Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: JWZ9/r1J42U6U1RzZqTqxnwPzVzTUGWc4GUi69P2Csc=
Subject key identifier: D3:4C:15:20:B0:5A:E2:0F:CF:FB:3F:4F:71:29:91:80:21:F4:DE:59
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019DA29CC31E3BDE4AACCC08ECA417989D3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0EC3
Signing time: Sat 18 Apr 2026 22:01:15 +0000
Manifest this update: Sat 18 Apr 2026 22:01:15 +0000
Manifest next update: Sun 19 Apr 2026 22:01:15 +0000
Files and hashes: 1: 4XAM9liM1Y7hRRkcksNiW_aru-A.roa (hash: P0kySiJIZ6zOBwufqTsAfZ+d9KAiQxaN8Hb6kdFbtyE=)
2: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: 0Hb5LMXJTlWWDkBdW4aaKcYVvTTq1kSkwO4lpf7xjxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9c:c3:1e:3b:de:4a:ac:cc:08:ec:a4:17:98:9d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Apr 18 22:01:15 2026 GMT
Not After : Apr 19 22:01:15 2026 GMT
Subject: CN=d34c1520b05ae20fcffb3f4f7129918021f4de59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fc:36:b4:af:d5:8d:96:7c:82:ad:aa:70:d7:
11:31:f3:b2:28:ea:09:a7:7c:b5:0a:27:2a:16:04:
c9:63:03:54:7c:53:e1:ba:73:0c:32:cb:04:06:ab:
c2:8c:b6:26:c4:2d:8d:3f:45:d5:bd:f9:f0:c4:4d:
4f:28:e0:1e:02:c0:2f:e9:93:a4:dd:b4:17:d3:e1:
dc:78:6c:ba:9e:6a:e6:50:cb:81:cb:45:af:84:41:
a0:f7:9c:7e:26:f9:79:78:98:8b:75:c2:bb:76:5d:
1d:79:03:df:d9:bf:6e:df:a5:a1:44:a8:c9:54:32:
9b:31:07:c5:38:f7:00:b5:a1:2a:bc:5e:d9:c4:0a:
53:6f:b0:61:17:38:cd:ee:10:81:ac:b3:a6:4d:57:
09:ce:b0:57:03:15:cb:2e:a9:fd:26:38:5d:37:96:
72:0b:ab:ff:1e:60:53:9c:db:37:e0:57:e9:e5:3d:
f9:24:01:3f:cb:f6:88:64:99:df:99:8a:0f:9a:cb:
3c:06:e8:24:28:e4:7f:92:b0:5e:4e:77:12:6e:d4:
44:30:c5:56:16:49:f6:27:33:7d:09:17:bf:7a:dc:
f1:5a:72:db:5b:03:d5:0a:f8:c0:77:23:d2:04:3e:
ca:35:a5:84:6b:a7:3f:14:00:a1:f5:d1:c3:98:42:
73:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4C:15:20:B0:5A:E2:0F:CF:FB:3F:4F:71:29:91:80:21:F4:DE:59
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:35:db:f4:d7:ce:cd:22:18:c7:3c:88:e2:a6:1d:b3:01:5e:
6b:d4:9a:fb:b5:2b:74:eb:9f:1a:8d:09:ac:32:4d:ec:18:e9:
92:ba:1d:0d:b9:7b:b1:e8:f4:a5:28:0a:4b:2b:a6:e1:2c:1b:
2e:6c:8d:3f:0e:e5:a5:3e:dd:14:b3:e3:cd:6b:c9:54:3e:dd:
80:60:8a:9b:3b:3f:3b:e0:39:60:04:a4:53:01:f1:08:90:bf:
97:ee:0a:e2:b6:c8:ff:cf:06:78:db:7a:1d:88:1c:b4:21:3a:
08:84:16:fe:12:3a:c5:46:97:ab:4e:14:5d:f5:50:c5:a2:dc:
ed:01:0e:c4:d3:f7:57:81:a8:fb:39:5a:20:02:58:b3:dd:0e:
67:9d:0c:0c:92:78:ef:6d:a2:fc:4a:06:e3:b2:04:be:dc:af:
1c:82:7b:ab:5c:fd:cf:58:9c:6f:8d:73:67:c9:05:e5:67:b7:
62:92:6c:fe:9b:a0:db:c7:c8:1d:b5:d7:8a:0f:ce:f2:22:74:
9e:4e:d8:ef:46:31:0d:4d:80:e0:1d:47:19:3a:47:81:3f:a9:
ca:c5:e8:c0:c0:4e:80:58:8e:d7:4e:33:96:45:42:aa:15:a1:
bf:ef:ea:a2:c8:cf:b7:c2:48:cc:06:f6:a5:e3:9f:7f:e1:8d:
9f:0b:0e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:54:13 2026 by rpki-client