Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
File: h7-ak2z5rSjsWNt5imD9cd9sN_M.mft (raw, json)
Hash identifier: aqoU3OeEeFKLyCho8e3uAS+KVh/7ad1QQ/wmq9pm+E4=
Subject key identifier: 31:CF:A6:69:52:7C:93:76:00:00:F3:B1:1F:93:20:A7:38:07:CE:32
Authority key identifier: 87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
Certificate issuer: /CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Certificate serial: 019D98F42DE75C622DC264EC2D147E0C0F29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
Manifest number: 1182
Signing time: Fri 17 Apr 2026 01:00:32 +0000
Manifest this update: Fri 17 Apr 2026 01:00:32 +0000
Manifest next update: Sat 18 Apr 2026 01:00:32 +0000
Files and hashes: 1: h7-ak2z5rSjsWNt5imD9cd9sN_M.crl (hash: lePOLyYH/Q74hz51P2S5PAAxfxx4sHrf/6YimlCqXoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:2d:e7:5c:62:2d:c2:64:ec:2d:14:7e:0c:0f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87bf9a936cf9ad28ec58db798a60fd71df6c37f3
Validity
Not Before: Apr 17 01:00:32 2026 GMT
Not After : Apr 18 01:00:32 2026 GMT
Subject: CN=31cfa669527c93760000f3b11f9320a73807ce32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:80:e2:08:fd:1e:75:63:17:4d:45:e5:bb:7a:
58:83:ed:5c:fe:ed:aa:af:32:a9:fa:5d:d3:9c:cc:
87:6e:4f:f5:08:07:14:78:af:26:cf:80:5f:7e:19:
29:28:98:86:bd:ce:02:8d:42:d7:c6:59:ab:2d:60:
25:37:f4:4d:5b:92:1b:51:fc:49:cf:92:9b:53:f0:
06:17:b2:78:05:e7:c3:3a:d0:fb:9f:c6:62:f1:1f:
f0:66:97:b1:a4:90:1d:50:1b:48:58:d9:da:21:49:
75:0d:f5:16:79:56:8a:bf:a7:05:50:ae:2d:b3:97:
c9:55:45:90:88:02:fc:aa:0b:65:bc:68:95:b2:b6:
2d:f4:58:37:4b:a0:60:2c:83:fe:7e:79:f9:67:6f:
19:37:7c:39:31:f7:07:86:3d:7a:29:07:78:72:c6:
df:87:36:c1:cc:83:a4:13:3d:42:aa:43:f1:c8:22:
8d:83:4f:31:5e:4d:61:f4:30:3f:6c:1b:88:49:90:
7b:3f:65:ec:d5:93:aa:f6:bb:e1:8e:7b:22:15:1a:
b4:67:83:22:ef:2c:90:62:e9:ae:00:6e:4e:74:01:
01:d8:f2:b6:67:d4:5a:18:58:5d:cb:80:c1:64:6b:
ba:f5:a5:3c:3d:d4:7b:de:04:94:ca:9c:87:d3:72:
7e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CF:A6:69:52:7C:93:76:00:00:F3:B1:1F:93:20:A7:38:07:CE:32
X509v3 Authority Key Identifier:
keyid:87:BF:9A:93:6C:F9:AD:28:EC:58:DB:79:8A:60:FD:71:DF:6C:37:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7-ak2z5rSjsWNt5imD9cd9sN_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/56c6cb-a36e-4e1c-a432-4f97772b0180/1/h7-ak2z5rSjsWNt5imD9cd9sN_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:13:ca:42:83:f0:8a:6a:2a:41:7b:af:e0:9e:88:66:58:1f:
d9:13:90:e1:4c:98:43:b6:c5:ba:5c:6e:4f:5b:4c:a1:d6:3c:
04:58:1e:27:04:bf:a0:cd:63:e4:fd:92:ad:86:dd:27:fd:c4:
14:7c:6d:ec:66:dc:b8:dc:cf:64:db:63:d1:0a:56:39:34:e0:
88:8b:5f:e7:a4:57:ce:79:95:b1:f4:a8:0a:a3:b0:36:07:a9:
19:7a:81:d6:c1:e9:69:49:fa:78:ef:64:ae:db:a5:ed:ae:06:
bf:1f:51:0b:cb:c0:29:08:b6:8d:cf:0c:e4:e6:eb:16:e1:3e:
96:8c:46:0d:b5:9f:75:f1:d1:5f:cb:d9:45:05:65:e0:a7:54:
2b:32:e0:e6:ac:12:d1:18:f6:f1:a2:07:93:99:23:4c:7f:7c:
73:b7:6b:2a:c0:e9:45:77:49:5a:95:78:ec:64:f6:16:e7:36:
7c:ce:9a:7a:ae:1f:67:48:cc:9b:88:db:55:ef:5e:61:3d:80:
67:fc:a9:18:1f:22:cb:e5:de:50:67:2f:59:d5:99:ac:64:c7:
ef:48:68:a6:30:7f:14:2d:c7:48:3d:67:14:89:ee:aa:08:c1:
d2:c1:cf:41:e2:ff:e4:e7:d9:4a:66:31:26:c5:6a:00:77:24:
f7:ad:94:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:56:27 2026 by rpki-client