Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: K33Eyp0OWZWIgUtaYRxluIqbCB4BC1tMHch1bJWLXJw=
Subject key identifier: 1F:9D:1D:C3:99:87:FA:1F:5A:A1:9D:20:24:CD:BA:70:AA:48:CA:D8
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 019D3788FFF2DE44A56621B1A6D286BF6699
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 06B7
Signing time: Sun 29 Mar 2026 03:00:18 +0000
Manifest this update: Sun 29 Mar 2026 03:00:18 +0000
Manifest next update: Mon 30 Mar 2026 03:00:18 +0000
Files and hashes: 1: VK_z4Ar4ArJujXib0iTDaTWfTUo.roa (hash: 7jC4P8FePKMkGfygUtuv427FEEIelby1i3hhTi94LOw=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: r1vhyj9w7jihIS3Mb0kfSM+rWFDBnAla249xFGVhgi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:88:ff:f2:de:44:a5:66:21:b1:a6:d2:86:bf:66:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Mar 29 03:00:18 2026 GMT
Not After : Mar 30 03:00:18 2026 GMT
Subject: CN=1f9d1dc39987fa1f5aa19d2024cdba70aa48cad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:e1:3f:ec:76:67:0c:97:c5:4a:cf:f5:af:
6c:2c:8e:b5:82:28:d3:b8:89:9b:04:13:2d:b4:75:
e0:cb:22:0d:cf:97:3e:82:26:15:ce:2a:b8:d3:6d:
b4:73:50:0c:51:0b:48:8b:e2:66:44:19:e5:93:ea:
9f:b7:f9:ff:e0:39:c4:18:9e:7c:f1:cb:d0:14:a8:
1e:49:96:23:ab:5b:81:3a:14:6b:e1:28:17:da:b6:
15:ab:b2:31:d3:f4:94:b8:a3:6d:c7:70:05:66:56:
90:d9:b2:e9:5a:b7:c3:e9:c9:9b:b3:b3:45:1f:ac:
5a:6e:ab:07:33:97:2f:e8:7c:a2:5b:e6:d3:48:02:
3d:b2:8c:4e:88:91:32:85:7a:b1:6e:5e:7b:d8:9c:
d9:f4:79:c8:e4:d7:e0:24:fd:f5:33:83:b4:dd:d2:
5c:34:e5:14:2f:42:36:bd:f7:fe:ed:56:63:3e:80:
63:e8:e6:f2:d1:6a:96:46:85:fa:95:20:2c:44:9a:
6e:b0:7f:9d:61:e5:33:ac:65:0f:69:da:5e:e2:c2:
a2:95:eb:a2:60:2d:1b:d4:86:40:44:a7:d8:25:ab:
1e:37:ec:5b:97:53:36:ef:06:a1:28:88:8a:47:7d:
e1:09:85:41:6b:19:d6:8a:38:10:62:51:f1:25:c4:
f9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9D:1D:C3:99:87:FA:1F:5A:A1:9D:20:24:CD:BA:70:AA:48:CA:D8
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:a4:6b:74:a8:a3:22:73:29:59:cd:14:f7:28:8f:63:2d:33:
67:34:2c:48:83:cc:ff:f0:fb:67:51:da:50:ce:cc:ee:f4:6d:
09:de:c8:6f:9e:c2:67:c7:62:44:42:4e:f4:d8:8f:bf:6c:3b:
a4:c5:5a:3f:88:39:13:53:36:4f:ff:25:b9:dd:69:d5:76:05:
90:6d:cd:65:ca:16:00:4c:d3:21:53:0b:7d:f1:22:5f:f0:15:
13:16:8c:38:d4:93:db:50:ff:94:bd:58:ca:8a:8a:dd:4f:58:
e1:8c:68:e0:12:6f:75:34:b8:c4:19:0f:1a:af:20:bf:08:86:
ca:3f:fa:e6:2c:49:9d:b0:80:06:b0:92:b3:32:14:ef:60:3a:
9e:84:bf:92:04:c4:45:f9:f0:c5:30:43:26:a1:7c:72:9d:2a:
e2:e0:19:34:26:66:5f:cc:f1:32:59:34:d6:80:c6:ad:18:4f:
a2:fe:e3:d8:db:62:47:fd:71:97:b1:5f:3a:5c:7b:01:1d:d1:
01:d1:28:7c:79:e6:1f:3d:ae:61:41:53:05:e1:28:ac:5a:cd:
8d:a1:e5:06:1a:13:bf:e1:61:1d:9d:76:f6:0d:50:96:51:d6:
76:92:0a:7a:22:13:ef:5e:e6:d8:e5:80:f2:7f:3d:00:71:d7:
9a:84:ed:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iP/y3kSlZiGxptKGv2aZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ODQ3N2Q4YjYyZDA5ZjlhZThiZmRiZDgxMmE1M2Y5N2Vk
NGM1NzYwHhcNMjYwMzI5MDMwMDE4WhcNMjYwMzMwMDMwMDE4WjAzMTEwLwYDVQQD
EygxZjlkMWRjMzk5ODdmYTFmNWFhMTlkMjAyNGNkYmE3MGFhNDhjYWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAfhP+x2ZwyXxUrP9a9sLI61gijT
uImbBBMttHXgyyINz5c+giYVziq40220c1AMUQtIi+JmRBnlk+qft/n/4DnEGJ58
8cvQFKgeSZYjq1uBOhRr4SgX2rYVq7Ix0/SUuKNtx3AFZlaQ2bLpWrfD6cmbs7NF
H6xabqsHM5cv6HyiW+bTSAI9soxOiJEyhXqxbl572JzZ9HnI5NfgJP31M4O03dJc
NOUUL0I2vff+7VZjPoBj6Oby0WqWRoX6lSAsRJpusH+dYeUzrGUPadpe4sKileui
YC0b1IZARKfYJaseN+xbl1M27wahKIiKR33hCYVBaxnWijgQYlHxJcT5HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB+dHcOZh/ofWqGdICTNunCqSMrYMB8GA1UdIwQY
MBaAFIeEd9i2LQn5rov9vYEqU/l+1MV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYt
ODg0MmU1ZWRjZTAyLzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYtODg0MmU1ZWRjZTAy
LzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeqRrdKij
InMpWc0U9yiPYy0zZzQsSIPM//D7Z1HaUM7M7vRtCd7Ib57CZ8diREJO9NiPv2w7
pMVaP4g5E1M2T/8lud1p1XYFkG3NZcoWAEzTIVMLffEiX/AVExaMONST21D/lL1Y
yoqK3U9Y4Yxo4BJvdTS4xBkPGq8gvwiGyj/65ixJnbCABrCSszIU72A6noS/kgTE
RfnwxTBDJqF8cp0q4uAZNCZmX8zxMlk01oDGrRhPov7j2NtiR/1xl7FfOlx7AR3R
AdEofHnmHz2uYUFTBeEorFrNjaHlBhoTv+FhHZ129g1QllHWdpIKeiIT717m2OWA
8n89AHHXmoTtMA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:24 2026 by rpki-client