Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: +SPm/pUsyGdhNjXR4Z9fGM1yv0ME8WBZwdWJXn2QMnM=
Subject key identifier: DA:16:B8:C5:9F:AD:E4:A6:2C:9F:62:F8:E7:F1:FE:CF:C9:35:B3:E0
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019E30725259CA44A79089D03FB0A8D1DB8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 11:00:59 +0000
Manifest this update: Sat 16 May 2026 11:00:59 +0000
Manifest next update: Sun 17 May 2026 11:00:59 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: QDtmE7/ICuDympNNZ+ZH5Ve2c//BWw5sUlJemtyXKmE=)
2: uOT6tJlrkH7uNore0SwrHv6B2q8.roa (hash: sj7kmuH/7FdqL+TtQaRY1OsxURdzt9SlOSUYNlEq6iI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:52:59:ca:44:a7:90:89:d0:3f:b0:a8:d1:db:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: May 16 11:00:59 2026 GMT
Not After : May 17 11:00:59 2026 GMT
Subject: CN=da16b8c59fade4a62c9f62f8e7f1fecfc935b3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6b:bf:af:e9:c8:ac:b7:e4:a2:22:bf:6a:fb:
6b:1f:d3:3c:7a:14:84:6f:9b:b0:28:47:ef:27:6a:
37:82:66:a6:cc:e5:49:af:7d:9a:25:5a:62:db:b2:
97:d7:c3:99:d1:8d:87:50:6f:11:24:47:d7:15:ba:
a3:87:4d:16:da:8d:81:fd:b9:66:df:23:4b:73:91:
7e:af:51:58:02:1b:81:32:f7:e6:94:07:ca:f1:93:
8f:36:10:16:1d:34:49:6b:ba:e7:3e:c4:97:c8:54:
cb:20:9e:50:0a:85:79:a1:f1:ff:dc:3e:75:5f:56:
29:7d:1e:ba:08:06:0f:81:da:12:bf:54:8a:9b:ef:
2d:6f:1f:af:6f:88:c4:45:6a:88:d7:98:e1:cb:4a:
00:4e:de:56:b9:ef:2f:e4:d6:0c:ff:24:97:d5:8c:
9e:68:81:80:69:ed:7d:2a:3c:39:10:37:29:72:f3:
eb:b3:ed:91:b8:3c:c6:33:99:0f:fd:2f:80:64:e5:
7a:91:80:ea:39:e9:85:2a:9e:fc:fe:81:24:55:ae:
0d:6b:18:ba:04:78:f1:b2:ec:8e:6e:6d:fe:38:9d:
d0:e7:25:bb:83:93:59:c7:0e:98:26:f3:9f:18:a5:
57:8b:a1:e2:7c:21:ad:30:2c:5a:a1:88:88:5f:ca:
66:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:16:B8:C5:9F:AD:E4:A6:2C:9F:62:F8:E7:F1:FE:CF:C9:35:B3:E0
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:70:ca:04:14:46:2b:2a:0e:33:a3:ee:ea:43:a7:78:43:be:
8a:d8:5f:c3:b9:38:da:7a:5d:e3:41:c5:44:45:75:a8:92:1d:
f5:bc:40:9d:96:40:de:95:01:2c:c0:b9:14:69:89:bf:22:8e:
04:41:75:ca:76:13:b8:69:65:e0:f7:91:e3:14:0b:1c:85:fd:
da:83:65:42:a5:54:63:2e:b8:3f:43:03:60:71:6e:77:e2:27:
44:2e:07:05:9b:aa:a6:0c:a8:71:8e:23:ad:74:1a:bb:63:9b:
be:6c:43:fe:e2:db:c0:a4:8e:57:f2:41:ff:2f:44:c0:26:91:
b3:90:18:16:d6:20:3d:2f:f7:52:88:70:8d:c0:56:d7:f0:25:
53:24:a1:32:1d:de:21:69:ec:81:c3:11:23:12:49:30:bc:4c:
12:a6:21:fb:58:83:ca:b5:4e:31:47:b1:b4:eb:77:19:9d:a9:
6b:ab:57:d7:a9:83:85:92:64:2b:21:7d:3b:9b:f9:b9:d1:5e:
5c:36:91:61:0f:1c:db:4b:95:35:03:dc:99:a1:26:8e:d0:da:
a3:c1:3d:db:0e:e5:c1:19:61:99:6a:86:6d:8f:96:af:94:c4:
d8:87:5c:ec:bd:12:38:cd:0e:7b:06:84:21:71:bb:a6:f2:92:
76:f9:ce:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:14:39 2026 by rpki-client