Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json)
Hash identifier: +drB4xJsPnY80LaN1DqVS7rHhYq7TeTZTi6zWiYDOIg=
Subject key identifier: E0:5D:18:18:AE:62:91:38:7B:D5:76:CF:66:81:99:44:83:15:9E:27
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 019D9C9A187716F0633BC2CB8658E26C962F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
Manifest number: 0DC8
Signing time: Fri 17 Apr 2026 18:00:37 +0000
Manifest this update: Fri 17 Apr 2026 18:00:37 +0000
Manifest next update: Sat 18 Apr 2026 18:00:37 +0000
Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: GtU3StR5zCzfIFCTdCjQpOV/Kxn5hSJYhTDOt++5mmM=)
2: afKBlYSGIMBV_VMkuFvv4MisLCI.roa (hash: s1e49FrGfKuZntD2cZ980PigitairMSPS2lGbyZKLV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:18:77:16:f0:63:3b:c2:cb:86:58:e2:6c:96:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Apr 17 18:00:37 2026 GMT
Not After : Apr 18 18:00:37 2026 GMT
Subject: CN=e05d1818ae6291387bd576cf6681994483159e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a9:d1:b3:0c:5b:3f:97:dd:d6:ed:17:4c:e2:
8a:a9:d7:3d:bd:88:96:53:7a:57:87:33:0a:2f:47:
3e:b2:ad:92:10:d3:64:e0:09:24:c0:79:9d:e0:49:
b3:d3:36:d1:c4:20:7c:21:b2:14:7e:31:6c:cd:30:
aa:88:ee:c1:4c:41:74:d4:7e:54:11:68:58:78:c6:
80:e2:05:5d:24:11:b6:b2:ba:9b:df:e4:34:79:7a:
eb:43:d6:a0:37:9b:c9:7d:11:4f:a6:17:9c:2d:eb:
94:ab:5d:63:3f:be:0d:a9:e6:da:e3:75:9d:25:bc:
58:20:61:80:f5:c2:e4:ee:85:fb:5d:dc:9f:99:51:
d1:82:b9:73:97:ca:82:88:c4:dc:c1:a1:6a:c0:55:
cf:c9:6c:e5:34:ce:3a:41:09:b0:61:67:5f:9c:38:
23:17:22:c1:46:ad:26:fd:f8:b7:0e:6e:99:a1:f4:
f9:6f:51:2f:bc:de:03:10:9a:3e:f1:53:d5:d2:15:
07:38:f3:df:56:19:4a:2c:28:9c:5e:12:95:f7:6b:
67:ff:9a:fa:ce:80:f3:2e:6b:e4:99:da:3b:d0:2a:
ba:f7:c2:27:57:27:84:aa:15:a4:14:41:3f:bc:53:
05:eb:c2:95:8d:00:7e:2c:7b:56:c4:49:88:c2:cd:
a8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5D:18:18:AE:62:91:38:7B:D5:76:CF:66:81:99:44:83:15:9E:27
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:bf:2b:cc:aa:d5:66:2c:c3:66:93:c2:5b:4f:56:09:a8:51:
5a:06:d1:67:0e:e3:43:3c:a9:d6:ce:c3:c2:3f:3a:6f:e3:ff:
ea:b8:03:f1:67:0c:cd:94:9b:df:5f:a2:60:fa:51:8e:7c:28:
40:87:42:c2:d7:ac:79:26:00:0d:03:c6:0f:e8:b6:e5:77:22:
fc:5a:94:e0:5e:cd:49:1a:83:e3:c5:19:cf:66:cb:ce:92:99:
f0:70:d4:e8:b6:98:be:02:61:45:a2:46:88:d0:05:15:03:25:
4e:08:d2:ab:a5:9f:2a:b6:82:95:ec:4a:6c:63:4d:ff:40:34:
1d:eb:44:4b:ba:45:10:08:2e:4b:54:5b:93:d9:49:23:dd:c2:
88:9a:eb:fa:6a:aa:92:28:47:a6:7a:bf:9a:00:cf:a1:0f:22:
1e:ca:95:ab:92:ae:e7:1a:1d:49:86:26:24:43:1b:bf:da:9e:
f6:c3:d5:b0:53:13:0f:dd:28:de:be:81:c3:e6:9f:00:63:0a:
7a:1d:ee:a1:13:66:e2:bc:87:e5:c6:b5:a9:d0:dd:d9:0b:22:
c2:55:40:de:15:1d:30:14:6f:20:ee:76:4d:de:41:9e:ce:be:
82:7f:90:10:93:37:bf:72:87:ee:b2:29:8b:8f:ec:cd:f1:b7:
6b:38:85:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:34:00 2026 by rpki-client