Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft
File: MhV9a4wSwFtBvEEkHQYVBAryQeE.mft (raw, json)
Hash identifier: B5Kr9t4YHcQk741OoBpssdP8riQuF9WLB96mS4IL560=
Subject key identifier: 90:DF:5C:40:89:87:BC:13:47:90:36:79:78:5D:29:C4:82:49:5A:2E
Authority key identifier: 32:15:7D:6B:8C:12:C0:5B:41:BC:41:24:1D:06:15:04:0A:F2:41:E1
Certificate issuer: /CN=32157d6b8c12c05b41bc41241d0615040af241e1
Certificate serial: 019D38D2F2CBE7E7956A31C155A5DAA8E6C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft
Manifest number: 05AB
Signing time: Sun 29 Mar 2026 09:00:41 +0000
Manifest this update: Sun 29 Mar 2026 09:00:41 +0000
Manifest next update: Mon 30 Mar 2026 09:00:41 +0000
Files and hashes: 1: MhV9a4wSwFtBvEEkHQYVBAryQeE.crl (hash: cC3h+BmoHjjs6uFFYbYeItpu34sXAa0j7qShM/LzAxA=)
2: xlFYwotI5LT7U1ruSVgb-S5VJbc.roa (hash: q+/WCbLPl7YfFx8PdlPWZvXVYgpytcYGjRYRlu/2J98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:f2:cb:e7:e7:95:6a:31:c1:55:a5:da:a8:e6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32157d6b8c12c05b41bc41241d0615040af241e1
Validity
Not Before: Mar 29 09:00:41 2026 GMT
Not After : Mar 30 09:00:41 2026 GMT
Subject: CN=90df5c408987bc1347903679785d29c482495a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:94:35:ab:cb:f8:89:8f:04:f4:60:5a:14:
e0:38:a5:c6:f2:18:3e:49:8a:c8:e1:ad:87:32:02:
a9:66:bc:7c:b7:cc:44:62:23:f5:f2:82:27:4a:45:
0a:da:8b:f1:a8:f5:f7:ad:47:16:0a:4b:d8:a6:ee:
ee:92:05:ea:f8:41:23:00:cb:f4:43:ae:99:7d:6a:
59:fa:a8:ed:39:ef:6c:a0:41:7e:74:eb:bf:db:1d:
0c:63:a0:8b:52:28:7d:27:cd:4b:00:f8:e2:b6:7c:
c1:58:ad:ef:9c:f6:e5:5e:64:c3:1f:48:aa:1d:a6:
16:2c:37:7c:ea:40:22:8a:25:46:6b:d0:10:d7:c2:
cc:be:94:97:2e:f6:9c:c9:26:01:dd:b5:43:5e:69:
cb:6f:06:71:8a:36:e5:b8:9f:75:8a:6b:62:a3:f7:
70:69:aa:17:2f:8b:2e:9c:a4:6b:64:02:35:b3:3b:
05:f3:18:f8:41:f1:9b:49:e2:e8:75:57:44:32:5c:
46:cf:5c:a7:0f:46:19:60:62:9c:a6:60:5b:54:c3:
8a:5c:93:0e:da:84:69:b5:47:19:90:73:b0:61:ef:
0a:63:40:17:8a:98:b4:e1:f7:8c:b8:a0:08:1b:0c:
e8:01:47:92:89:4a:f2:d0:0d:1f:b7:d1:01:04:b0:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DF:5C:40:89:87:BC:13:47:90:36:79:78:5D:29:C4:82:49:5A:2E
X509v3 Authority Key Identifier:
keyid:32:15:7D:6B:8C:12:C0:5B:41:BC:41:24:1D:06:15:04:0A:F2:41:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhV9a4wSwFtBvEEkHQYVBAryQeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/416a80-dc56-4514-8bc0-27f9c823edea/1/MhV9a4wSwFtBvEEkHQYVBAryQeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:68:33:48:87:bc:90:49:e4:77:2d:8f:6f:c4:37:14:1b:13:
ed:c5:5e:85:03:43:b2:e7:18:01:8f:98:77:88:73:0f:38:cc:
fd:b1:98:a3:02:0d:01:be:4a:0e:17:46:27:0b:31:02:3d:b0:
c3:5a:be:c5:3f:6c:ec:61:77:d1:5f:be:1d:df:bd:da:de:76:
bd:cc:f4:da:1f:20:06:18:1b:14:9e:6e:cc:05:ec:b6:bc:8b:
9a:07:89:16:1a:c6:ea:00:ad:70:fb:d6:f1:65:dc:40:a3:6e:
2c:c4:c0:70:b0:73:a4:5f:7c:6c:f6:82:9d:29:a5:53:1f:1d:
2b:cc:58:22:4c:c1:5e:87:1e:a3:6e:dd:23:ec:6f:b6:42:4d:
dc:7f:8f:3b:36:b9:85:52:6c:2b:b2:83:69:f5:f9:81:b4:26:
16:eb:5e:a1:42:a9:41:53:e9:bc:39:4f:25:d9:9d:af:f5:2d:
ee:98:a6:c8:07:74:ba:01:07:2e:a2:43:7e:ae:8e:69:97:b5:
1c:ba:06:d8:cd:ca:3e:12:30:12:22:b1:22:8d:b4:90:a4:f3:
e3:8b:d7:90:5d:a5:dd:12:45:a3:8a:4d:84:37:a7:a7:24:d2:
50:43:f6:33:66:ed:e7:64:45:72:0e:ae:ba:33:44:da:f5:b1:
1c:8a:b8:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:48 2026 by rpki-client