Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
File: MHFOgRmzE03MBg_lkAp82Gj8WXM.mft (raw, json)
Hash identifier: d3cqE2iZHefhwNQkwhbJjbkzqnqGowyNIi1nrWOKP9w=
Subject key identifier: 37:3A:6C:FC:B0:DB:CC:6B:20:63:64:2F:55:25:B4:C8:E0:9A:F4:D0
Authority key identifier: 30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
Certificate issuer: /CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Certificate serial: 019DA48A9B09A88C4B5B3F9F3B424046787A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
Manifest number: 046E
Signing time: Sun 19 Apr 2026 07:00:40 +0000
Manifest this update: Sun 19 Apr 2026 07:00:40 +0000
Manifest next update: Mon 20 Apr 2026 07:00:40 +0000
Files and hashes: 1: 1vFJ7mkLHt8e-FnbPQ2sGqPMkOA.roa (hash: nP67zUvgCEBny+IrA1V7eCj0Omps26STL5vjKxKHFGM=)
2: MHFOgRmzE03MBg_lkAp82Gj8WXM.crl (hash: BzdbdlUa/vm/Kv0qS57AYb+QklDw7pHzes3UDKbyyO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:9b:09:a8:8c:4b:5b:3f:9f:3b:42:40:46:78:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Validity
Not Before: Apr 19 07:00:40 2026 GMT
Not After : Apr 20 07:00:40 2026 GMT
Subject: CN=373a6cfcb0dbcc6b2063642f5525b4c8e09af4d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c6:23:85:22:1a:c1:bc:5d:53:fb:f4:35:98:
ea:83:29:73:56:84:cf:26:de:3e:e3:10:b0:57:e1:
95:dd:d8:a0:b9:00:75:e5:3a:f0:ff:30:c1:87:59:
77:36:b9:c8:04:2b:ce:a0:8a:05:36:17:01:c4:d0:
8c:6a:47:64:f1:6e:68:f1:91:96:f1:64:2f:aa:c6:
c8:bf:2a:bb:85:96:b5:67:8e:c6:f8:e4:40:09:65:
bb:9e:eb:96:4f:89:9d:41:0b:54:f8:d9:79:1e:b8:
7c:e8:48:f6:68:4a:45:81:67:b9:c2:75:f5:c1:61:
7f:8b:70:44:e1:93:7c:37:82:61:b7:4d:29:79:9c:
39:a4:62:85:60:65:9f:87:30:e6:52:af:fa:68:3f:
ee:e6:45:8b:cc:fc:ac:ca:f6:63:71:9d:4c:d7:96:
1e:f9:46:38:c5:df:f0:13:fd:2c:08:32:72:33:17:
52:db:61:7a:d4:06:fb:67:e7:dd:e0:6f:76:db:75:
ce:e0:5c:a9:28:44:21:d2:62:3e:e5:84:fa:c3:cb:
3b:dc:74:5e:09:99:d5:ef:8f:be:fd:24:88:13:93:
a3:fb:dc:60:4e:9e:12:fa:50:18:0b:44:5a:2e:d8:
41:ed:6c:4f:4f:0c:4c:a9:7c:d1:24:16:a4:3c:a6:
73:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:3A:6C:FC:B0:DB:CC:6B:20:63:64:2F:55:25:B4:C8:E0:9A:F4:D0
X509v3 Authority Key Identifier:
keyid:30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:05:f1:55:a4:9c:e6:26:5e:0e:19:b2:38:d6:c7:5f:7e:9b:
27:f9:3b:b5:f4:c6:9d:7f:67:01:32:c3:a4:fc:d7:1a:66:f6:
54:73:01:ad:b4:fb:ad:43:ac:2e:67:ba:85:db:7a:fe:fe:c7:
3d:60:68:78:88:be:ff:3c:de:09:66:0f:38:28:88:99:1e:98:
1f:6d:de:1b:84:95:49:fa:35:77:15:32:af:7a:fb:3c:8e:11:
76:8a:e3:96:40:b1:01:35:80:d4:15:55:b9:9a:00:df:6a:54:
fc:33:b9:c0:2a:56:36:34:15:9a:c8:90:0a:f1:5f:1c:4c:d7:
c7:f9:32:c0:9e:77:45:2d:87:06:39:d0:08:10:89:74:b4:06:
88:d1:fc:fd:d2:ff:87:4c:0e:24:ec:ff:5d:77:df:d3:3b:99:
09:c1:db:8c:45:1e:ac:8c:57:63:e0:5e:a1:df:97:dd:78:4f:
2d:1a:5a:88:f1:ac:4d:13:cf:cc:1b:45:03:bc:f1:99:3b:44:
d5:75:bf:05:0d:a7:64:7e:fa:e4:dc:85:24:cf:55:e6:e9:8b:
37:dd:74:dd:bb:f8:89:9e:3f:66:02:50:c3:25:fc:28:63:d5:
c2:14:70:ea:58:a2:50:f1:2a:8a:7b:3f:85:3b:29:fd:e2:60:
cd:7c:2a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 16:30:28 2026 by rpki-client