Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
File: 4tNxxKeqqFX4zDsa6oAilCCoDyA.mft (raw, json)
Hash identifier: +UOHiMkTmzMgBJkXDBIT+nUVcG5JxpaXONlxTtZQVq4=
Subject key identifier: 14:2B:9A:1B:31:CE:C6:60:D7:B0:F5:E4:F2:CD:5F:81:0B:59:8D:51
Authority key identifier: E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
Certificate issuer: /CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Certificate serial: 019EBEECF2F9D6912E3BC6B6FBE9E2107B5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
Manifest number: 195B
Signing time: Sat 13 Jun 2026 03:01:00 +0000
Manifest this update: Sat 13 Jun 2026 03:01:00 +0000
Manifest next update: Sun 14 Jun 2026 03:01:00 +0000
Files and hashes: 1: 4tNxxKeqqFX4zDsa6oAilCCoDyA.crl (hash: Mi1d+aEgw/Pu9r9Rm8rk0uO1VT0a5gQV22r/Trjs8uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:ec:f2:f9:d6:91:2e:3b:c6:b6:fb:e9:e2:10:7b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Validity
Not Before: Jun 13 03:01:00 2026 GMT
Not After : Jun 14 03:01:00 2026 GMT
Subject: CN=142b9a1b31cec660d7b0f5e4f2cd5f810b598d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:51:64:89:16:e7:60:c5:ce:37:c7:c6:f0:
ff:15:20:09:dd:88:70:ee:0c:cb:f8:38:73:de:4f:
f3:af:18:ec:49:5e:33:5b:d7:e7:d8:91:74:4c:43:
3b:8c:1d:64:c5:18:64:6f:82:68:10:10:b6:8a:98:
39:43:a6:60:2a:2b:24:51:ae:ea:2d:f6:9a:d6:86:
ba:a8:90:27:8f:05:88:03:79:46:44:83:ec:41:37:
c0:d3:11:90:8a:d1:8b:d6:15:9c:43:a8:4b:90:ec:
e2:52:0d:e7:57:d8:4a:37:59:44:d4:90:a3:4b:f8:
eb:13:3d:fb:2e:9d:af:7f:21:5d:cd:d9:5e:38:96:
d5:52:44:51:7c:d2:5b:0b:5d:bc:7d:7c:14:a5:01:
85:04:30:8c:e4:a2:2e:14:9d:77:ad:45:4d:11:d4:
0b:39:c7:75:de:e7:33:ef:e2:f3:7a:99:e3:fb:67:
d2:9e:e1:70:ef:cf:e6:8e:c1:62:66:e4:97:b4:5d:
68:c7:83:77:3f:d1:c0:95:03:40:fb:4f:dd:8d:12:
00:cf:47:1b:ff:a5:38:5f:e3:6c:87:db:c0:e2:d4:
05:33:9b:c7:62:7b:ee:64:c3:42:65:04:4e:16:65:
9a:a9:91:02:af:12:d8:0d:b1:31:9e:e6:2c:5a:3a:
7d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:2B:9A:1B:31:CE:C6:60:D7:B0:F5:E4:F2:CD:5F:81:0B:59:8D:51
X509v3 Authority Key Identifier:
keyid:E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:2e:9f:7d:d3:b3:20:da:43:66:a7:cb:a7:15:c9:04:ac:fc:
99:52:c8:e5:f3:ed:35:89:da:bc:40:0a:01:1b:c1:2c:6e:27:
f6:43:f7:bd:0c:ff:85:9e:03:89:94:00:28:f9:1c:ab:84:41:
58:82:d3:f3:70:66:f4:e0:07:5c:1b:9a:b5:5e:2d:74:33:e9:
95:13:e7:a6:f8:de:86:a7:be:05:27:c9:49:db:7d:77:d1:65:
ce:ab:cf:12:90:7e:1e:c2:f4:15:0e:4b:74:49:73:3b:02:ee:
07:0e:4a:3e:6f:c2:31:d2:cf:13:bd:cc:62:26:be:af:d9:06:
e9:a5:8c:e3:c6:cc:5f:16:08:51:a1:cf:05:a5:68:f4:0c:da:
37:bc:50:b8:25:3d:cf:09:3e:19:f0:f2:fe:45:d6:4f:a0:7b:
16:4b:91:26:a9:d5:98:5f:60:d9:f0:55:24:c0:27:91:af:1d:
bf:50:59:b9:dc:03:99:2c:26:c9:ad:3c:21:2b:58:73:e1:db:
e4:f2:4a:a2:96:8f:67:e9:73:1e:80:ba:7d:fc:89:41:e7:94:
ad:d6:aa:17:15:07:56:39:70:57:4d:71:78:b2:5f:b4:1a:5f:
a1:c5:d0:08:ae:9e:ef:00:59:8a:6d:d5:26:d7:36:3a:03:20:
8e:6d:a3:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:34:16 2026 by rpki-client