Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
File: 5H78nMPZxL0porvBVVH4LyXPEbo.mft (raw, json)
Hash identifier: 4J3nD/J5tOVmajW07YxtL7g+iAD4kO5GRkJ3rAyOMNs=
Subject key identifier: 3A:31:30:E1:7B:54:6B:71:03:2C:52:02:81:94:4B:BA:C8:5F:01:8C
Authority key identifier: E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
Certificate issuer: /CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Certificate serial: 019D9C637BE6B3B3C7292CD0823A98B96A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
Manifest number: 1076
Signing time: Fri 17 Apr 2026 17:00:58 +0000
Manifest this update: Fri 17 Apr 2026 17:00:58 +0000
Manifest next update: Sat 18 Apr 2026 17:00:58 +0000
Files and hashes: 1: 5H78nMPZxL0porvBVVH4LyXPEbo.crl (hash: XJxMIl7InH/IFHl5p+v2YMArMOqLVJFrN5vp6zafbpU=)
2: vfg-SAjuqUJDpM-dI7gV1uCQ2uw.roa (hash: R/EtSB73ZGWrRnb/Gf2BJqZ0RYrtTKAiO9HiXzdMKyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:7b:e6:b3:b3:c7:29:2c:d0:82:3a:98:b9:6a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Validity
Not Before: Apr 17 17:00:58 2026 GMT
Not After : Apr 18 17:00:58 2026 GMT
Subject: CN=3a3130e17b546b71032c520281944bbac85f018c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6a:d3:34:19:5f:e5:d3:21:2e:0a:96:5a:c5:
f4:80:04:8e:0d:2c:1a:79:40:07:b8:13:d0:1f:b0:
78:0d:3c:06:32:cb:2a:91:40:12:70:28:0b:16:2d:
7f:37:3a:d8:ba:58:39:8f:35:34:2a:1d:51:46:f9:
a1:91:52:80:ea:dd:3e:48:77:bc:5b:bd:35:e7:a9:
0d:8e:8a:02:86:59:ba:3f:cb:6f:8b:e5:ab:49:1d:
23:c4:50:bf:eb:53:a6:b9:94:0a:78:a4:65:24:04:
af:7d:37:c6:a4:6d:89:29:5b:2d:65:61:ed:4f:ed:
c0:45:f5:89:14:30:76:17:22:42:3f:12:a4:06:9e:
7e:06:e1:72:11:f0:fb:92:b3:61:3c:e4:09:50:48:
e5:25:c5:8f:48:f5:c8:f6:93:9a:9e:13:b2:dd:ae:
32:75:af:e1:93:c7:f5:2b:b9:b9:f5:5c:dc:de:4c:
83:f9:37:b0:f9:85:c0:6f:36:b5:83:1c:d1:fb:08:
4e:39:83:e9:0d:e2:28:e2:1a:24:fa:b7:ae:bc:8d:
3c:10:8c:10:c8:a3:fc:be:e8:05:8d:5f:2b:86:7b:
f1:dd:81:f2:d0:ac:ca:c8:60:dc:a6:40:78:8a:e4:
8e:aa:2d:ee:8c:6f:75:8c:df:f0:e5:ff:63:c1:c3:
c5:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:31:30:E1:7B:54:6B:71:03:2C:52:02:81:94:4B:BA:C8:5F:01:8C
X509v3 Authority Key Identifier:
keyid:E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:c6:cb:05:59:ee:17:0e:05:28:59:12:04:23:a1:23:3f:df:
7b:7d:86:80:01:5b:4b:c4:42:d9:5f:2f:42:e8:a8:54:a8:67:
42:75:79:d0:ca:9c:04:cb:25:bf:40:3d:78:0b:ec:73:a0:71:
65:25:a1:6f:fb:15:8a:d3:a4:20:36:99:49:55:48:5e:0e:ae:
cf:29:15:8a:4e:d7:f6:0d:18:9c:75:89:2b:c6:76:dc:28:f9:
63:90:c1:81:81:d4:f7:ef:c8:81:16:29:e5:cf:ef:38:01:db:
f2:43:5f:34:ba:7f:6d:22:7e:8f:8e:30:ce:3a:45:3e:6c:a4:
d2:12:b6:a1:cc:9f:ff:3a:2f:a8:50:0d:8a:14:10:fb:00:04:
80:dc:58:d5:22:be:cb:dc:ec:6c:85:1f:3a:c0:67:a8:48:8d:
11:87:c8:bb:69:47:14:0a:2f:52:bf:f7:57:f7:b0:58:80:7e:
22:9b:15:9a:27:7f:2c:28:eb:c6:b0:d6:f2:60:69:2a:8e:77:
69:0c:39:f3:01:53:86:9d:77:5a:bf:23:22:21:97:9f:11:7c:
b8:60:12:bb:d7:85:cc:60:22:76:a5:f3:c2:75:db:e3:bd:5e:
23:b8:51:99:3c:e8:ea:03:cb:f4:7a:5d:7e:b4:ea:fe:b8:c9:
cb:03:a5:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:35:32 2026 by rpki-client