Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json)
Hash identifier: v34r5ClgK53AOtewUDqC5v6q3/zVgJ/bcdFqah8ewOc=
Subject key identifier: F4:12:C0:FF:03:BE:38:0B:66:7D:FE:EC:C4:2C:89:01:A8:27:CD:C6
Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Certificate serial: 019DCD4FC344667C8AC5D73F61BB1B32169D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
Manifest number: 17D5
Signing time: Mon 27 Apr 2026 05:00:49 +0000
Manifest this update: Mon 27 Apr 2026 05:00:49 +0000
Manifest next update: Tue 28 Apr 2026 05:00:49 +0000
Files and hashes: 1: WRWq9c3b9kg8gQPomqG34r1Y5v0.asa (hash: ZoJ/LKA1w1XuBHscB30KCICWqihW2yVYKCpjACmrLmk=)
2: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: QBqvt4eAacYLd23NsCX0Kb0p3gW7LikqXQMXIkCFleQ=)
3: ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa (hash: QsmP7YoZAPOJBFrEDm/rD4hR/aKn34unfeCi9/KcoPA=)
4: lgTArLUMYrKA2h_soDmzPeEt-bE.roa (hash: QFGAzr+Hh5GDcp3vsyzbp7//YxUomw2TKbl55PVM51U=)
5: pFhubwSNdAYBGmBojn7PXR4qmPw.roa (hash: 3NUl+CvK/jyTI2OJq3B6/7x1aR9RvE8f9qeqZkFG9nE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:4f:c3:44:66:7c:8a:c5:d7:3f:61:bb:1b:32:16:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Validity
Not Before: Apr 27 05:00:49 2026 GMT
Not After : Apr 28 05:00:49 2026 GMT
Subject: CN=f412c0ff03be380b667dfeecc42c8901a827cdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:b3:f5:f1:d2:a1:a6:9c:7f:08:88:1a:d7:
ae:8d:a1:b6:a0:9f:4d:3f:83:14:fb:cf:a0:af:de:
38:5d:11:e6:5a:dc:ce:a8:4f:16:db:34:0d:5e:9e:
d8:2c:04:7d:86:53:99:fe:e0:97:61:de:3d:94:8f:
a7:77:f5:4d:8c:f0:97:f4:47:c9:d9:ea:a6:6f:4e:
96:ec:c2:d7:24:48:f3:81:0a:65:35:a0:f0:51:c2:
ab:32:16:8e:50:1c:7a:cc:33:cd:ea:ad:72:2a:51:
24:ac:bc:e1:b1:6c:3b:2c:cb:5f:dd:60:c2:93:29:
42:9b:e3:d8:70:d1:c5:3f:aa:b0:ff:7c:27:59:c4:
17:9d:f8:8d:97:d7:66:9b:07:bd:8b:05:02:65:da:
53:7c:00:ca:8f:e8:bb:30:a2:eb:f4:f1:a5:c4:0a:
38:ea:f5:5b:12:39:8f:12:a1:bc:13:d3:17:38:ef:
92:77:2c:61:a0:56:1a:63:ba:86:a2:67:5b:45:7e:
e8:1e:fc:6f:58:7d:c0:64:61:a3:80:b8:e3:a0:63:
75:22:4b:42:d2:33:f0:b3:43:96:5c:64:e2:8e:dc:
61:63:ed:b6:86:7c:e4:a5:e6:40:52:23:98:02:06:
d8:c9:7c:61:11:95:b9:af:c2:00:5c:22:b8:18:b0:
35:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:12:C0:FF:03:BE:38:0B:66:7D:FE:EC:C4:2C:89:01:A8:27:CD:C6
X509v3 Authority Key Identifier:
keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:0b:2f:da:76:da:be:c4:16:da:9d:5e:ed:3c:a6:a3:cf:28:
0f:01:76:1e:c4:cf:18:3a:7d:5f:10:77:f2:d6:37:56:50:ef:
64:f3:6a:c2:d0:3b:1b:1c:77:ae:82:c9:45:77:84:66:16:20:
42:04:e3:fc:bc:92:4d:f9:cf:52:4b:5b:cd:68:a0:72:6b:4e:
82:a6:54:c0:08:b6:96:2a:b0:fb:31:89:2e:53:42:33:99:34:
1a:72:8a:cf:2c:0e:89:06:29:07:33:66:7b:51:7c:f8:0d:8f:
8e:57:17:7f:c3:10:a1:28:53:37:d7:2e:6e:5f:64:04:a9:43:
43:71:a6:60:de:e4:f0:e6:34:e4:60:91:37:b9:04:8e:6e:72:
cc:92:3f:76:2c:44:89:32:f8:59:f3:f6:37:c5:4a:15:e4:d6:
db:9b:04:40:49:91:c1:be:4e:56:93:06:9c:3c:38:6a:a1:4f:
0e:2d:27:5f:d1:3d:8a:7e:8c:d2:21:d3:ad:69:2f:25:34:a8:
5c:e2:bf:bf:07:9f:9b:47:2a:cc:9c:f9:94:16:fb:7f:96:c5:
e3:17:18:34:1d:04:f3:76:7a:e5:0c:3c:a6:6d:2c:89:99:f4:
09:36:8c:68:39:6e:57:1d:4f:29:62:c2:f1:f8:04:a8:ca:6c:
2a:8e:99:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:31:50 2026 by rpki-client