Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
File: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft (raw, json)
Hash identifier: 9hymYZSdPOBL9GrnJDa2IVkF1fCg9HSA8dymZXC0rfY=
Subject key identifier: 52:73:81:9C:E8:C5:57:5F:14:12:9A:D7:49:88:AF:63:43:B7:7F:35
Authority key identifier: FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
Certificate issuer: /CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Certificate serial: 019E0408115B07A809EB65CC061264DCD88D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
Manifest number: 0303
Signing time: Thu 07 May 2026 20:01:38 +0000
Manifest this update: Thu 07 May 2026 20:01:38 +0000
Manifest next update: Fri 08 May 2026 20:01:38 +0000
Files and hashes: 1: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl (hash: h26u7I0EIflnEz8/SJZflImnOh7Wg0eemuGuY9+7hds=)
2: FKy4QquWDiXsB6434vLtVQiZ1BI.roa (hash: E7KgcSUkFp282kfhM/A9rdhpcSBu+wYieQbkPSRtk8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 20:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:04:08:11:5b:07:a8:09:eb:65:cc:06:12:64:dc:d8:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Validity
Not Before: May 7 20:01:38 2026 GMT
Not After : May 8 20:01:38 2026 GMT
Subject: CN=5273819ce8c5575f14129ad74988af6343b77f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:33:be:18:b6:0c:a8:3d:f7:d7:02:b4:25:
3d:45:15:74:51:f3:4f:bb:74:ea:39:19:5e:8c:79:
13:b8:6e:3d:7a:d3:1f:1b:2e:8c:94:e0:f6:35:33:
32:0d:04:b7:0b:21:e5:06:1f:a4:98:46:3c:1b:00:
10:f7:b0:61:4c:dd:e8:f8:37:c0:c4:5d:37:45:78:
69:e6:59:16:82:e9:fc:37:b3:8a:ab:a0:64:d7:93:
c7:bb:94:4a:33:13:8e:11:b6:7d:40:23:c1:34:4b:
75:c1:78:d7:4f:ce:a3:17:4f:29:b4:04:a7:50:e1:
b9:29:47:ae:4e:f2:4a:40:01:84:9c:5e:2d:b0:b0:
e5:20:5a:97:ad:31:97:f3:ea:e6:31:d8:a2:1d:85:
16:9f:a6:9c:3b:fd:21:10:2c:e3:b7:15:70:01:b7:
20:66:9b:a2:12:8c:20:97:2b:da:e3:33:06:8a:95:
a4:c9:c0:1e:9c:c1:33:87:b7:1b:95:7d:3f:91:30:
4c:a9:10:db:cb:f7:18:2c:d8:19:f8:04:eb:dc:d2:
3e:97:09:4f:7a:4e:6f:89:72:2a:1e:a4:70:97:6f:
0d:e6:46:b6:1d:71:34:5f:31:b8:8d:91:b1:b1:37:
68:f0:38:81:f9:7e:c4:0b:55:b4:75:7e:ac:3c:d9:
ad:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:73:81:9C:E8:C5:57:5F:14:12:9A:D7:49:88:AF:63:43:B7:7F:35
X509v3 Authority Key Identifier:
keyid:FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:65:2f:d1:e7:c0:f6:23:0e:90:6b:b1:59:7d:56:c3:24:e4:
ff:d9:0a:ee:8b:d8:78:f6:b1:14:55:d5:df:d2:85:f9:91:b3:
e2:f0:42:11:b5:ca:ed:d9:2b:f4:e9:51:81:2a:4f:39:37:af:
c4:af:60:32:65:43:47:dc:1f:37:c4:a7:b1:d7:dd:b4:51:a7:
41:70:96:68:51:55:7c:29:e9:04:56:f5:bb:97:e4:9f:32:12:
0e:e0:67:4b:d6:ca:51:d2:bb:d5:cc:37:c9:c7:77:e6:56:bf:
43:16:ef:80:98:78:d6:4b:8c:75:47:40:87:fb:85:9f:c9:87:
af:a9:05:ef:00:51:05:2b:a7:c5:eb:25:92:e3:ad:ec:d9:f8:
8f:a9:da:32:b5:d3:fc:1d:a4:b8:90:53:26:94:8a:5a:e3:c4:
41:07:82:44:56:a4:12:f9:39:04:a2:c4:d2:23:c5:88:8b:7a:
6f:11:c5:16:19:8c:4b:5a:a4:6c:fc:ce:30:a9:69:c5:db:f1:
fa:26:c0:60:a7:bd:88:53:5d:17:27:e2:0a:e5:46:a8:38:15:
89:ad:3d:13:df:7a:3a:7f:29:7f:0a:57:de:57:6e:ca:e0:d8:
2c:28:ff:46:0e:d4:0c:b8:33:f4:28:cf:e1:b7:e6:68:91:f2:
09:c5:d8:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 03:18:44 2026 by rpki-client