Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: X5fBStJuw8S/0GIdDICK3FZH+QMYFDstG66zgBAX3Kk=
Subject key identifier: 45:D1:C0:19:40:05:F7:D7:74:D2:26:50:3F:BF:36:9E:1E:E2:6A:71
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 019E20FFDE3D8E5C451D395A680A9C9ADDFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0CF0
Signing time: Wed 13 May 2026 11:01:39 +0000
Manifest this update: Wed 13 May 2026 11:01:39 +0000
Manifest next update: Thu 14 May 2026 11:01:39 +0000
Files and hashes: 1: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: Y/3NnSlE/7qK+S8VXQB/sLArwPUiK1GF/nB3dgHOaAE=)
2: kGQeneiJZNT_BjB_XoReSyXguQ8.roa (hash: yt9dzzQfHrZsnLkuZ9r3U4v8elv0IkIyoER8sIW2HPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:de:3d:8e:5c:45:1d:39:5a:68:0a:9c:9a:dd:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: May 13 11:01:39 2026 GMT
Not After : May 14 11:01:39 2026 GMT
Subject: CN=45d1c0194005f7d774d226503fbf369e1ee26a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e0:b5:52:d8:67:65:60:3b:ef:42:26:fc:ce:
f9:17:fd:41:85:31:44:b8:0f:18:88:7e:86:13:3e:
df:03:e5:c5:40:9f:c6:5a:a9:51:d5:51:4d:99:bc:
2d:3a:aa:b6:08:00:0f:67:f5:2a:bd:5a:13:8f:e8:
b5:48:ce:e0:6f:bd:7b:e9:2f:a1:1b:04:c4:84:2c:
34:d2:2b:46:63:25:57:bc:5c:37:de:4a:25:05:89:
5c:15:e3:dc:e4:43:9a:0e:a0:89:75:a4:af:86:4b:
85:fd:8a:62:88:48:5b:d5:0e:b7:4d:d7:d9:3f:2f:
2e:f4:44:4e:46:d1:b7:c0:1f:a1:c7:41:98:ed:50:
e0:72:da:64:28:de:37:18:7f:31:68:a5:6e:b7:13:
88:d2:3a:87:2d:5f:1a:25:89:16:b2:42:c5:bd:0f:
8c:6b:b0:a4:dd:42:b6:57:3e:e3:96:59:8c:b4:dc:
1a:d2:f6:f3:5b:4f:2c:b2:8f:e2:8d:4d:9e:af:65:
b7:39:6e:00:5d:92:a6:23:d7:6d:c6:ec:2e:f1:0b:
9c:c6:13:38:5f:ee:16:eb:ce:f8:22:74:b5:fb:dc:
16:83:6e:43:1d:1a:95:fe:22:ce:16:3b:74:9b:8c:
50:57:05:1f:65:38:63:ce:25:d4:f9:ad:00:76:83:
e6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D1:C0:19:40:05:F7:D7:74:D2:26:50:3F:BF:36:9E:1E:E2:6A:71
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:33:f9:f8:17:98:a1:9d:e0:b4:7e:00:4e:2c:6a:33:90:64:
91:fc:75:3d:e6:14:9a:bc:81:f3:74:62:9f:56:89:9e:89:59:
bf:e6:00:7c:d7:e0:4b:0e:84:a0:0d:94:9e:d2:e7:1c:3f:d5:
36:3f:cb:88:3a:43:14:5d:50:1e:b9:87:0d:a3:40:47:d1:b3:
9b:04:fd:72:5f:27:f1:3e:7f:90:e1:1e:db:83:01:15:8d:04:
16:94:64:87:fc:a4:49:1b:3b:49:3f:93:f2:65:25:b2:77:80:
2c:2f:63:b1:d5:63:ca:ae:a2:33:d4:20:d7:28:26:d0:eb:70:
95:3d:d1:c4:7b:ad:86:d8:7c:ff:ed:5a:ac:e0:28:86:79:ec:
f1:a1:df:ec:47:e3:07:78:1a:87:69:dc:b8:6a:3f:16:07:c1:
b3:ae:b1:61:58:4a:ed:a4:92:0d:16:fe:c5:dc:e8:0c:ec:75:
59:c0:a8:2b:3c:78:57:e9:08:24:f1:e0:ce:e7:23:d8:45:cd:
e5:c5:87:e4:2d:37:c6:70:14:2b:19:41:ce:cb:a9:22:41:b8:
e4:de:55:01:8a:46:d6:d7:74:b8:14:72:53:b0:27:81:b8:37:
9d:7d:d0:c7:87:fc:35:bc:b2:a9:c7:2f:cd:67:e0:ce:60:62:
4e:9b:7e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:28:50 2026 by rpki-client