Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: U6MRaAcSzjvDzZMoE4DLiomEyEc8J468f3IlzD3jHds=
Subject key identifier: 90:B2:1E:FF:FF:74:65:01:BE:EF:CE:93:E7:C1:D1:87:36:2D:48:66
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 019D28F20C649321C71D2FD974124C2F73E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 052A
Signing time: Thu 26 Mar 2026 07:00:44 +0000
Manifest this update: Thu 26 Mar 2026 07:00:44 +0000
Manifest next update: Fri 27 Mar 2026 07:00:44 +0000
Files and hashes: 1: 2FxreVqUv_iXTp_gEHHtX_RyDvE.roa (hash: 6tKnUYnu6mjtenIrBJhX9fiu65PwuGcfSqr4GAWWO5o=)
2: RKI3XSz6XZy96Ol-18QcP9FlH4c.roa (hash: g/j02qL/fofi4lQDzUhm/wqo/x+TAc1YiiXTTjZy7lA=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: /irrFtAiqjt1hdNula2p9XTChxiS31CADDHZk3M/CXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:0c:64:93:21:c7:1d:2f:d9:74:12:4c:2f:73:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Mar 26 07:00:44 2026 GMT
Not After : Mar 27 07:00:44 2026 GMT
Subject: CN=90b21effff746501beefce93e7c1d187362d4866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:09:3b:08:22:de:a1:eb:d5:8c:d7:ca:cb:
e7:66:a8:2b:50:16:73:8a:71:32:d5:cf:76:03:7b:
fa:28:ff:c3:51:3e:f9:17:7c:41:17:e8:20:4c:ba:
3f:11:2b:a8:0e:a4:fc:aa:82:01:b9:a9:dc:50:8e:
d0:60:c6:38:61:8f:4b:16:20:35:75:b7:05:d1:76:
ac:21:bb:c6:a8:2a:2f:95:17:2f:b4:7a:84:f9:f8:
36:15:ad:58:13:26:42:ba:cf:a7:50:9e:95:9f:fd:
f3:00:1e:58:3d:00:23:de:bf:56:7c:e8:11:58:9a:
d6:b1:10:00:74:af:e0:67:b5:33:a9:81:c6:e3:fe:
3f:88:e1:97:1b:fa:e4:4c:12:93:b1:96:7f:c4:40:
bf:68:71:0c:25:c2:6d:35:99:c6:5f:0a:bd:62:1d:
8a:fe:79:8c:b0:04:64:22:e7:99:62:39:8a:ca:10:
b0:27:26:30:06:ce:e7:b3:b0:34:eb:69:13:31:d7:
b8:f1:35:1e:bb:f9:0a:f5:34:56:94:13:d4:16:bb:
49:7f:f9:e5:9a:24:a0:c2:f6:4f:6e:e8:89:46:54:
05:e8:ba:82:fc:90:8c:5f:05:25:8f:be:f2:f5:26:
b3:ef:88:5e:6c:13:b1:18:53:da:7d:67:58:a3:dd:
a7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B2:1E:FF:FF:74:65:01:BE:EF:CE:93:E7:C1:D1:87:36:2D:48:66
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:5a:a6:45:cd:56:fd:49:bc:2f:ca:93:bf:a6:18:df:82:94:
55:19:06:06:22:94:97:21:e2:53:5c:69:e9:4a:41:48:05:52:
fb:0a:b4:5e:e8:d8:2d:57:79:78:f1:56:ea:4e:86:97:b8:ea:
c6:51:d7:89:54:b8:35:a0:33:fc:af:46:4b:4f:b5:2d:34:3d:
51:4b:f7:f3:ce:2d:63:36:d9:42:80:bb:54:a9:76:09:7c:73:
06:74:7a:6e:21:1d:32:46:8a:03:d0:b9:90:7e:6a:ef:37:90:
11:c0:5c:4e:ba:8b:ba:4e:86:99:48:9f:75:d3:08:67:b8:ce:
6c:e7:f2:5f:ab:ad:2a:a0:d8:5d:c6:de:85:5f:41:5e:6e:59:
df:48:c9:6e:ff:c7:08:ca:3e:a6:f9:3a:92:f5:88:51:f8:c9:
ea:fa:64:13:68:95:9c:99:66:fb:da:37:48:45:56:3e:a1:dc:
0b:4f:b6:d1:b2:27:8a:d0:60:1c:23:30:b2:3c:39:db:fe:95:
49:d1:ea:66:ec:93:c7:57:c7:e4:f9:76:2f:44:05:70:c3:92:
bf:0c:cb:16:42:53:ec:62:e9:50:73:00:94:27:26:d6:77:fd:
bf:87:c0:61:68:f5:3f:56:b6:bd:e4:95:78:9b:a5:12:fe:90:
fb:23:81:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:08:49 2026 by rpki-client