Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
File: H9e7sd5oCd9_blc_mrtk5gNhPKE.mft (raw, json)
Hash identifier: IXl09v+hZtXtJtyHiUPmnDcPMAx/iGL/uWK0T1ONldc=
Subject key identifier: 00:A8:13:2A:8F:B4:FC:CB:74:4D:63:D5:66:F6:DB:2A:BD:37:E4:03
Authority key identifier: 1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
Certificate issuer: /CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Certificate serial: 019D389BF816C7DEB4D4CFE86B4B11FBF1E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 08:00:38 +0000
Manifest this update: Sun 29 Mar 2026 08:00:38 +0000
Manifest next update: Mon 30 Mar 2026 08:00:38 +0000
Files and hashes: 1: H9e7sd5oCd9_blc_mrtk5gNhPKE.crl (hash: EVW6Gv5Kzsy6QCBIoKjTrUWXyzzIPLBqqMpug8uRLCA=)
2: VUBqDVSTc9X33Ru22fhohdoill4.roa (hash: xLZ5Laa/gOttFf8mokrurIU7caX1O/u8RDHEevdtn0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:f8:16:c7:de:b4:d4:cf:e8:6b:4b:11:fb:f1:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Validity
Not Before: Mar 29 08:00:38 2026 GMT
Not After : Mar 30 08:00:38 2026 GMT
Subject: CN=00a8132a8fb4fccb744d63d566f6db2abd37e403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:47:ab:7c:18:02:f4:95:66:88:c7:af:6a:48:
95:eb:12:bb:3a:28:ff:71:67:b6:5d:41:d6:01:22:
fe:45:3b:04:d2:f0:51:f7:f5:26:51:fc:3c:61:d4:
fb:93:33:7a:0d:c3:14:b8:a1:f4:89:18:81:4c:5c:
ae:86:0d:a5:13:37:79:83:72:b8:30:53:3d:11:67:
46:60:b2:3c:ae:f3:c2:f0:ee:c4:34:cc:74:92:aa:
cb:91:a0:0c:35:6c:84:d3:3d:2b:54:b7:80:26:94:
54:d1:ba:6e:2b:dd:fc:69:fb:cd:d1:e8:70:3b:71:
16:46:7b:e7:56:e2:a8:00:85:3d:c6:83:dd:57:28:
c9:43:d6:35:24:2f:7e:4a:b4:12:26:68:75:91:6d:
1b:77:96:83:16:d4:be:13:b3:45:5f:81:2b:0d:10:
90:72:45:6e:0a:4d:76:de:8c:eb:88:0b:90:d6:43:
51:50:71:67:48:00:55:91:93:76:2c:e3:06:73:40:
8b:aa:30:76:6b:67:63:06:fa:e7:e8:fb:88:30:c6:
fc:a4:95:64:fe:2c:bd:08:f1:cc:12:ef:6b:94:93:
8d:00:aa:f8:90:35:89:d2:cb:18:f8:8a:4e:d5:23:
78:c5:81:eb:34:84:b7:ba:39:91:3f:c2:76:4a:ed:
44:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A8:13:2A:8F:B4:FC:CB:74:4D:63:D5:66:F6:DB:2A:BD:37:E4:03
X509v3 Authority Key Identifier:
keyid:1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:c4:ca:6c:64:cf:85:d0:e9:a6:92:9e:97:ef:3c:d9:6f:03:
0c:15:88:42:8f:05:3b:fe:1c:c7:44:30:31:f5:03:2c:2b:cc:
e4:01:3d:d0:a4:01:4f:4f:41:30:8e:d9:1c:fb:3f:19:69:2b:
e4:1f:dc:78:6d:08:ec:a2:61:4e:52:a9:8e:ec:04:bb:66:cc:
a4:32:e9:19:79:64:a4:13:c7:1c:dd:f3:ee:4a:32:51:59:f2:
f4:a6:02:4d:ba:25:bd:bb:74:d8:7f:c6:f4:de:b5:df:2a:2f:
54:70:c1:f4:e2:c4:3c:eb:f6:36:2d:dc:51:56:a8:b0:cd:e9:
dd:93:47:17:7d:a1:48:dc:96:5f:4b:83:1a:1f:c4:12:14:a5:
42:f9:c0:fd:31:ee:f1:ee:f0:b9:3e:71:d7:b2:68:d8:e8:b4:
ae:66:5b:6c:08:f3:c5:ff:63:91:4a:f8:f6:ad:2b:ce:13:8b:
ed:b7:34:0e:8a:5f:af:17:34:d0:8c:fb:d6:f9:45:06:c2:d4:
aa:49:66:dd:bc:d3:f7:00:7e:06:f4:68:98:d9:bf:74:41:dd:
f6:75:71:48:6b:0a:37:50:17:c5:dd:22:81:0d:b8:dc:ba:ea:
ed:be:41:c5:35:db:01:8c:07:c6:1e:14:bd:58:b5:a8:82:35:
34:13:27:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:03 2026 by rpki-client