Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: 0RYz3cRo/IAYmz70WwJmi0lods6RcOjvOBeac8bshCQ=
Subject key identifier: 8E:E1:CE:89:CF:54:4F:5F:1C:92:80:8F:8D:42:2E:8B:F0:8D:27:3B
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019D394079F03480213D362CB688B5868441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 11:00:19 +0000
Manifest this update: Sun 29 Mar 2026 11:00:19 +0000
Manifest next update: Mon 30 Mar 2026 11:00:19 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: XTAHuMdjhczUS3TOZ6W0cqfZF82nJpinVyNR12C3UDM=)
2: uOT6tJlrkH7uNore0SwrHv6B2q8.roa (hash: sj7kmuH/7FdqL+TtQaRY1OsxURdzt9SlOSUYNlEq6iI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:79:f0:34:80:21:3d:36:2c:b6:88:b5:86:84:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Mar 29 11:00:19 2026 GMT
Not After : Mar 30 11:00:19 2026 GMT
Subject: CN=8ee1ce89cf544f5f1c92808f8d422e8bf08d273b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8a:fd:82:3c:68:3f:b6:b6:b3:4a:30:02:98:
05:37:28:aa:e2:bc:a1:0b:7e:a3:78:1a:76:4c:82:
d7:a4:18:51:9b:b0:97:7b:3e:fd:7f:59:63:65:8d:
6c:ff:b1:e6:53:89:8f:f4:0e:69:96:9c:1a:30:78:
f0:42:8f:d4:3d:dc:67:3c:11:28:c2:ae:55:96:d7:
1b:17:97:5c:5a:ef:e0:c3:f4:78:1d:4d:25:60:66:
d8:3f:0d:10:c0:25:b3:83:54:c3:24:0c:24:4f:68:
19:fb:45:0b:b7:d7:b6:e8:b8:6b:77:3d:4d:ea:ae:
d6:f8:6d:45:77:c7:5a:6b:8e:d8:37:2e:ad:95:cb:
09:1b:7d:5e:cd:ec:88:89:3f:21:66:de:dd:92:53:
f9:eb:86:7c:70:f7:6b:3e:1f:57:85:d4:ec:d2:0f:
3b:e6:27:49:9e:aa:b4:b6:4a:c1:ab:31:05:de:7f:
ba:a5:fa:79:02:bf:5d:64:d3:84:c9:56:58:8c:2b:
1e:d0:25:87:28:02:b0:4c:30:1d:04:98:c5:9f:57:
1c:3f:ff:7d:b9:f1:43:52:62:81:93:ec:44:df:18:
56:d0:67:09:08:be:42:c3:62:67:8b:51:71:e3:30:
90:f9:61:86:ab:27:8b:23:b1:3a:5c:4c:13:3d:5d:
b0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E1:CE:89:CF:54:4F:5F:1C:92:80:8F:8D:42:2E:8B:F0:8D:27:3B
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:53:e4:e9:1b:2c:9b:19:16:f1:05:b0:e2:f9:5f:80:0b:a0:
ef:2e:2e:b3:21:dc:e7:01:6b:0a:4e:45:14:77:7c:4f:c2:2a:
d8:b8:2e:18:e7:84:1a:78:b2:3a:d4:7c:f8:a0:29:58:c5:a9:
23:1b:4c:3f:a6:98:1c:88:23:27:ac:5c:dc:50:28:ff:5f:66:
2d:52:1f:81:82:4e:3a:b5:ef:8e:6e:a4:df:8a:50:a7:46:04:
ab:76:b7:70:03:da:e5:f9:4e:f3:41:a5:30:67:e4:97:7e:26:
a5:7f:92:5c:7a:a6:f7:50:50:af:90:48:35:b3:4b:47:5f:0a:
0a:16:bb:c0:c1:f5:02:12:a0:0c:55:95:93:40:c6:c5:d9:6d:
4a:e1:47:04:b2:6b:9e:9d:9a:b8:2a:a7:83:9d:72:5f:3e:e1:
46:9e:c2:f2:03:38:5a:8a:ee:f0:4a:a1:99:5d:f9:25:ae:d4:
69:5a:76:ae:bf:b1:d8:11:86:8c:a3:e3:28:5a:46:db:c8:3c:
64:1a:5e:f0:18:70:0d:20:99:92:09:94:c9:b2:9f:db:dc:62:
08:dc:04:5e:84:75:d2:a6:41:c2:05:50:b3:0a:a8:16:e2:51:
e5:7b:bc:c3:07:5a:86:ab:40:2d:8f:26:63:3a:8a:b2:28:4b:
1a:17:6f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:15 2026 by rpki-client