Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
File: RhU-isRttc5XS6fjnoforwlsGok.mft (raw, json)
Hash identifier: Lrt4MtCXP/xDMYmu05iBGwlrLEMsvOCPbNZdbz0eE1Y=
Subject key identifier: 71:1F:17:B9:E0:BC:8C:83:F6:1B:D6:D5:CD:37:51:EA:CB:60:0C:5E
Authority key identifier: 46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
Certificate issuer: /CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Certificate serial: 019CAD5A374A6CB1540764CBF0DD46A8772F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
Manifest number: 071F
Signing time: Mon 02 Mar 2026 07:01:36 +0000
Manifest this update: Mon 02 Mar 2026 07:01:36 +0000
Manifest next update: Tue 03 Mar 2026 07:01:36 +0000
Files and hashes: 1: LH31eWblzc9N88J9ihjcAEm2GSU.roa (hash: aA7SpWPZXBL5dHzOmD7+zSVA2s9TImnC5p7oJrbvDXA=)
2: RhU-isRttc5XS6fjnoforwlsGok.crl (hash: +5XCFJePMWwR4ux55RE8mw8wJgcWCZPXLwyFQ47iCM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:37:4a:6c:b1:54:07:64:cb:f0:dd:46:a8:77:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Validity
Not Before: Mar 2 07:01:36 2026 GMT
Not After : Mar 3 07:01:36 2026 GMT
Subject: CN=711f17b9e0bc8c83f61bd6d5cd3751eacb600c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bc:22:d3:41:03:8e:80:3f:6b:27:6d:52:39:
44:ce:f7:b6:e6:42:4d:7d:9e:46:34:2c:d0:54:bf:
62:6b:5f:76:5f:b2:d9:6e:9d:1f:28:ff:c1:ee:ad:
cb:d9:2c:3d:9c:d6:46:90:8d:d3:ab:3b:e7:4f:f6:
fb:e4:c8:a1:a3:ea:f5:7e:47:46:c6:3e:64:3e:09:
1c:8e:25:1e:d4:6a:49:cb:07:01:1b:fe:b1:ef:1a:
ca:8a:36:14:1f:68:13:f2:25:18:49:c0:c3:7b:15:
d6:1d:54:8a:c8:ae:e8:4f:ae:b9:1c:ed:eb:25:ba:
7e:ef:be:5a:a1:f0:31:42:ad:e9:57:e2:6e:61:d6:
2a:ee:5c:44:60:3d:41:86:7d:4a:6d:47:a7:91:61:
45:a4:e6:b6:49:78:26:90:25:26:ad:20:0d:3e:19:
31:f1:db:5d:22:7a:e0:b5:e8:6c:a8:42:3d:b7:4b:
45:34:c7:8c:a5:4e:17:b9:3b:bd:c4:e0:a8:88:bc:
ef:e9:43:9a:b1:95:f2:61:52:ef:7d:83:24:1c:d0:
ea:db:01:27:be:ae:15:d6:0e:ca:17:e2:68:09:e5:
f5:ba:e1:f3:e1:5e:cc:8b:ab:3f:23:68:27:7e:85:
7d:a9:82:8f:0b:9f:5c:2c:85:41:f7:aa:4e:bd:d2:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1F:17:B9:E0:BC:8C:83:F6:1B:D6:D5:CD:37:51:EA:CB:60:0C:5E
X509v3 Authority Key Identifier:
keyid:46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:fe:c5:e7:30:9b:a8:f4:6d:6d:83:12:9d:a2:9a:10:80:49:
f6:18:97:45:bd:b7:ac:4b:8e:4f:ae:60:32:af:17:96:ca:b0:
e6:9e:63:83:d1:c1:d4:83:c7:cc:fd:ee:b7:df:93:0d:d3:2b:
15:0d:87:6b:4d:82:6a:01:3f:4b:e3:f2:02:d0:cf:1a:18:f9:
96:17:92:65:f1:aa:94:a7:c3:a4:3c:7f:65:93:f8:8b:83:72:
89:3c:f2:07:05:59:b8:7a:93:f3:72:d1:fe:65:45:28:6c:01:
ac:2f:6f:3e:ec:c2:cf:4c:e1:d7:0b:9b:13:8f:81:fe:18:5d:
08:a6:58:d5:74:f6:84:4b:eb:50:cd:86:f5:1d:b6:c6:0f:45:
92:40:96:49:2b:5e:4a:05:65:c8:0f:54:94:bb:28:c7:40:f1:
a8:bb:09:a1:b1:e3:fa:1b:dd:c0:9f:29:03:2c:ff:67:a6:e4:
33:a0:fc:bf:b0:cd:bc:49:6e:a1:65:88:31:05:42:67:d6:c5:
f5:dd:91:26:a2:7c:44:af:dd:c9:ee:52:44:38:6e:66:67:30:
24:e6:ca:52:af:a0:89:a8:e2:6d:81:ce:a9:56:17:e8:c3:34:
ec:8b:42:59:2c:19:62:62:dc:01:e7:37:39:ff:53:99:3a:6a:
f5:bd:8b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:09:02 2026 by rpki-client