Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json)
Hash identifier: Gx1GrbcAYYL5i+HT+pOgq0tqSDIbQK67ySZucox9qqA=
Subject key identifier: DB:34:4F:A9:42:81:A9:AD:1C:47:9C:63:F2:AE:45:D5:99:AB:88:24
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 019CAD22E6D86A7E801375E85FAB58843355
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
Manifest number: 0D4C
Signing time: Mon 02 Mar 2026 06:01:11 +0000
Manifest this update: Mon 02 Mar 2026 06:01:11 +0000
Manifest next update: Tue 03 Mar 2026 06:01:11 +0000
Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: P4fck0VZQjWhrvEFTFaKxyto66e7mfhZkA1eGx3NnLM=)
2: afKBlYSGIMBV_VMkuFvv4MisLCI.roa (hash: s1e49FrGfKuZntD2cZ980PigitairMSPS2lGbyZKLV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:e6:d8:6a:7e:80:13:75:e8:5f:ab:58:84:33:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Mar 2 06:01:11 2026 GMT
Not After : Mar 3 06:01:11 2026 GMT
Subject: CN=db344fa94281a9ad1c479c63f2ae45d599ab8824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:dd:2c:0b:6a:e5:bb:37:44:41:7e:c2:9b:c8:
6c:e9:0f:57:46:ae:58:3e:b3:07:bc:d0:da:b8:54:
d1:fc:3f:08:5c:1c:7a:8d:62:8f:c9:30:d2:c5:4a:
76:0b:c4:72:04:33:d7:2a:e3:12:8f:34:2d:7e:9c:
53:af:86:14:7c:8f:76:b6:07:e3:69:30:43:56:5b:
ec:fb:6a:ad:b8:bd:69:10:a8:32:b9:d1:1a:ee:ca:
10:48:b9:64:9f:ea:49:ce:0e:4d:06:d9:f5:ca:3a:
d7:5c:43:78:54:96:70:fb:2e:c1:4b:8f:b6:f5:ad:
66:9b:35:90:09:c3:26:3c:a3:41:2e:8a:57:13:f7:
98:03:c6:c6:a4:58:e2:2b:89:3f:27:92:65:49:d0:
c6:fe:77:66:de:d3:fd:1e:f0:66:d3:39:16:ff:85:
ad:9b:80:69:7b:84:84:93:f0:28:53:0f:b9:7a:2b:
70:3e:0c:c7:31:a6:19:3b:a2:e8:5f:61:44:31:58:
d2:e5:53:95:c8:22:54:39:93:ec:4c:4a:91:3d:45:
61:e4:cd:41:ad:13:3a:c9:06:f4:e1:ad:bd:c1:1a:
f1:74:b8:39:59:c3:67:d7:bc:b4:87:52:9c:dc:9e:
5b:64:b5:88:75:62:f8:f0:18:35:5b:87:96:96:53:
31:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:34:4F:A9:42:81:A9:AD:1C:47:9C:63:F2:AE:45:D5:99:AB:88:24
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:53:cb:98:a1:f2:17:a9:8e:25:31:f0:13:57:ee:3d:e5:a8:
dd:a2:e9:ed:7d:ea:56:cf:1b:4c:db:e8:30:a1:8c:15:03:c5:
3a:35:83:79:d8:1f:2f:e0:77:24:0c:0f:15:88:9b:bb:ce:ae:
4b:21:a7:47:09:02:b7:3c:c1:48:14:91:90:1d:47:21:4d:e3:
01:77:83:32:63:d4:9b:25:23:c0:c9:d2:81:71:17:9c:92:e2:
cc:ac:b4:4f:2f:bb:59:02:02:30:71:98:6e:65:45:0c:50:ba:
6d:73:4f:32:ee:56:a1:63:73:4e:b9:69:3c:1a:a4:aa:1e:ab:
4f:2f:e3:70:70:b5:62:e4:3c:d6:b0:a0:ee:52:b5:2e:c1:ca:
7e:c1:3e:ab:b6:aa:e9:1a:20:b3:b5:cf:9a:cf:a6:09:0f:de:
79:75:d7:ce:5f:fd:24:e4:98:a8:67:91:bc:d9:6f:06:e3:9d:
bc:be:81:cf:5e:2b:fc:48:c7:1a:57:9e:c3:35:ff:56:c0:cc:
ad:a6:b0:cb:6b:8e:ab:e3:58:93:5b:b4:c1:ea:cb:db:bc:cc:
a4:ed:69:94:09:46:b3:fa:7f:0c:a5:75:77:d2:f3:4e:cd:87:
00:7f:dc:6c:60:d8:0b:58:f0:c0:93:13:8d:59:06:e2:30:86:
b1:fc:ae:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:39:21 2026 by rpki-client