Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
File: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft (raw, json)
Hash identifier: dsMwTmQAID9uGW+4/YCjXJLFjHlYTfHVhdInojjPP3w=
Subject key identifier: 50:7B:0D:08:1F:12:DC:B9:C1:BD:5C:1B:24:84:2B:E1:CF:38:1F:B3
Authority key identifier: D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
Certificate issuer: /CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Certificate serial: 019CE3DAA1C104933EFDD41FA3747FBF7B0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
Manifest number: 07F7
Signing time: Thu 12 Mar 2026 21:01:22 +0000
Manifest this update: Thu 12 Mar 2026 21:01:22 +0000
Manifest next update: Fri 13 Mar 2026 21:01:22 +0000
Files and hashes: 1: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl (hash: j4m5qGbL5sLONNHL6Giy0GdpCKbuf7E6FE8dL4bOi9w=)
2: HvbqYPMAVepvi6ZtkrW2fUxUxMM.roa (hash: kj2P3vyd4ShtsXAZbQsRTziSHIgT6QC6RQY8zqv9EFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:da:a1:c1:04:93:3e:fd:d4:1f:a3:74:7f:bf:7b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Validity
Not Before: Mar 12 21:01:22 2026 GMT
Not After : Mar 13 21:01:22 2026 GMT
Subject: CN=507b0d081f12dcb9c1bd5c1b24842be1cf381fb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:24:aa:49:72:3c:5e:fe:06:8f:bb:f6:27:
40:87:e7:c5:5d:5e:21:f7:21:9c:56:c0:3d:e8:2e:
9d:1c:df:93:b4:79:7b:e3:51:a3:f3:e2:90:7f:28:
06:db:8d:56:46:a6:2c:52:58:e1:4a:54:13:e8:e3:
38:30:d4:9f:38:e1:93:d5:3c:d2:e1:f9:b1:e7:9a:
1e:7c:71:72:3b:9b:db:bc:4f:7c:10:ca:d4:7d:00:
76:a4:9d:e3:41:80:37:b1:2d:0e:91:12:39:3d:c2:
f4:20:bd:5e:93:c1:f8:7a:72:f4:05:81:bb:85:7c:
45:98:f6:d4:ad:48:37:3c:bf:e2:56:e2:d2:ce:08:
0c:e1:0f:57:06:79:cd:31:50:91:b0:3f:ac:e8:29:
d6:bc:78:34:92:3c:8a:89:9e:cb:d5:91:98:b2:51:
63:77:8f:da:8a:da:67:74:6a:fd:50:8c:94:b7:f1:
6f:54:b9:f8:18:79:e5:05:1c:a5:2b:8d:9a:9a:80:
b6:61:eb:7d:15:81:18:56:02:70:18:98:0d:6a:8a:
8f:5a:96:d3:04:c1:dc:0c:bd:7c:4d:19:cc:17:c7:
e4:6a:ff:16:b2:a8:96:74:a3:f9:f1:3d:4c:79:5c:
15:23:42:f1:f8:0c:1c:5d:c2:81:e9:88:99:f7:8d:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:7B:0D:08:1F:12:DC:B9:C1:BD:5C:1B:24:84:2B:E1:CF:38:1F:B3
X509v3 Authority Key Identifier:
keyid:D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:ce:6e:f2:9b:13:da:54:2e:c6:53:42:96:01:aa:a0:e7:e8:
58:4a:ad:02:4d:08:89:27:03:ef:35:a2:9d:7b:8a:c4:87:50:
39:f1:54:e3:f3:6e:99:32:bb:de:b1:1a:94:a9:67:68:2a:f4:
2b:1a:ec:66:e8:b7:eb:ff:f1:c1:9f:9c:2f:2f:60:16:47:c9:
e2:fd:17:a2:95:8a:cf:f3:d7:da:df:35:53:18:83:8a:26:60:
30:15:32:04:d7:58:52:ac:49:52:de:57:29:52:d1:f0:ad:bf:
55:57:fd:0c:4c:1f:1c:da:1e:7e:cb:50:7d:b8:7f:68:7a:5e:
09:4a:7a:ab:93:2b:4a:03:10:f6:db:8f:4e:0a:df:55:a8:60:
f7:95:72:24:44:2d:52:69:cc:15:3a:f7:f2:8e:b7:0e:61:bc:
e3:95:df:5c:51:48:02:f4:c9:3e:63:44:55:4e:29:b8:22:b8:
15:cf:65:4b:de:5b:4f:8e:91:cd:98:f4:68:76:57:fe:d5:6c:
bd:ae:27:d2:9b:fb:ef:1b:25:98:6d:6d:99:53:8a:50:13:88:
5f:ad:70:43:9e:1e:be:35:11:c1:07:b0:c4:0a:98:7a:06:c5:
5d:a0:da:64:c0:ef:71:60:4d:2a:49:44:45:66:ea:40:a3:e9:
bd:7b:da:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:27:40 2026 by rpki-client