Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: GmwZxi2iIU6cTbyxf5QnYqES+v6mwKVPU71SZJqxeWY=
Subject key identifier: 66:5A:FC:D7:3D:BB:25:92:78:85:E0:52:AA:88:01:A8:78:05:9A:18
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019DA4F9648247C83B59AB5E26E970D97ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 11C7
Signing time: Sun 19 Apr 2026 09:01:40 +0000
Manifest this update: Sun 19 Apr 2026 09:01:40 +0000
Manifest next update: Mon 20 Apr 2026 09:01:40 +0000
Files and hashes: 1: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: OjXLzHzfXGuMhD36LAsTgkEKr+n41m4I7iGQSnl+y+k=)
2: bnpZWoK19n1XzIl8GBiTgjFaI8E.roa (hash: +AVNEsf0hyxywK+MPw4MlTXuOoeM9Lhba5oG66zfeHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 09:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f9:64:82:47:c8:3b:59:ab:5e:26:e9:70:d9:7e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Apr 19 09:01:40 2026 GMT
Not After : Apr 20 09:01:40 2026 GMT
Subject: CN=665afcd73dbb25927885e052aa8801a878059a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:88:5d:96:89:f0:fe:ae:bc:a9:79:7b:31:9f:
68:07:99:50:d5:3c:bd:b2:c5:ad:10:aa:b7:dd:9b:
aa:a8:02:98:e3:8b:ba:85:e5:4e:f4:4b:27:92:46:
0b:65:79:c9:75:2a:ff:ea:ac:83:b4:e2:f6:3c:aa:
69:b3:fe:56:fe:d0:2a:49:45:85:13:16:f4:4b:2c:
a6:4c:d6:51:56:47:52:07:78:37:5a:fb:b2:fa:1b:
6e:a2:c1:0b:dc:33:89:ec:08:66:92:e8:f7:3f:a8:
ae:e2:f1:1a:92:58:53:e4:99:b9:8e:78:6f:b5:a3:
3a:0a:03:bf:c8:71:2a:c2:2e:22:72:7a:22:59:35:
a5:00:8b:86:f2:ed:91:db:51:52:4f:d0:70:3a:9c:
83:7f:7f:56:33:8f:69:39:6e:75:00:00:50:b7:d1:
d0:5e:c0:4a:69:5c:c3:b5:88:85:a7:3b:5e:ed:dc:
db:61:b2:cb:43:e5:bf:de:7e:05:0b:59:b7:bc:eb:
19:fe:4c:bf:fe:2c:14:79:4e:94:77:a3:ae:2d:5a:
99:e0:1a:70:89:5f:57:ec:79:25:e0:17:0d:66:70:
0e:c6:71:f1:63:33:10:2b:d2:f3:36:65:ef:d9:84:
d0:a7:d8:da:a4:a7:6d:8d:04:d5:7e:0c:90:ec:dc:
c3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5A:FC:D7:3D:BB:25:92:78:85:E0:52:AA:88:01:A8:78:05:9A:18
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:d5:80:26:61:ca:fa:69:c4:60:31:b9:96:8e:45:dd:32:cb:
32:62:8c:f5:39:d0:b1:43:31:db:eb:5c:72:4b:18:89:1b:c7:
3e:89:95:97:13:9f:5c:77:9f:8b:e5:8a:42:54:39:2c:eb:50:
5a:9e:5c:4b:d7:b5:16:41:10:05:a6:62:6d:77:37:e4:2c:22:
c2:30:63:7b:58:04:61:ec:35:4b:25:33:d9:f1:73:bf:45:30:
bc:61:63:6a:78:d0:d1:f7:66:92:58:59:c1:59:93:fa:09:6a:
08:b4:d0:7d:e0:a0:62:5f:d7:a7:95:12:ed:d1:3d:05:a2:61:
ee:37:ce:00:12:cc:38:e2:f8:83:c1:fd:31:05:be:80:32:a8:
7d:c6:fe:77:3c:c4:02:b1:22:b8:00:8c:fa:00:b0:3d:26:1b:
31:98:13:32:c4:cd:93:7c:b5:0c:9c:3f:b5:ec:0b:f8:3a:f4:
6d:33:91:46:f4:d2:b7:e2:ab:4b:53:f6:7e:e1:15:ac:68:83:
20:29:1f:e3:41:d5:d2:55:83:ec:9e:ce:2d:da:ad:f2:52:d5:
9c:dd:3b:bf:4a:38:d9:3b:f5:a9:6d:3a:e1:c8:3b:8f:0c:6f:
7e:29:6b:5d:74:1b:da:fd:38:4a:89:0b:03:e5:b0:f7:9c:21:
1e:c3:23:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 15:28:50 2026 by rpki-client