Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
File: 4awDIrPqtlcuzioKxavxZKW7_yA.mft (raw, json)
Hash identifier: CQnzW2T28dQMKQfiFZcQuwm+9j0pXjFc/Z5ehslsslw=
Subject key identifier: 5B:32:3F:22:3B:34:38:10:F2:C9:B0:4C:70:83:FD:1A:D0:C1:69:F8
Authority key identifier: E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
Certificate issuer: /CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Certificate serial: 019D9B874FEAD16B0C5FD665CA156B208278
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
Manifest number: 18CE
Signing time: Fri 17 Apr 2026 13:00:29 +0000
Manifest this update: Fri 17 Apr 2026 13:00:29 +0000
Manifest next update: Sat 18 Apr 2026 13:00:29 +0000
Files and hashes: 1: 4awDIrPqtlcuzioKxavxZKW7_yA.crl (hash: wVwp6vsmsODaIOa5t18V3VM2HmI9wwO60EtR6PqsQGs=)
2: Wi5MJkqvObCqrjZBlo0JDmeXkfI.roa (hash: 99QCRcjIbmAy7NXYDozY/LitcvyDVNBk3XTYfLTEqtM=)
3: X4Jj1-4HqPQyHoz2uvlpMoAV66I.roa (hash: U8BCAKAOabJXvpxRbVFDeRvoLuUy39ScZ8CQFXOkfKo=)
4: bRn03FRlSzZThZNkviNVTHKQJGs.roa (hash: xEDx54ik3RAUzg+a27rbqvQuS4hz986uk0RMqkm7R+M=)
5: el7Foe7CpoESR0E_lBDRq_2Ohz8.roa (hash: /kLAJJz2VIOJRlWwXrYI0vRC2jlyRUsDvBRbglDgwCs=)
6: mccsr8m8ho2_mF3Ywy_9oaBImlk.roa (hash: 8fr0OzT5KHo+mYjffMlKzkDxAz4/c/4/JdZVWTqaEVk=)
7: pY-w966p6TcVCR_ceh3iqo8tBvM.roa (hash: 9v8cY+ONlAQ5plK0CUQaAsntXexrpXKvoAQArC1anGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:4f:ea:d1:6b:0c:5f:d6:65:ca:15:6b:20:82:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Validity
Not Before: Apr 17 13:00:29 2026 GMT
Not After : Apr 18 13:00:29 2026 GMT
Subject: CN=5b323f223b343810f2c9b04c7083fd1ad0c169f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:ef:17:aa:d2:26:be:ff:83:36:62:cb:19:
e1:a5:85:83:66:df:02:1f:db:fb:cd:88:b9:4b:d6:
24:2b:76:0f:85:30:a9:65:0b:f8:63:10:ff:18:73:
65:90:34:0c:fc:48:a5:08:93:9c:af:a7:58:dc:2a:
f9:40:b2:c8:54:b6:ef:a9:3b:52:b4:f4:a5:36:e9:
2b:9f:55:6f:4e:bb:cd:7e:1d:5b:9f:db:6d:a2:51:
04:eb:03:de:1c:16:76:58:03:62:8e:01:3c:81:cb:
fa:9f:bb:f8:59:ae:9f:04:5b:e4:32:fc:af:4d:dc:
ef:0a:5c:96:e1:6d:0e:4a:a6:85:f7:9f:bb:73:76:
ec:d4:8e:1b:77:b7:99:d4:34:9d:2c:1d:28:e1:f0:
5e:55:40:97:3e:7e:a6:69:f0:1c:03:4a:b0:31:e3:
a4:8c:b6:9e:f9:eb:67:13:2f:bf:6b:85:cd:dd:94:
5a:20:f8:21:97:fb:fc:4b:56:da:bf:ef:db:4a:ed:
d6:f7:a2:18:94:03:f4:7e:dc:a3:db:34:b0:b6:8c:
c1:c1:ad:fa:76:a3:3c:6a:1e:35:62:4a:6b:2d:1e:
4b:8d:2a:fc:84:c6:49:e9:f0:27:4d:63:e7:5f:b2:
ea:a9:2f:05:5d:9f:28:25:13:72:32:fc:6f:29:d0:
d9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:32:3F:22:3B:34:38:10:F2:C9:B0:4C:70:83:FD:1A:D0:C1:69:F8
X509v3 Authority Key Identifier:
keyid:E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:2d:8d:15:54:3d:f2:a3:86:d7:d6:66:d9:63:f0:58:6b:2d:
06:7e:1e:99:fa:97:75:13:74:de:91:d0:af:4b:b8:38:d1:09:
7a:b3:4b:7e:77:6f:0a:ef:64:45:80:4f:68:f4:ea:d9:46:1a:
1a:5c:9f:13:ee:cf:67:b6:56:c6:8a:d5:0c:a2:88:95:2e:8f:
49:cb:23:66:02:7c:fa:a1:bc:c0:79:fb:89:8d:6b:af:a8:87:
e4:7b:55:ff:7c:65:d8:6e:73:62:73:32:d6:ef:be:25:b6:83:
52:3f:3d:2d:b9:19:5e:68:9b:fc:7a:b7:65:b5:ac:77:f2:e0:
37:ec:16:bf:6f:8c:f1:21:a7:2c:2d:13:92:e2:85:cd:aa:d0:
22:36:0c:04:0c:c6:cf:c7:51:a1:9b:98:30:49:e5:72:2c:f3:
e0:6f:2d:fa:03:05:c0:51:23:04:8f:b4:7b:ed:12:90:0a:f7:
1a:05:85:bd:fa:38:be:2b:10:93:42:d1:6f:65:a3:31:22:f3:
e5:c1:01:22:c9:a4:b7:75:8f:28:4f:39:d4:a0:91:6e:4e:57:
a5:f3:0a:c0:59:57:13:1a:31:b9:96:62:ef:28:18:ba:01:2d:
8e:fc:36:b9:87:77:59:ef:0c:c9:20:f0:32:8f:44:58:51:50:
7f:3b:1a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:51:36 2026 by rpki-client