Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: HVVD4OIABwCPYfD/oaGHLB4haPZ8AMenHg0MKNQwwUY=
Subject key identifier: 01:46:6D:1D:B0:43:FF:70:18:55:77:4A:08:F6:CB:1B:6F:9B:53:ED
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 019DA3AEE33078D2503CBEE2A7EE2779F6A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 06EF
Signing time: Sun 19 Apr 2026 03:00:40 +0000
Manifest this update: Sun 19 Apr 2026 03:00:40 +0000
Manifest next update: Mon 20 Apr 2026 03:00:40 +0000
Files and hashes: 1: VK_z4Ar4ArJujXib0iTDaTWfTUo.roa (hash: 7jC4P8FePKMkGfygUtuv427FEEIelby1i3hhTi94LOw=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: 3LmPpL9HB/VObqHzFtwGPzA5OxHzvyLtrw0LNQGoovs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:ae:e3:30:78:d2:50:3c:be:e2:a7:ee:27:79:f6:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Apr 19 03:00:40 2026 GMT
Not After : Apr 20 03:00:40 2026 GMT
Subject: CN=01466d1db043ff701855774a08f6cb1b6f9b53ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:14:d5:e1:66:05:57:51:3b:fe:8e:f5:4d:21:
80:f5:8a:27:51:87:16:b7:db:66:56:a3:81:f1:15:
e9:73:90:f9:1e:c4:33:78:76:fe:c4:8a:d0:d7:27:
a7:51:3d:fe:88:c0:e3:6e:9b:49:ce:e1:36:21:10:
57:8f:c2:02:8d:0b:4b:81:7d:ce:2a:08:e9:c5:b9:
b8:db:a1:54:d7:2a:21:71:01:2f:3f:f1:27:91:2d:
63:57:d2:b5:b5:87:b5:59:d1:88:a3:46:7f:94:0a:
f2:c6:22:49:35:cb:54:e8:63:5d:f7:12:ea:bc:86:
d4:ca:6e:93:99:a2:f0:f0:c3:b3:fd:fd:9e:e4:18:
7b:61:31:10:d5:3d:d7:29:70:92:ab:16:7a:00:11:
a5:15:0c:e0:38:58:33:b6:76:b3:23:02:65:b7:62:
d6:43:02:c0:15:1f:95:05:f7:32:f4:0d:eb:de:15:
03:75:9d:6e:86:4c:79:f8:47:58:83:21:21:3e:9c:
21:82:91:8e:64:a9:e4:46:cd:c6:23:ea:fb:7d:f1:
76:26:1e:83:b8:1f:08:e8:eb:17:b6:91:5c:75:01:
3f:fd:4d:dd:ae:ce:15:b4:c3:8f:5a:4f:c7:e0:1a:
cb:6a:47:fe:b5:1f:0b:5c:f4:ef:f0:ee:48:90:f6:
ab:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:46:6D:1D:B0:43:FF:70:18:55:77:4A:08:F6:CB:1B:6F:9B:53:ED
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:2c:57:c4:5b:f5:b5:d6:76:0e:23:2c:51:25:b2:7c:f8:21:
2d:2b:39:7d:7a:96:85:a0:0c:f8:71:39:13:d1:35:3e:18:29:
86:bd:2b:5f:f3:da:b5:a0:71:9a:21:fe:22:35:d5:0d:62:51:
84:fc:3d:69:79:10:6d:02:18:30:ba:9a:04:41:27:08:d1:70:
43:61:c6:22:d7:b5:12:67:fe:8e:bb:f9:29:42:fe:62:14:c5:
ab:e2:4e:6c:6d:39:54:c1:78:71:5e:6d:c3:10:90:38:b1:a7:
71:8b:5e:d7:da:b8:c9:6a:ac:c1:5b:17:2c:17:6d:e7:06:f3:
a9:13:31:52:84:ba:f0:b5:34:5f:70:2e:5e:10:8d:c9:a9:24:
7f:8f:93:1d:47:73:0f:d6:43:f1:ee:32:b8:28:87:22:34:7f:
b4:f5:20:0d:7b:df:9b:78:81:f1:22:7b:cb:08:e3:43:b3:89:
e1:33:48:da:59:ba:62:80:8c:d0:3d:7b:16:39:6f:95:4d:96:
ef:fb:15:5b:5e:de:2a:2c:bc:93:74:6d:6d:20:90:7d:2b:62:
89:a9:21:12:ab:45:61:e9:ee:50:f4:75:be:ad:63:7f:47:5a:
83:31:59:c0:ab:41:d1:2c:82:da:7f:26:9f:cb:9f:d9:8b:d8:
4e:9b:96:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:17:20 2026 by rpki-client