Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.mft
File: h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.mft (raw, json)
Hash identifier: NJxL747MxykP4r7o5+TMYvfvZKcndhn/L75M10Z09Kc=
Subject key identifier: 96:D4:1D:2E:DD:BB:AE:3D:CD:65:A5:6B:AF:EB:C2:CD:D6:56:95:3A
Authority key identifier: 87:5B:3E:56:EF:93:19:0E:50:6D:72:81:9B:CC:A6:78:9A:D9:21:40
Certificate issuer: /CN=875b3e56ef93190e506d72819bcca6789ad92140
Certificate serial: 019D0AE40AB9EA1CEE03699DF00C3CE0A6C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.mft
Manifest number: 02
Signing time: Fri 20 Mar 2026 10:56:50 +0000
Manifest this update: Fri 20 Mar 2026 10:56:50 +0000
Manifest next update: Sat 21 Mar 2026 10:56:50 +0000
Files and hashes: 1: 5Vuu0eM6WyHD8GbymV8XD2X1GyI.roa (hash: beaP1rJCkEHa/zAHX0Mfe8Dsodp5vQWWvdh3vbIaapQ=)
2: h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.crl (hash: LGZ7i78YCcthxoejEF47v7FaLL40rNI6eX3GPhawUdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 10:56:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0a:e4:0a:b9:ea:1c:ee:03:69:9d:f0:0c:3c:e0:a6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875b3e56ef93190e506d72819bcca6789ad92140
Validity
Not Before: Mar 20 10:56:50 2026 GMT
Not After : Mar 21 10:56:50 2026 GMT
Subject: CN=96d41d2eddbbae3dcd65a56bafebc2cdd656953a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8b:0c:8a:c9:8e:ab:d9:86:70:c8:40:1b:cc:
61:96:de:03:bf:54:61:8c:7a:e2:41:29:1e:f5:5c:
87:da:8b:b6:53:51:e7:2a:50:ee:f4:6f:1b:63:36:
71:42:79:c2:4c:c5:78:00:50:4c:05:2d:7f:6d:e7:
8f:e3:14:e4:81:37:ab:b8:95:3d:a5:ae:14:9d:c9:
25:fc:87:dc:dc:7d:c7:7b:4a:e9:2e:7b:28:45:69:
72:35:47:39:50:d0:9b:fd:d2:05:f1:d6:d6:c4:41:
0e:f9:18:5c:9f:3b:28:ac:a4:f9:ac:57:01:15:84:
48:7c:92:e8:c8:8f:19:85:f4:de:8d:59:57:49:23:
fc:59:5b:44:90:91:23:a6:7a:2f:9b:71:05:24:05:
24:b3:ec:84:d9:75:03:59:c2:f0:13:41:8d:9f:b2:
c5:b6:d6:8c:eb:62:7c:77:a6:04:a8:78:fb:d0:51:
db:53:18:92:7b:ca:da:01:3d:17:64:64:43:fd:db:
93:53:c6:7d:92:43:02:04:7a:83:26:52:e6:5b:2d:
19:94:2e:dc:07:75:bd:8b:3b:63:8e:e6:24:75:94:
37:10:c5:68:d3:91:d3:08:56:72:93:f0:69:ed:f7:
e0:3a:45:27:e7:c0:70:8f:2b:ae:d2:82:b3:01:98:
59:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D4:1D:2E:DD:BB:AE:3D:CD:65:A5:6B:AF:EB:C2:CD:D6:56:95:3A
X509v3 Authority Key Identifier:
keyid:87:5B:3E:56:EF:93:19:0E:50:6D:72:81:9B:CC:A6:78:9A:D9:21:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/19cfc2-f190-4110-9c9a-ed3c56e1d788/1/h1s-Vu-TGQ5QbXKBm8ymeJrZIUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c7:83:a4:24:ae:96:8c:3b:c1:08:24:83:d0:a5:18:40:b0:
50:95:01:96:a8:73:76:d7:e0:47:12:2f:23:da:38:f3:2b:a9:
0d:63:fb:b9:5f:bc:e3:85:05:d6:b2:32:8a:0e:95:6e:2c:f4:
10:ec:74:03:aa:e2:b4:6d:a9:4e:f5:f0:9e:f1:2f:70:e6:e7:
1a:c1:f7:27:7a:50:ed:e5:a3:e6:88:3f:6c:f5:bf:ec:5b:da:
34:8f:9e:b2:72:d3:94:82:33:41:90:47:e7:29:8c:13:de:46:
79:0c:db:80:33:d2:ad:71:80:89:64:8c:1e:7f:b2:96:a3:77:
10:08:25:ca:e0:77:84:94:0f:11:62:83:44:15:a5:13:22:3c:
7f:ad:0a:aa:99:99:79:8e:70:f5:0d:ee:bd:5d:c8:aa:36:c8:
f9:67:72:7a:50:78:d2:73:e1:7b:94:1a:df:9a:43:1e:5f:2a:
7e:83:f1:56:8a:1b:29:02:01:f9:8e:85:ba:63:8e:0c:07:af:
da:b0:f3:09:a0:f6:f7:67:d5:ef:51:bb:c6:24:2f:e8:42:d0:
1b:20:ce:5f:52:54:c1:93:29:3c:f3:ee:ec:3b:24:57:67:5f:
2c:20:bb:9a:92:87:47:a3:f3:f0:d7:06:65:9f:62:cf:f4:cb:
bf:c8:1d:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 18:27:32 2026 by rpki-client