd:1c:c1:f1:f4:3f:01:
01:58:cb:e8:48:8b:e6:af:4f:8a:b5:fb:19:35:4b:
31:eb:9d:af:77:0a:3c:45:f0:fa:63:22:2d:34:d9:
63:5d:4d:e9:66:83:cb:ea:17:1b:af:2b:72:3f:4d:
8c:a8:a7:c3:20:1c:83:4b:1b:20:84:e8:ea:c2:0a:
c7:52:38:af:61:07:97:15:88:59:f3:6b:ad:bb:f9:
73:d1:44:a2:71:31:88:12:24:5d:50:a9:dd:88:52:
60:8b:84:59:38:44:9e:5a:94:7c:4c:bb:77:5e:7e:
bf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:58:F7:6F:A4:47:A2:5E:B5:73:BD:F2:97:97:C0:B6:45:FD:A6:2E
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:96:25:7b:73:58:82:8c:87:f8:ce:9e:bf:cf:3d:8c:74:69:
47:be:2c:e0:97:34:80:f0:d0:39:c1:9d:6b:f4:a6:34:a1:f1:
ca:71:9e:bc:c4:f6:ab:82:65:41:bf:99:75:61:a8:c0:57:70:
e9:27:61:1d:86:9c:87:dc:0f:b1:20:7c:52:1a:7a:30:bb:57:
4a:c9:bb:88:cc:e9:b4:1c:fe:3f:dc:b8:7b:c5:ed:8f:10:c9:
bd:41:91:8c:ce:aa:61:a3:7a:d1:ce:da:74:88:0d:20:d9:49:
26:23:ea:a3:b5:0d:d0:46:22:43:c7:d9:09:db:94:56:9d:b9:
53:b7:d0:35:d9:2f:15:ad:2b:84:50:c8:60:0c:71:f4:53:a0:
85:df:87:4f:ba:53:9d:ba:96:98:e5:ec:56:96:65:bd:d3:48:
4e:98:0e:0e:64:f9:f0:34:9b:5c:b6:11:9c:b1:f4:5d:a8:60:
a4:35:b7:13:a6:a3:c5:28:65:db:c4:0d:f2:14:a9:ed:06:06:
e8:9f:ec:73:99:c0:f7:a8:5c:be:8a:9a:4d:ba:63:f6:4a:c6:
c2:67:4c:e7:27:6d:c7:d5:22:8d:0b:9d:a3:e7:f2:c1:56:42:
15:a8:24:7f:da:b3:6f:9f:e5:ed:7e:bf:5e:67:d4:eb:4e:c2:
c6:86:7c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:34:44 2026 by rpki-client