Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
File: 5H78nMPZxL0porvBVVH4LyXPEbo.mft (raw, json)
Hash identifier: o01FMJBSy8RgfoMtCPN7i8u0gZZTBf69eFDbIexEqDA=
Subject key identifier: AB:1F:DD:B0:01:0A:B8:AA:60:BA:95:09:78:D3:9E:64:0C:BA:98:D5
Authority key identifier: E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
Certificate issuer: /CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Certificate serial: 019EC1EDF5C578696C15BBCC991A5DD27A3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
Manifest number: 110E
Signing time: Sat 13 Jun 2026 17:00:57 +0000
Manifest this update: Sat 13 Jun 2026 17:00:57 +0000
Manifest next update: Sun 14 Jun 2026 17:00:57 +0000
Files and hashes: 1: 5H78nMPZxL0porvBVVH4LyXPEbo.crl (hash: mMSD0te1heoxraDK+gKrVpxs5an108o+e0zyntpG9Bw=)
2: vfg-SAjuqUJDpM-dI7gV1uCQ2uw.roa (hash: R/EtSB73ZGWrRnb/Gf2BJqZ0RYrtTKAiO9HiXzdMKyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:f5:c5:78:69:6c:15:bb:cc:99:1a:5d:d2:7a:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Validity
Not Before: Jun 13 17:00:57 2026 GMT
Not After : Jun 14 17:00:57 2026 GMT
Subject: CN=ab1fddb0010ab8aa60ba950978d39e640cba98d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a1:53:08:dc:f0:00:2d:d9:08:60:8a:2c:2c:
6e:1f:87:46:c1:ca:2f:70:2a:38:12:c7:be:dc:88:
26:18:98:a5:1e:05:a1:ba:95:37:e0:04:8e:b6:db:
4e:18:43:20:cd:b9:4b:3b:f3:13:a7:bc:96:dd:df:
7f:a3:ea:f1:3d:f9:39:56:f6:8f:4d:eb:ca:fd:a8:
ab:b9:81:42:ab:44:c1:3c:d8:46:0b:3c:9b:b2:1a:
31:73:ca:bc:30:55:f6:8b:08:7d:9a:49:76:ca:49:
d2:69:57:ba:ce:09:75:bf:fc:77:4e:d3:1f:91:3f:
ec:13:d2:98:31:96:7e:37:fc:dd:04:f8:30:d5:90:
3a:01:5a:35:5b:7a:f7:e0:d6:e8:0b:03:73:cc:21:
89:93:8f:7f:62:c3:62:2c:6f:eb:ab:c2:99:3c:d7:
7e:36:4e:83:8a:bc:71:a0:82:9c:f6:8b:fa:52:3d:
ab:42:9f:c8:3b:02:99:47:43:90:4f:f5:33:48:8f:
d2:8d:b8:9f:40:50:be:5e:4c:f3:06:e7:98:a9:c2:
dc:14:8c:88:d0:75:fd:4f:f6:75:3d:95:08:ba:31:
ab:7a:cc:ec:61:93:03:ba:6f:83:ea:f8:b3:90:35:
7a:c8:ca:0c:e5:bf:d8:9e:37:29:ef:f9:12:c7:f5:
00:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1F:DD:B0:01:0A:B8:AA:60:BA:95:09:78:D3:9E:64:0C:BA:98:D5
X509v3 Authority Key Identifier:
keyid:E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:03:7a:a3:e9:96:ff:6f:b0:2e:fd:70:d6:0b:31:6e:fc:8b:
33:c6:df:96:df:fe:e9:82:9a:f9:2e:d3:4c:87:96:8e:bd:b5:
03:82:60:e6:a1:3b:7c:0d:08:14:58:64:c6:0b:a0:bd:6c:7f:
db:5c:08:84:40:dc:4b:9a:f8:21:fe:1b:77:de:d6:a8:87:65:
38:27:bc:e4:a0:ea:d1:ba:ef:27:11:22:7a:89:40:cf:60:da:
4a:92:9f:9e:ba:63:9b:47:52:f6:51:4d:0a:96:26:fe:04:d6:
29:be:aa:19:f2:8e:0f:75:a5:30:2d:fb:03:37:cc:10:0d:52:
99:32:d0:9a:90:41:15:25:f3:3b:c6:41:51:18:64:7a:96:65:
08:8a:f0:6d:67:ff:fa:b7:41:3c:34:00:bb:35:cf:07:24:b1:
25:4f:3f:92:ff:6f:4d:82:0d:82:78:b9:7e:eb:5f:df:48:a2:
5d:f2:13:91:76:92:97:c7:eb:32:e2:0d:00:54:ce:c4:e1:49:
79:67:09:08:c3:7e:ce:bc:bd:08:f3:b3:e2:64:eb:84:01:5b:
1a:61:dd:43:d8:d6:f4:41:82:87:f1:d9:5e:76:98:3c:44:f1:
b9:04:72:50:cd:b4:1c:bb:a7:1a:cb:1e:95:45:1d:92:c8:e1:
1f:38:73:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:10:28 2026 by rpki-client