Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: fVGojF1ZOT0uGgTMU247zMUX4ycxKwgpbJYJPSn427Y=
Subject key identifier: 66:FF:26:92:0D:45:84:2C:3D:14:3F:8B:A4:E1:61:9B:11:F6:4F:81
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 019D9BBE589F413AD6CA6538335FA6BC1EC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0CAB
Signing time: Fri 17 Apr 2026 14:00:36 +0000
Manifest this update: Fri 17 Apr 2026 14:00:36 +0000
Manifest next update: Sat 18 Apr 2026 14:00:36 +0000
Files and hashes: 1: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: y9XKYxxR+xQMU3413giMQ134E8IhUKtnzcJzrSdRoT8=)
2: kGQeneiJZNT_BjB_XoReSyXguQ8.roa (hash: yt9dzzQfHrZsnLkuZ9r3U4v8elv0IkIyoER8sIW2HPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:58:9f:41:3a:d6:ca:65:38:33:5f:a6:bc:1e:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Apr 17 14:00:36 2026 GMT
Not After : Apr 18 14:00:36 2026 GMT
Subject: CN=66ff26920d45842c3d143f8ba4e1619b11f64f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3c:5f:82:fc:b5:12:83:96:c9:9e:07:00:21:
30:20:29:a0:83:64:35:33:ab:a2:44:69:d2:7e:d3:
08:25:d4:2d:71:1d:6d:ad:fa:9a:97:c0:e9:f1:9a:
f7:c0:22:1a:29:86:4c:e7:c9:6f:f4:ba:88:eb:34:
9f:1c:2a:45:96:58:00:eb:db:93:88:c9:17:fb:d7:
c9:f3:60:3b:f8:c3:59:d6:7d:4f:de:98:99:df:1c:
74:ce:80:72:38:63:2d:61:c0:66:d7:4f:a8:e6:e9:
de:71:46:09:1f:02:78:9c:16:81:c1:54:a7:ed:58:
dd:4c:e5:fe:0e:5f:3b:91:89:e7:c8:ab:d1:95:42:
dd:34:b0:e1:75:27:53:87:8d:3b:1e:9f:cd:86:fe:
88:7e:40:aa:4f:6d:a0:f6:fc:28:74:ac:30:ee:ff:
6d:d5:18:07:0f:70:92:fe:88:45:9c:9c:22:bb:12:
28:2b:83:41:d4:91:17:71:d2:73:3f:3e:f1:4a:d8:
71:39:51:5b:6e:04:ee:35:ee:74:2c:23:0f:ec:56:
df:7a:d6:8a:b9:74:ff:26:26:d5:eb:2b:2a:99:d5:
c4:ce:c4:14:53:1a:d5:c1:f6:0b:13:6a:22:49:69:
87:0a:d9:5b:d7:cd:96:f8:02:33:9d:29:5f:e6:b8:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FF:26:92:0D:45:84:2C:3D:14:3F:8B:A4:E1:61:9B:11:F6:4F:81
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:26:65:e6:43:5e:2c:0f:a3:32:ff:6b:25:08:f6:65:81:5f:
70:14:cf:d4:b6:ed:ce:4f:87:a4:19:29:5c:f0:35:d0:37:8e:
6f:19:8f:d6:70:ae:81:3a:f2:fc:92:5c:bb:9b:29:af:15:01:
3e:28:9e:12:a4:c0:0c:c3:20:2e:d6:c3:bf:ac:1c:23:c2:12:
16:b0:c4:48:fb:1c:04:ee:7c:c6:c9:86:b5:c7:ac:cb:b1:28:
16:4a:64:0b:9b:53:48:25:a4:40:7e:eb:1c:23:66:44:b7:da:
08:ac:9b:6f:88:8a:7c:e8:58:fe:df:a5:cc:92:03:5d:d5:c0:
7d:a9:2c:e1:38:5c:54:a2:3b:84:b0:6b:73:37:37:4e:3d:65:
00:01:e9:08:40:98:67:10:c4:9b:a4:e6:75:f9:11:99:82:97:
f7:c4:ec:f0:aa:05:ae:18:e1:32:45:46:4a:b4:f5:04:cf:a5:
8a:88:e1:7f:8e:0b:7e:0b:78:da:f7:38:c3:71:0d:32:66:6a:
a1:35:07:bb:d4:2a:a3:f3:e1:cf:e3:f6:f9:ca:80:e3:b7:37:
d5:57:87:e2:ae:38:df:f1:1f:69:7e:c7:b1:ee:a8:3b:98:4b:
75:d5:e8:89:25:21:45:f5:0a:a0:5b:d3:96:1b:9a:f8:e4:85:
a9:f5:86:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:46:02 2026 by rpki-client