Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: VmKE7bbKidSNT/jGkNwk5EEgld72RbKzzhKdYMp/4Os=
Subject key identifier: 64:B5:D8:C9:0E:70:8E:A2:DE:3E:97:CE:52:31:B9:96:97:E9:C4:55
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 019CAD59649A9247B571DFA357CE441E89AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 04EA
Signing time: Mon 02 Mar 2026 07:00:42 +0000
Manifest this update: Mon 02 Mar 2026 07:00:42 +0000
Manifest next update: Tue 03 Mar 2026 07:00:42 +0000
Files and hashes: 1: 2FxreVqUv_iXTp_gEHHtX_RyDvE.roa (hash: 6tKnUYnu6mjtenIrBJhX9fiu65PwuGcfSqr4GAWWO5o=)
2: RKI3XSz6XZy96Ol-18QcP9FlH4c.roa (hash: g/j02qL/fofi4lQDzUhm/wqo/x+TAc1YiiXTTjZy7lA=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: bPU95pjeXneF5kaKbnBOTiFcugKGyHaE0yDSSf5kFQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:64:9a:92:47:b5:71:df:a3:57:ce:44:1e:89:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Mar 2 07:00:42 2026 GMT
Not After : Mar 3 07:00:42 2026 GMT
Subject: CN=64b5d8c90e708ea2de3e97ce5231b99697e9c455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:c1:a6:4a:13:0b:9f:6f:2a:29:61:fa:c6:
5f:84:f0:93:8f:d1:74:30:47:9b:c6:43:40:00:ae:
24:50:d2:8e:ff:92:17:ad:80:ee:ab:9a:3a:10:87:
75:0d:30:71:4b:57:52:03:e8:4b:26:54:9a:7b:be:
07:4c:2c:4f:9a:96:c2:81:3d:4c:9c:f3:71:56:69:
fb:ae:75:be:a5:cd:0d:e5:12:65:11:73:95:76:58:
ee:f0:56:46:14:01:bb:d7:e6:a9:54:e1:5e:0a:3f:
5f:de:fd:3c:35:43:f7:06:f2:03:9d:c5:1d:98:fa:
23:9a:8b:89:a1:56:cb:cd:eb:a7:74:9a:47:c8:6c:
ed:92:c7:75:d8:c5:d2:4e:32:3f:95:f3:27:1b:4f:
3e:c0:e2:c0:1c:bd:ec:33:31:09:c7:ad:bd:22:5d:
17:b6:85:b8:71:f4:6a:7b:bb:11:1c:cb:e2:cc:01:
d2:b5:0a:99:fa:f9:36:80:89:f3:c1:da:e2:35:1d:
5c:ad:3a:8d:ff:15:ba:32:1e:f0:e0:b4:9e:c9:be:
06:77:3b:cd:ba:0c:f8:86:1d:0f:f8:79:4b:dc:c9:
a4:d6:9a:0e:43:b5:3b:78:38:81:35:dd:32:88:a7:
b7:38:88:8c:06:02:da:55:5c:f8:3f:ce:86:9b:32:
8a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:B5:D8:C9:0E:70:8E:A2:DE:3E:97:CE:52:31:B9:96:97:E9:C4:55
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:6e:7a:ed:84:82:66:43:73:49:01:3f:8c:46:b1:49:48:a0:
88:94:19:55:86:a4:21:95:2e:5a:19:ad:e7:22:8d:2c:c6:c9:
24:4e:eb:0a:a4:63:a0:a9:ac:82:04:d6:c4:a8:61:08:d1:6c:
70:48:e8:59:e6:ee:4e:a9:6b:87:2a:7d:8a:2d:3e:21:22:5f:
a4:28:1d:83:87:f6:a4:9b:ce:1e:11:04:eb:dc:7d:f0:94:3e:
93:18:04:47:a0:f2:37:4e:4c:2c:75:1f:f2:9f:ab:47:39:4d:
7f:5a:5a:15:7c:3c:a0:1f:5c:46:3b:9b:f2:80:63:16:d5:e3:
1d:12:5a:2f:8c:c2:c7:25:6d:06:b0:5c:2b:28:89:4c:95:98:
63:1c:1f:bc:82:7d:53:2f:68:da:13:00:63:9a:73:66:cc:9a:
26:ba:fc:2a:f5:11:61:aa:78:60:41:fe:e6:9b:ea:06:fb:a3:
d5:26:3c:c8:3d:e5:d4:f7:ee:c0:1d:42:fb:3d:3b:c9:e1:b7:
c4:72:fb:b6:51:3b:bf:91:09:59:00:ea:eb:c0:a2:32:ba:95:
b8:13:b3:46:c1:95:11:17:04:96:fa:81:ae:93:e9:21:34:67:
a6:cf:5c:f4:63:1d:75:40:c8:f5:57:23:a8:88:c9:1b:19:26:
df:cc:b5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:21:56 2026 by rpki-client