Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: /B+xeKo6NqI8j0RQ0gsrau91acbRDAKAo1FNCD2J8S4=
Subject key identifier: 54:33:84:44:9D:91:CA:DF:5E:50:EB:FB:D1:45:95:F6:A4:DE:28:16
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019D9B515735298625EE7009AFC8EB609FC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 11C2
Signing time: Fri 17 Apr 2026 12:01:32 +0000
Manifest this update: Fri 17 Apr 2026 12:01:32 +0000
Manifest next update: Sat 18 Apr 2026 12:01:32 +0000
Files and hashes: 1: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: 1vdeF3zMxP3yIQyqZbSHwk5Q/IFWBLbuY+SfZ4gz/C8=)
2: bnpZWoK19n1XzIl8GBiTgjFaI8E.roa (hash: +AVNEsf0hyxywK+MPw4MlTXuOoeM9Lhba5oG66zfeHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:57:35:29:86:25:ee:70:09:af:c8:eb:60:9f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Apr 17 12:01:32 2026 GMT
Not After : Apr 18 12:01:32 2026 GMT
Subject: CN=543384449d91cadf5e50ebfbd14595f6a4de2816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:b4:86:d9:0d:f3:ab:87:f9:27:07:d8:92:
b0:1f:d2:70:99:1e:72:86:c2:01:62:3e:0a:40:cc:
e0:87:9d:f1:d0:79:bd:4d:c3:6b:18:d2:e0:4c:e4:
5e:e4:c6:9f:7a:e1:9d:dc:2a:95:bd:e4:1c:cc:74:
fa:b6:e8:cb:04:a2:3d:d1:5c:f0:e6:88:6f:74:bc:
23:80:ba:a3:4b:df:cd:6e:56:31:95:6a:f9:cb:f5:
00:d8:dc:8d:1c:c1:32:23:2e:52:02:83:e8:9e:a9:
94:cd:93:e2:5b:ea:32:f1:3a:eb:80:2f:ce:c4:ee:
98:d2:52:7a:c8:f1:e9:ff:4a:38:bf:f8:5b:cb:b3:
42:5c:2b:2f:5d:e1:c3:45:32:c1:b0:92:c3:69:74:
94:70:17:27:9c:5f:bd:e5:9d:93:33:e6:ff:c6:7d:
1b:b7:ab:80:f5:9e:36:e5:fa:00:10:26:ac:73:bc:
10:f9:47:f9:1f:89:4b:54:2a:d8:9c:3c:3f:c4:47:
1b:19:d9:fb:0c:68:ff:a6:2f:8b:fe:f2:7b:36:39:
1f:d8:2b:fa:f6:ac:65:23:47:52:8c:e1:fe:2f:d3:
a3:ee:45:89:fa:20:75:6f:91:be:f2:d4:b4:2d:ce:
b8:77:db:08:d4:d8:6f:0a:50:5f:5c:7f:d7:b5:41:
fd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:33:84:44:9D:91:CA:DF:5E:50:EB:FB:D1:45:95:F6:A4:DE:28:16
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:92:18:d5:14:5f:58:da:5b:0d:ae:06:82:c7:f8:3a:20:0b:
10:f6:e1:d8:86:f3:14:e0:e7:83:18:5c:a0:0f:79:26:c8:df:
da:bc:a5:ac:42:c1:37:9c:90:f4:f0:46:0d:04:dc:97:c5:2b:
0b:34:57:8a:a4:1c:33:1b:ac:ee:f3:ac:4f:c7:7d:a9:fd:60:
ab:b7:ef:62:b0:db:04:10:c7:75:76:20:e2:e8:a6:95:93:5a:
40:8e:4f:0d:c4:40:b8:b3:f1:f9:01:d9:e9:75:78:3d:66:2f:
b0:07:d3:97:52:2d:39:9e:86:bd:43:9b:0b:4d:81:41:d7:7a:
05:c2:7f:f9:a7:d2:11:72:4a:4f:2b:05:45:83:78:aa:3b:b6:
11:c3:b9:a3:09:98:5a:68:89:b9:6e:c9:0d:8d:89:c0:dd:e0:
e6:e8:7a:dc:93:4d:e7:4a:88:42:52:28:87:67:c1:31:4d:bd:
1b:54:8d:d5:d2:a2:dc:60:bc:2d:bc:1a:e8:b8:d8:9c:a4:a4:
77:fe:71:1f:5c:9b:51:5f:8e:9d:cd:49:6d:c2:9c:f9:f6:be:
bf:d5:17:e4:a2:3a:23:fd:7e:d1:81:2f:99:cc:0d:ac:3a:86:
42:5e:f0:e4:7a:d4:88:b6:fb:d2:4f:3b:60:87:5b:9e:5e:77:
6a:b9:26:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:34:55 2026 by rpki-client