Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: l04MG1O7CxWznwA9cUA5wNzVzVetxATfw/bnQunzCD0=
Subject key identifier: FA:BC:9A:1C:6A:AC:BD:E6:14:BD:8F:53:7C:F3:A9:22:C8:6B:39:DC
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 019DA30AFC4D2F3413D12DC25FE7A033F774
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 18C7
Signing time: Sun 19 Apr 2026 00:01:39 +0000
Manifest this update: Sun 19 Apr 2026 00:01:39 +0000
Manifest next update: Mon 20 Apr 2026 00:01:39 +0000
Files and hashes: 1: RmRjeHQ5LHoRU1fZMCv-SARJc8c.roa (hash: zv/hPQoqGigtS053rI8GEj09bwC8kZaEZlvkwBWS8G8=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: +E1nstyREGjQgXoFW9AuFadfcNQSkqFvFThMiTpuJ3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:fc:4d:2f:34:13:d1:2d:c2:5f:e7:a0:33:f7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Apr 19 00:01:39 2026 GMT
Not After : Apr 20 00:01:39 2026 GMT
Subject: CN=fabc9a1c6aacbde614bd8f537cf3a922c86b39dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:02:5d:26:20:67:57:c9:63:bd:a4:08:e8:
d4:1f:96:2e:0d:57:c6:40:5e:f1:d9:c5:d6:82:1f:
75:64:1a:10:74:b1:6a:83:8d:18:b9:8a:92:70:20:
4f:9d:12:12:8c:a0:e7:32:26:50:e6:93:48:72:83:
03:bb:2a:26:22:93:23:7c:e5:58:79:ca:2a:75:a5:
1f:6a:60:83:4f:a2:d4:a0:7e:7d:de:79:52:f9:6f:
db:30:e8:57:6d:e4:ce:57:c3:41:ce:0a:26:28:96:
ae:6a:b5:51:e7:34:66:f2:bd:4d:fc:56:0d:f7:42:
a7:e6:e9:bf:53:42:f3:bf:df:34:97:6b:2a:90:1a:
55:89:f7:2c:08:3d:49:6b:f7:2d:bc:a4:83:5d:19:
47:70:26:6f:7f:d4:e6:fb:72:30:a7:b0:25:f7:f1:
1d:c1:8e:ee:36:e7:c3:14:b3:61:4a:5e:6e:eb:fb:
c1:ca:5d:ed:cd:69:a1:6b:5e:e9:9e:3c:f9:02:74:
5b:df:92:0e:8d:e7:5b:a7:82:42:5d:83:a1:7f:c4:
1d:c4:51:ef:e0:81:f7:1f:38:98:51:f8:49:26:6f:
33:d5:46:fd:51:7c:84:1a:ce:c3:8b:16:8c:01:8a:
1f:42:11:18:ec:58:74:18:79:58:1d:d5:54:ab:04:
6d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BC:9A:1C:6A:AC:BD:E6:14:BD:8F:53:7C:F3:A9:22:C8:6B:39:DC
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:52:5b:b4:c8:fd:b8:d2:9f:29:9d:48:85:90:d3:45:e8:10:
51:ae:eb:c1:3f:72:77:07:2e:16:1a:c2:58:dc:69:46:36:17:
db:80:db:7a:03:c7:75:e6:d1:55:b5:46:5c:12:2a:12:17:ab:
b0:9a:c3:20:a9:f0:cb:dd:a6:20:aa:98:59:90:b3:3b:76:1f:
90:0f:8d:0a:d9:2e:9e:27:5a:04:95:e2:f3:3b:00:f5:18:db:
c5:67:53:05:80:76:3c:fa:a0:f5:19:24:58:5d:b1:47:93:fa:
fc:97:c9:3c:fe:c8:34:3f:15:41:b1:f9:fe:bf:82:15:34:29:
b2:78:fd:83:83:7a:22:0f:46:eb:80:11:e2:bc:74:8d:4d:b5:
72:d2:cb:00:3c:86:53:34:72:93:b5:a9:69:6d:be:b0:47:20:
68:f4:41:08:dd:a0:29:f7:41:79:7a:44:ef:c9:18:4a:b4:8b:
06:2f:c0:06:f7:0d:7a:65:43:9f:cd:49:9b:b5:4a:f2:34:f4:
ff:50:76:aa:3f:b6:d8:cb:f5:6c:96:33:ed:7a:fc:72:e7:8a:
eb:b4:a5:bf:5c:3f:e0:bf:95:87:a5:ff:3a:4b:8d:d6:a4:28:
5c:8b:6e:14:f2:c8:d7:9f:43:67:f2:c3:aa:e1:df:d2:ea:2c:
3b:42:47:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:56:12 2026 by rpki-client