Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: j4A9WUpHAyFOWQN5UUXqSgFiDokyY3EikD8LcjIB8YE=
Subject key identifier: 3C:A7:B7:28:4A:11:3B:D6:29:C2:51:15:F3:DD:97:DB:7A:FD:84:D1
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 019E2023BF16D19610F38C8F91409CFDB3B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 05BB
Signing time: Wed 13 May 2026 07:01:13 +0000
Manifest this update: Wed 13 May 2026 07:01:13 +0000
Manifest next update: Thu 14 May 2026 07:01:13 +0000
Files and hashes: 1: DEFfBNh248XHDVu-BwTd6VMfFV8.roa (hash: 1e5rZ3fBzGEwRGyr2Q3kLvg86EH9L/cUWkBLg+rj2hY=)
2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: qk3pjCK+LBYoUoQg6fxmCGvQjSBPc9L0BbeuwL2BnP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:bf:16:d1:96:10:f3:8c:8f:91:40:9c:fd:b3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: May 13 07:01:13 2026 GMT
Not After : May 14 07:01:13 2026 GMT
Subject: CN=3ca7b7284a113bd629c25115f3dd97db7afd84d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cb:e3:42:4a:4a:b6:80:c5:5a:7e:64:ae:54:
91:f5:11:5e:6d:d8:e7:6d:ac:d5:06:7a:55:43:b1:
57:fc:5e:c6:10:97:c6:31:26:84:6e:3f:e1:76:5c:
02:f8:77:b1:38:2e:c8:95:f9:33:21:9b:af:9e:35:
e8:aa:c0:bd:7b:ad:6a:79:f2:d1:58:a8:7a:17:12:
fd:18:2b:5f:d2:2e:31:ec:7c:1e:10:64:18:42:aa:
f5:af:a3:1e:ed:19:ac:eb:23:2b:80:78:69:f5:dd:
43:18:54:44:f3:fc:1b:6d:36:24:e9:85:75:89:75:
12:d1:d0:a3:76:28:e6:32:13:4d:02:c6:83:9f:5f:
c7:24:b0:0f:0e:94:bf:7a:2b:80:1d:16:e5:f4:2d:
c7:f9:56:b3:5a:ee:dc:32:f0:e7:a3:d2:70:8b:d5:
4e:f7:cf:99:37:64:50:81:49:f0:4f:57:db:75:e4:
44:72:2b:70:f6:c5:2b:7e:03:69:82:d4:07:51:97:
7e:b2:0e:12:59:24:e7:ef:e4:04:49:82:31:df:74:
e7:9d:e4:67:87:35:1a:cc:95:e4:81:df:b0:ab:44:
7e:9e:5c:21:b3:10:9e:19:6b:c1:d5:40:1b:ad:71:
cd:42:e4:4f:30:58:84:1b:41:3f:c7:51:7f:a7:3d:
0a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A7:B7:28:4A:11:3B:D6:29:C2:51:15:F3:DD:97:DB:7A:FD:84:D1
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:04:a1:68:73:1b:79:aa:b1:b9:7c:f6:96:8e:cf:f6:9f:2c:
3f:47:89:06:b6:55:90:40:a0:30:79:a4:14:20:ad:03:2c:f4:
80:32:89:97:13:ad:93:1d:4d:f1:df:2e:45:ec:24:39:65:29:
f4:78:49:37:4e:c5:74:bc:80:54:05:43:41:4a:ad:eb:e0:6a:
55:ea:09:19:58:6f:b4:f4:56:ca:d5:e3:9e:2a:92:57:58:ff:
c9:9a:38:5e:20:d3:c5:7b:0d:42:a3:6d:74:22:39:82:f2:c1:
33:01:74:fd:5d:c8:ec:8f:30:d2:64:6e:2b:dc:17:b0:44:b4:
d2:01:fa:14:a7:89:2f:97:49:74:13:f4:af:ce:bb:a0:20:ab:
e0:5c:14:95:d8:f9:ad:e3:cd:a4:bb:68:69:00:0e:71:83:38:
04:fc:e6:38:67:81:5e:96:e1:d6:bf:16:8b:20:a9:b2:75:c7:
42:8a:b5:1a:fd:36:8f:e8:ee:2b:75:94:ed:87:d8:8b:ad:e5:
bb:2b:60:c0:53:43:89:b2:5c:44:31:d3:88:11:7d:e4:17:78:
52:61:ff:5f:0b:f4:4b:f8:cd:05:3a:0a:6b:ef:ac:7b:fc:97:
6a:39:b7:2b:c7:7e:e4:c3:30:54:f4:37:e0:d6:94:44:e7:33:
51:a5:75:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:00:54 2026 by rpki-client