Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: +mUR92FHNnlNRyDpbnL0yR1RM5trLQUoUolWbZ8eKgs=
Subject key identifier: B0:A2:BA:F6:09:8D:06:43:91:E8:72:28:7B:3A:6F:93:E0:BF:8A:B4
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 019D98BD6FB2260FFC6108E4142F1C412570
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 0844
Signing time: Fri 17 Apr 2026 00:00:44 +0000
Manifest this update: Fri 17 Apr 2026 00:00:44 +0000
Manifest next update: Sat 18 Apr 2026 00:00:44 +0000
Files and hashes: 1: LVJLyRNkzYXWrFPMXDuqL1cx3r0.roa (hash: /6VNNRjnmK1nx7DLPoyOKEbtFH+S0vHKlP1nyDqaMBk=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: z4Qv7mdLHSGwnrcpupcrDYu1zw4et62VePFRYx0T7ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:6f:b2:26:0f:fc:61:08:e4:14:2f:1c:41:25:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Apr 17 00:00:44 2026 GMT
Not After : Apr 18 00:00:44 2026 GMT
Subject: CN=b0a2baf6098d064391e872287b3a6f93e0bf8ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4b:f1:ea:4f:35:37:a6:a1:b3:2b:29:b9:56:
9a:da:62:c0:a1:a8:86:92:1b:50:d5:52:11:f1:8b:
6a:33:90:a5:2c:d4:27:65:75:5e:43:e1:8a:7c:6a:
42:7d:61:72:17:54:01:8b:70:0d:b2:6f:e8:4c:46:
50:5d:28:67:63:9d:d8:b1:2c:77:5e:34:ae:f9:69:
29:f6:7b:fa:ac:bf:31:68:92:b4:3d:8d:58:30:78:
48:13:4b:9b:35:7c:6a:6a:9c:61:65:eb:2b:87:06:
60:e7:29:54:6b:96:60:0b:7c:58:00:b9:74:a1:31:
3c:6a:92:6f:e0:c9:1f:04:cd:90:2a:11:39:63:2c:
bd:73:61:ac:6b:46:75:db:71:ab:c8:c9:0a:45:42:
49:8a:08:75:26:0a:5c:6d:34:08:10:57:e3:de:d8:
a5:1a:a0:e2:2c:be:ba:5e:6f:2b:06:cf:64:da:eb:
45:98:aa:24:be:f0:70:2b:f0:cb:34:65:32:68:55:
c8:ea:84:42:8a:56:ac:6f:a0:6d:62:aa:9d:da:75:
1f:73:37:d4:8b:f5:88:6b:a4:32:30:14:da:86:0c:
69:19:fe:5b:e3:39:6c:00:5c:61:b7:6e:53:8b:65:
11:4c:d6:1a:92:5e:38:3a:d9:23:b0:1c:b3:23:cc:
c2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A2:BA:F6:09:8D:06:43:91:E8:72:28:7B:3A:6F:93:E0:BF:8A:B4
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:7d:60:d0:41:66:4c:ab:d2:17:49:db:3d:7b:c1:3a:3a:db:
e6:f3:27:2d:b7:cb:c4:02:f2:98:9e:df:29:0b:b1:b7:43:be:
21:77:4c:99:d8:cf:06:bb:a7:f8:c4:89:07:3a:b3:60:9b:38:
fd:7b:a9:36:3a:8b:9f:08:e9:89:1d:fc:19:d1:cb:35:c7:0d:
a0:d0:cf:12:ee:f5:e8:94:e3:b1:20:92:c8:13:b5:1a:1d:0f:
7c:ea:85:aa:0a:8e:c3:c6:ca:63:47:69:4c:fd:05:7a:85:76:
59:f8:e1:52:77:1f:30:ea:63:14:11:63:81:61:fb:88:4c:72:
29:05:4e:82:86:89:b5:5d:d2:a3:9d:1b:10:cb:3b:2f:ed:6f:
ce:e2:a0:60:7c:67:09:39:a7:4e:70:d2:40:ed:17:72:a9:00:
fa:c2:6f:8d:0c:07:02:b0:84:83:9d:e0:95:aa:a4:c9:f9:f5:
59:85:30:e8:58:97:47:a2:4e:f3:e4:62:05:19:f0:20:77:27:
3e:a3:47:34:3d:78:0e:92:6e:b6:f0:a0:e2:88:19:92:f2:ca:
bb:bd:e4:aa:16:eb:d0:ba:c5:16:72:93:ec:bf:ee:34:ff:59:
a6:0b:a5:a6:b6:9f:de:f6:a4:2e:05:ad:78:a5:51:b9:48:77:
9b:4b:5c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:03:59 2026 by rpki-client