Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
File: h30YEASPQ3IFBuTBgg9v4I_3ym4.mft (raw, json)
Hash identifier: 3AFoDhj32vz02iZKggiH5Io7n61uUi2ur0MgK1dlx0s=
Subject key identifier: A1:86:BC:EB:63:91:73:E7:5E:E3:05:EA:78:0C:08:80:9D:01:7A:A4
Authority key identifier: 87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
Certificate issuer: /CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Certificate serial: 019DA453C69405D7368937B98CE74AAB8A55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
Manifest number: 0E61
Signing time: Sun 19 Apr 2026 06:00:46 +0000
Manifest this update: Sun 19 Apr 2026 06:00:46 +0000
Manifest next update: Mon 20 Apr 2026 06:00:46 +0000
Files and hashes: 1: dMfmkGCssv7XqTWroQRv-l8a5ns.roa (hash: hm9ZxaNW+e5ilEfF4gv37M+kUWsrW8nDblCItA5yuBg=)
2: h30YEASPQ3IFBuTBgg9v4I_3ym4.crl (hash: brlu6beWyDXqcIbUMnXQ1caR29UEuYWMCOd0BcraXlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:c6:94:05:d7:36:89:37:b9:8c:e7:4a:ab:8a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877d1810048f43720506e4c1820f6fe08ff7ca6e
Validity
Not Before: Apr 19 06:00:46 2026 GMT
Not After : Apr 20 06:00:46 2026 GMT
Subject: CN=a186bceb639173e75ee305ea780c08809d017aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8e:b7:ae:e8:52:fa:50:34:83:01:bb:93:6a:
69:24:0c:d0:ed:9e:8c:e1:3a:2d:3c:78:ee:a3:05:
2d:9c:e3:1a:c7:bb:ce:0c:c2:6f:86:40:57:60:74:
63:67:8b:30:d5:b6:79:ec:b4:83:68:69:04:d1:24:
ca:5d:a5:6e:c6:e3:e6:29:7c:1c:78:02:df:11:e6:
b9:0a:c6:7e:78:5e:df:43:52:6f:80:75:04:8b:20:
bb:11:ed:57:14:bd:9b:94:f8:0f:f9:0d:cc:49:95:
c8:78:1c:4f:f5:c3:4c:bd:2a:30:15:e6:24:20:71:
1c:3e:34:ea:52:ae:73:b5:a3:e7:34:cf:6b:0a:f7:
41:1e:73:e7:1a:23:c4:74:a0:00:72:ff:e5:98:b2:
f1:b5:7d:97:03:2b:d5:e6:8e:f9:aa:0e:8d:80:af:
22:56:b4:9b:08:2a:0a:f7:7c:0a:42:67:82:87:12:
f9:35:1a:3c:84:99:10:71:02:18:fa:0e:42:f2:17:
7a:fb:94:5e:90:2a:1f:c3:c3:1f:df:af:7f:c2:3a:
a5:e4:8d:e6:c3:c9:39:f8:7a:d4:bd:ce:65:f9:df:
69:f9:42:f3:80:7d:9f:73:4d:85:10:13:27:07:8a:
d2:55:a4:72:af:65:46:50:84:39:8b:4e:78:cb:05:
96:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:86:BC:EB:63:91:73:E7:5E:E3:05:EA:78:0C:08:80:9D:01:7A:A4
X509v3 Authority Key Identifier:
keyid:87:7D:18:10:04:8F:43:72:05:06:E4:C1:82:0F:6F:E0:8F:F7:CA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h30YEASPQ3IFBuTBgg9v4I_3ym4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d3377a-8d38-4235-aa73-7e89b720190d/1/h30YEASPQ3IFBuTBgg9v4I_3ym4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:7a:02:af:a8:73:07:e3:ec:70:7e:59:f9:f9:73:60:92:af:
a6:10:ce:db:00:7a:37:9a:fd:d7:dc:47:6e:fa:0c:df:96:4f:
13:94:91:83:0f:99:42:2e:5e:15:5e:81:14:11:62:b9:69:3e:
5a:72:ca:f2:4b:20:b7:12:d6:b2:e7:7a:67:cf:bd:3f:93:79:
27:43:30:6f:f5:9b:6e:af:30:b9:87:fb:3b:ac:f0:18:14:39:
7e:20:4b:d8:25:9f:3e:4e:62:39:ce:5f:0b:b8:be:b2:eb:b9:
e4:90:36:10:91:3b:2a:4a:1e:b9:6f:7c:7f:22:bf:4e:5a:0c:
82:ae:2f:63:9c:c0:8e:34:43:b4:d0:45:a0:32:0e:6c:df:8d:
a0:85:e1:1c:7c:b3:e8:ef:0c:03:dc:f4:42:46:d6:c7:76:5d:
99:cd:94:8a:fd:5f:08:e0:61:d7:09:3a:a7:c3:80:d9:b5:ee:
2c:6e:69:20:33:64:3c:5f:79:4c:d9:71:0a:f1:4c:81:4a:67:
6c:7e:1d:ad:9f:46:5a:82:8f:d8:25:35:ed:f0:4c:41:00:31:
55:be:44:f2:34:46:32:01:bb:24:20:df:d4:4e:40:fa:b0:15:
ed:92:17:ae:17:2f:e9:ed:36:27:7b:74:1c:c4:e0:69:a7:12:
d9:ea:48:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:05:08 2026 by rpki-client