Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
File: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft (raw, json)
Hash identifier: IxHldccVkAYQCg6qEbI+1+nIFkqM+TQmCIJnQIjQhHk=
Subject key identifier: 7B:78:B1:C7:C7:78:F0:6C:C9:13:E2:BC:D5:4A:B5:4E:6F:30:8C:FF
Authority key identifier: D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
Certificate issuer: /CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Certificate serial: 019DCF752A5C7B6AA072C9D2059EE36773A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
Manifest number: 0871
Signing time: Mon 27 Apr 2026 15:00:55 +0000
Manifest this update: Mon 27 Apr 2026 15:00:55 +0000
Manifest next update: Tue 28 Apr 2026 15:00:55 +0000
Files and hashes: 1: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl (hash: LWFezHqaUOOOZLpAAImGURripy3QfNxaWaFpp4MQS1o=)
2: HvbqYPMAVepvi6ZtkrW2fUxUxMM.roa (hash: kj2P3vyd4ShtsXAZbQsRTziSHIgT6QC6RQY8zqv9EFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:2a:5c:7b:6a:a0:72:c9:d2:05:9e:e3:67:73:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Validity
Not Before: Apr 27 15:00:55 2026 GMT
Not After : Apr 28 15:00:55 2026 GMT
Subject: CN=7b78b1c7c778f06cc913e2bcd54ab54e6f308cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:1e:94:dc:54:29:e1:cd:bf:1f:8c:99:5f:
b6:8d:1e:8f:f5:9c:be:15:21:08:c4:ee:35:ee:11:
4d:9f:67:04:8c:64:3d:24:e6:45:d9:84:47:78:0b:
78:b3:c5:27:c4:5c:c5:c1:22:2a:ab:36:84:2a:d5:
c1:1c:8a:5a:a3:e6:3a:62:51:22:53:63:fd:dd:c8:
c9:d0:b5:b9:82:32:ab:11:f3:f2:a0:6b:71:36:63:
7b:e1:05:9b:54:e0:d0:55:ad:d4:11:7e:8b:43:a6:
4f:b3:35:d1:92:97:53:bc:27:1f:05:d6:8a:55:d1:
5c:19:7c:4e:d4:f1:2b:2f:a8:16:f7:4b:d9:1c:a2:
7d:84:31:03:a9:48:5c:96:98:1c:cb:2d:c7:fe:0c:
81:34:7a:8a:19:e7:10:21:13:e3:f5:e8:d5:ee:6d:
0d:60:c3:8a:2b:bf:e1:1d:94:0f:fe:5f:df:bc:8b:
ae:d3:62:da:6d:e0:58:9f:5f:1e:83:d0:b4:ba:a7:
08:3c:69:5a:74:00:2d:54:de:7a:0d:69:2d:d8:15:
03:eb:aa:2d:3a:49:81:5d:f6:93:60:07:61:1f:01:
03:a8:36:00:bb:02:a5:49:c8:01:77:4f:50:e9:91:
68:fb:33:df:db:03:02:8a:64:d7:66:96:e9:4e:dc:
57:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:78:B1:C7:C7:78:F0:6C:C9:13:E2:BC:D5:4A:B5:4E:6F:30:8C:FF
X509v3 Authority Key Identifier:
keyid:D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:18:0b:21:50:8f:c2:68:98:fe:f9:3a:28:4b:bf:34:77:37:
d3:89:3b:85:0d:19:f7:bd:d0:eb:37:eb:f9:58:f5:97:e0:d2:
9b:e4:23:0f:d9:33:9a:21:b3:fd:cb:8f:79:b0:3a:ae:6c:db:
f7:dc:be:61:af:28:05:f3:28:74:1d:ec:44:cb:e5:fe:8d:a9:
21:f7:f0:a2:0d:43:30:a1:b5:4a:0d:f3:54:69:62:0c:3a:c6:
e6:48:58:dd:45:67:de:a9:a9:4e:e0:70:60:8d:10:4e:4f:ec:
09:9c:23:94:90:11:28:bf:91:d6:e8:3f:90:1b:3e:b4:e8:1e:
31:36:fc:59:4f:4b:ff:df:00:a4:40:ae:8f:79:8a:c3:ae:55:
4e:86:05:cc:1d:95:45:f2:ba:01:25:f8:96:05:4b:81:6c:d3:
65:d5:98:34:89:5d:5a:71:ca:14:b2:45:27:b9:a0:53:25:1d:
47:6e:f5:1a:c1:22:11:a0:8c:0c:35:68:5c:59:54:7e:bc:6f:
ea:ea:3e:21:ba:bb:3e:d6:00:d8:0e:ac:b4:3b:31:ca:75:99:
26:8b:d7:cd:a3:e7:5e:5e:6b:79:61:e8:02:7d:85:db:59:90:
ec:0f:28:dd:f1:26:4d:fc:9b:0f:34:a4:f7:46:f7:eb:be:99:
d8:a5:ed:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:38:39 2026 by rpki-client