Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: BOgNd3lunZme4nz6TnEBVvJbgiCg4/HKMQV2bVdMi+4=
Subject key identifier: 4D:0C:C0:F4:15:4C:1C:BB:B5:8B:FA:AB:ED:9E:84:F2:5C:4A:00:2D
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019EC25C4AD277D1326CB747B28064759694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 195E
Signing time: Sat 13 Jun 2026 19:01:28 +0000
Manifest this update: Sat 13 Jun 2026 19:01:28 +0000
Manifest next update: Sun 14 Jun 2026 19:01:28 +0000
Files and hashes: 1: 1j-cndh73up45TjcJHDMi8wQ8Xc.roa (hash: KpN3w6f7/yCpGmCh1vdlXsD6GVlxoKm9AQfV9ZcUMXk=)
2: 44Nps6a4A0iJ-S5FNbgCYPVDl-g.roa (hash: +egeaF2cFoduaGGr7Icg4ElpBQ+dGnmrC99v7y4WFaA=)
3: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: DvOUCVFTnbUrMiyQg9g7fL6uRyrWzbcE8IWJ7J73bVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:4a:d2:77:d1:32:6c:b7:47:b2:80:64:75:96:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Jun 13 19:01:28 2026 GMT
Not After : Jun 14 19:01:28 2026 GMT
Subject: CN=4d0cc0f4154c1cbbb58bfaabed9e84f25c4a002d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a8:6b:d3:f3:b6:a1:62:09:48:a2:b8:1f:b3:
e3:d6:d8:dd:b5:c1:cb:5d:d8:57:07:c7:80:ca:17:
cc:81:8f:ab:57:b8:0e:7d:d4:19:ae:3c:8a:58:69:
f3:ee:97:f4:75:48:1e:f4:6d:b8:4d:c8:b1:fb:bc:
9a:cf:cc:45:32:45:3a:8f:50:a3:17:c9:e3:35:69:
05:20:94:89:1a:ff:1e:b9:1e:90:10:ec:e4:c6:2a:
e7:fb:6d:83:65:c8:93:0a:4c:2b:01:f1:de:23:12:
de:a9:87:26:48:d2:98:0a:62:c0:58:1e:1d:84:1a:
09:25:3b:27:e9:d9:a6:18:5a:64:7e:dd:33:c0:cb:
d7:6b:56:79:0e:2f:f2:30:d6:1b:59:bc:ad:58:3a:
6b:08:87:fb:dd:90:fe:a2:99:df:15:9f:be:d6:2d:
11:37:84:88:f4:a6:34:6b:fe:8a:2e:5d:de:e6:aa:
40:bf:0c:4f:6a:50:7d:88:a8:8f:a1:33:14:ae:c0:
86:ce:7e:78:e7:1c:28:a0:94:34:d4:aa:00:84:b2:
00:17:31:66:6b:8b:e3:71:98:3a:50:44:dc:87:91:
c1:c1:ff:12:4e:21:95:1b:e0:cb:af:63:c0:ef:52:
e3:c3:03:e4:ed:62:dd:86:f3:30:d5:b2:c0:bd:b5:
ee:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0C:C0:F4:15:4C:1C:BB:B5:8B:FA:AB:ED:9E:84:F2:5C:4A:00:2D
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:77:74:6d:b3:c1:41:a1:94:74:7f:8f:a7:99:64:a3:19:34:
f4:a3:ef:9a:69:9a:b6:7d:fb:2a:ba:c0:3d:65:25:7c:1c:00:
d3:20:27:25:34:ab:e7:67:52:f6:2a:92:b4:9d:1e:0a:1d:7b:
91:1f:4d:be:e7:19:a2:c2:4c:f5:c5:2e:50:ba:2f:15:04:51:
fc:5f:35:6e:56:d7:da:76:a4:b4:50:08:f9:f0:a5:ba:38:a8:
d3:f4:02:df:d2:1d:88:1f:e7:61:03:7c:ac:39:4a:cf:f2:89:
c1:19:4d:8e:49:36:7e:65:64:e2:3a:86:b2:56:63:e6:06:16:
fa:cd:d7:98:e6:b2:f5:75:f8:b6:08:36:26:f9:db:b7:28:18:
e6:3b:a9:ba:3a:10:d8:27:44:38:59:96:22:2f:28:36:49:d7:
19:9b:82:ea:5b:f5:62:67:58:99:5d:d3:6e:7f:7b:6c:38:6f:
60:45:86:55:c1:0c:2e:f2:7c:22:f2:f8:15:43:21:cc:4b:f0:
9b:8a:b7:c2:85:e2:9b:6a:18:f5:aa:5f:79:34:2c:ed:7b:76:
4a:b4:67:71:96:ab:3d:15:6c:0b:02:b0:95:df:81:41:34:b2:
09:94:4c:82:d0:00:9f:93:ca:2c:0b:21:69:9d:73:64:e2:8d:
5d:45:54:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:29:49 2026 by rpki-client