Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
File: Hn19JBnxEYqsXJktKt_2l7A-mns.mft (raw, json)
Hash identifier: I1zxkkBhT7actJokJD+AWtxJ4ioQ8pMcFR40Yu1iF54=
Subject key identifier: EE:87:A4:7D:58:9B:5D:06:08:0A:C7:93:C1:CA:FC:94:B5:CD:07:44
Authority key identifier: 1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B
Certificate issuer: /CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b
Certificate serial: 019D265EE2E3CB4549B68E7F5683CA479F5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
Manifest number: 0A5E
Signing time: Wed 25 Mar 2026 19:00:45 +0000
Manifest this update: Wed 25 Mar 2026 19:00:45 +0000
Manifest next update: Thu 26 Mar 2026 19:00:45 +0000
Files and hashes: 1: Hn19JBnxEYqsXJktKt_2l7A-mns.crl (hash: KhD4qSuRb2GPhdwWOhvsKyi1QPGHhBQKjBVzOXa088k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:e2:e3:cb:45:49:b6:8e:7f:56:83:ca:47:9f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b
Validity
Not Before: Mar 25 19:00:45 2026 GMT
Not After : Mar 26 19:00:45 2026 GMT
Subject: CN=ee87a47d589b5d06080ac793c1cafc94b5cd0744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:44:94:07:2b:d6:c7:4c:bc:70:e9:b6:df:b6:
e3:7a:c7:25:7c:d8:43:ba:9c:e4:ab:aa:46:0c:40:
e7:46:85:d9:af:d6:4b:51:20:34:6e:8d:26:40:9a:
43:09:04:92:d1:46:3d:92:8c:c5:ac:4c:c0:de:cc:
69:91:ee:5f:cd:0f:98:99:d7:5d:75:36:55:5a:d6:
37:2f:65:c8:b4:a9:e6:89:01:ce:35:86:4e:d7:f7:
63:7b:d4:97:dd:16:a5:d2:48:94:12:4e:4d:87:07:
c1:fa:89:27:90:e7:4e:30:9a:35:59:41:74:6c:6b:
5c:cb:a4:85:55:7c:74:6d:6e:14:7e:fe:13:ce:11:
d4:77:74:7c:44:30:e8:42:85:37:d7:8b:56:9c:9e:
67:02:43:4b:ab:64:2f:e8:d2:b2:64:db:79:32:9b:
a1:e1:05:01:51:e8:71:91:62:79:22:40:eb:e8:4a:
be:11:8d:07:d7:ee:8a:cf:ac:bb:2c:35:f8:b3:19:
32:1a:a2:2c:2e:ec:32:e3:28:3d:11:e5:3f:c8:bd:
14:54:93:75:96:31:00:c0:f6:6c:a6:c6:45:73:45:
c2:d7:9a:10:11:37:07:31:d5:52:41:b0:17:94:cc:
75:d4:b4:41:01:2f:a3:f4:10:a8:e0:3c:7f:6e:43:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:87:A4:7D:58:9B:5D:06:08:0A:C7:93:C1:CA:FC:94:B5:CD:07:44
X509v3 Authority Key Identifier:
keyid:1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:6c:4f:45:23:ab:fa:ec:c9:8e:04:1a:e7:f2:f0:fc:36:96:
fd:cf:7f:12:2c:c0:ce:e5:a4:b8:84:5e:1a:1a:69:d3:cf:e3:
47:6e:0b:fb:47:ac:10:3c:7e:4f:8b:59:9f:b3:6c:ac:52:ae:
1c:13:39:c5:7b:90:8b:3f:e1:db:02:e2:44:69:f0:a6:b8:52:
43:fd:ee:90:d1:01:19:39:90:db:94:60:82:0e:77:8e:21:33:
40:e5:a1:c3:87:b6:9d:f0:60:5a:bc:aa:04:30:2d:bf:c4:8e:
5f:f0:1e:4c:6d:62:05:c6:92:56:7b:40:36:3e:84:c6:de:67:
4d:ac:81:4a:34:d5:81:0e:05:4b:ba:74:c0:bc:ab:85:15:3e:
63:c2:0d:c7:0d:a1:eb:f1:81:9c:f3:15:d6:4f:f5:9a:30:98:
45:a0:4d:8f:3a:51:db:3e:ed:1a:8a:56:62:31:e8:70:f0:45:
75:fb:3a:b5:8f:e9:60:a7:fc:fd:49:02:c8:56:20:0f:b9:21:
69:90:8e:dd:1c:81:ce:50:3c:ce:23:ac:96:1b:9e:13:6f:1b:
7a:74:98:42:77:bd:93:6e:74:15:d2:a4:e0:ff:db:20:13:fc:
5d:f7:79:60:e6:e4:f5:07:1b:10:41:21:19:2c:23:96:46:c2:
65:43:e1:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:39:10 2026 by rpki-client