Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: yyoUlqmLi7gX7I3WxCu7foTMDouD/hfBf5oMCRQ1Sdg=
Subject key identifier: 2B:F6:D6:5E:FB:36:40:4D:B0:C4:86:79:03:A3:DB:C6:91:B6:BB:C9
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 019D2AE116D5932A49445C51307D309902D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 052B
Signing time: Thu 26 Mar 2026 16:01:27 +0000
Manifest this update: Thu 26 Mar 2026 16:01:27 +0000
Manifest next update: Fri 27 Mar 2026 16:01:27 +0000
Files and hashes: 1: 2FxreVqUv_iXTp_gEHHtX_RyDvE.roa (hash: 6tKnUYnu6mjtenIrBJhX9fiu65PwuGcfSqr4GAWWO5o=)
2: RKI3XSz6XZy96Ol-18QcP9FlH4c.roa (hash: g/j02qL/fofi4lQDzUhm/wqo/x+TAc1YiiXTTjZy7lA=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: Yzm7+xr+Mvj8ee4Ay70HRZMX2cXrvM+Ecwyz5lIsAEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:16:d5:93:2a:49:44:5c:51:30:7d:30:99:02:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Mar 26 16:01:27 2026 GMT
Not After : Mar 27 16:01:27 2026 GMT
Subject: CN=2bf6d65efb36404db0c4867903a3dbc691b6bbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:9b:53:b2:53:c4:15:b6:0f:2f:3a:81:55:
ce:45:80:95:b8:8b:7e:54:38:b1:af:4c:67:95:32:
00:93:e1:5a:99:2b:67:88:02:4d:dd:b6:0f:c0:b0:
de:0d:e1:e3:64:c7:55:13:68:2f:ee:63:c1:70:53:
c0:7f:da:b1:14:0f:c0:15:9f:ad:f0:dd:f7:9d:38:
1e:a3:db:e5:a1:38:04:ec:d7:8a:a8:b4:8b:a4:f0:
52:e6:eb:b8:0b:c4:2a:e9:96:39:b1:a4:30:68:a7:
e5:5a:1d:64:b9:7d:2f:46:9d:33:0b:7d:fe:fc:07:
bd:5d:c9:5e:e7:ad:d8:28:3e:04:0a:dc:b4:1c:b8:
f5:26:4e:39:4c:fd:17:46:8c:0e:28:8a:83:15:32:
29:b4:1b:d6:43:8f:ba:58:35:a2:5b:69:a4:e9:42:
15:a9:32:99:e0:5f:1b:1a:60:c2:ef:c4:17:64:7c:
17:09:64:fa:0c:34:a4:75:03:9b:d2:f4:ec:81:0f:
be:34:9a:53:31:e1:af:fc:7f:71:1b:c8:cb:ba:fc:
4c:ad:ae:ac:81:74:95:61:7d:d7:bf:a4:33:b3:57:
74:f5:75:bc:4b:5e:56:7d:9b:6b:cd:33:95:90:4d:
94:34:47:d9:f3:d4:b8:b2:36:e5:d7:78:3c:b8:03:
25:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F6:D6:5E:FB:36:40:4D:B0:C4:86:79:03:A3:DB:C6:91:B6:BB:C9
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:18:a0:c9:01:f6:01:5a:4d:4c:eb:26:4c:d4:8c:5a:b9:1a:
d8:e1:bd:e4:37:18:6f:98:76:e0:f5:86:79:fd:89:df:dd:cf:
70:06:cb:36:80:29:15:25:3a:46:94:9d:80:46:0b:26:c4:11:
c3:50:a9:fe:af:8d:f3:52:d6:24:d7:33:f1:44:74:65:45:f9:
e7:3f:bc:e7:52:50:1c:f2:8c:fc:2e:cf:4b:b4:d3:43:f7:c1:
94:74:d3:94:cf:80:9d:74:ae:4b:61:55:40:51:b2:4d:78:95:
fd:90:6d:06:c7:af:37:24:7e:0a:e5:0a:57:b0:8f:02:fe:9a:
db:78:c8:f5:14:56:1d:a0:05:6f:f4:48:e2:bd:ba:bc:71:fc:
be:14:55:0c:e6:82:83:cc:4f:1e:49:3f:4f:8e:80:8f:47:4c:
aa:3b:c5:a2:b1:9c:9e:82:f3:ca:93:6c:db:f1:17:d6:2a:f3:
70:a9:e7:cd:dc:a0:a3:6a:4e:d6:30:84:34:61:70:52:aa:93:
70:d5:f4:7f:1a:fd:77:66:99:1d:2c:e1:60:40:5c:b7:b8:d7:
c7:e8:5a:79:5e:64:58:d3:c3:af:03:c1:c3:97:54:fc:f4:a3:
4b:2d:ed:52:3a:84:ed:48:b8:04:95:a8:34:18:b0:9f:81:20:
de:69:dc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:29:15 2026 by rpki-client