Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: wWdraIuJ9ErVKQvzY6lfr43gbB5/Zm7ENJZFerplw2I=
Subject key identifier: 1F:EB:7B:B3:20:95:C9:60:D8:EC:15:E9:79:5D:EE:D3:18:4B:FC:5C
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 019DA48B62452C3220592760BA7983D11B3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 18C7
Signing time: Sun 19 Apr 2026 07:01:31 +0000
Manifest this update: Sun 19 Apr 2026 07:01:31 +0000
Manifest next update: Mon 20 Apr 2026 07:01:31 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: dEGC+gL4LZ4W+ibkmc2v+XkX1OdCTdoCSyc8mSgjjgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8b:62:45:2c:32:20:59:27:60:ba:79:83:d1:1b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: Apr 19 07:01:31 2026 GMT
Not After : Apr 20 07:01:31 2026 GMT
Subject: CN=1feb7bb32095c960d8ec15e9795deed3184bfc5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5f:56:db:24:71:80:bb:c6:84:69:35:54:00:
57:12:8e:18:9e:a3:be:9c:cb:2b:2a:63:f4:7a:81:
bb:57:33:9b:d1:31:42:d3:f3:dd:69:62:99:da:00:
c8:1e:ef:78:0b:7d:d8:fe:fd:ab:41:4d:f6:91:06:
bb:f3:ea:f5:ff:a3:fc:12:49:c1:d0:ea:13:bb:33:
c5:6a:92:61:90:e6:a0:f7:02:5b:a8:1a:59:7a:0a:
62:dc:97:e1:2d:e0:84:c7:dc:30:46:c3:da:ed:22:
d7:a1:93:55:4f:fc:85:bb:d9:70:e7:b3:18:42:59:
7f:18:96:9d:b5:99:64:20:51:e8:eb:66:a1:56:cb:
72:0c:20:56:d9:d1:82:26:c7:88:ee:fe:8e:8b:39:
a0:be:a9:50:0b:14:cd:1d:fc:f0:d9:df:6f:a3:4b:
61:49:39:77:f6:e9:ae:b0:e4:02:b6:e1:93:f9:2b:
6c:8c:18:c9:44:4d:9c:9a:2b:e1:da:c2:32:5f:42:
45:f2:7a:34:ff:bd:fe:5c:9c:ac:1e:49:2b:bc:cf:
aa:73:86:3e:50:d9:8d:07:f2:0a:15:05:04:c9:19:
c6:b5:ca:ed:27:69:96:60:72:49:ae:d9:58:70:41:
6e:fc:fe:b9:21:90:99:68:68:d8:73:96:a1:1b:04:
dd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EB:7B:B3:20:95:C9:60:D8:EC:15:E9:79:5D:EE:D3:18:4B:FC:5C
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:5e:33:23:fa:eb:37:b8:f5:4f:0c:20:2f:73:93:f6:17:75:
d7:d9:87:86:5e:19:08:0c:9e:9e:0a:3f:12:bf:3c:7d:63:3a:
72:b8:56:af:b2:37:d9:44:e1:20:c5:06:59:14:67:89:84:b8:
13:5a:e3:10:4e:61:5a:15:50:39:97:e7:db:28:47:94:87:bd:
95:83:fa:9a:b5:08:ba:fd:22:0b:6a:da:9a:1d:44:b8:59:cf:
b3:47:0d:f5:86:16:4d:fb:bc:16:90:61:dc:4e:84:68:84:9a:
1b:c3:36:bc:55:1b:ed:70:79:62:65:15:2d:08:95:75:46:f5:
c4:23:69:34:84:e0:7e:50:86:2f:23:6d:da:c4:e9:0a:77:df:
f0:de:3f:32:dc:eb:73:ee:29:80:72:e1:9f:52:62:92:5c:b9:
53:dd:c5:c8:5f:5e:94:09:8c:06:23:c3:13:fe:eb:03:87:29:
3b:62:a2:1e:a2:b2:04:57:7a:e8:a3:4e:0b:bc:63:ed:e0:20:
d1:8b:2d:57:e2:26:e7:51:e9:8a:14:84:de:6a:d2:24:d0:49:
93:7e:78:e6:1b:5d:3f:d4:37:e5:29:8c:20:be:d7:84:55:28:
6d:b9:a3:76:3c:a9:07:d5:07:df:e0:e4:05:ce:cb:9f:fa:a7:
b2:cb:9b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:58:46 2026 by rpki-client