Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: 15bVKL3V0xcxRjJAW/olJldI414uhpxvfpgjoh1xEyc=
Subject key identifier: F0:56:67:6C:57:3A:53:4A:FF:E2:FF:42:2C:90:A3:DE:72:3B:1E:1F
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 019E1DC77D45896C5A5C0CE9797569BB38DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 11C0
Signing time: Tue 12 May 2026 20:01:13 +0000
Manifest this update: Tue 12 May 2026 20:01:13 +0000
Manifest next update: Wed 13 May 2026 20:01:13 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: G4yeFLVbE5AhkUuRrBdXLUuEE4qTd84KSdWBvqqYTcI=)
2: Vf77xukhBIpUTcfDdQGILMMSa4Q.roa (hash: tmWyKSyKboTPLB52PoBpJE8efgve3egkhQ+0cqtz0+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:7d:45:89:6c:5a:5c:0c:e9:79:75:69:bb:38:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: May 12 20:01:13 2026 GMT
Not After : May 13 20:01:13 2026 GMT
Subject: CN=f056676c573a534affe2ff422c90a3de723b1e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b5:c9:14:6d:43:17:21:df:cf:62:fe:1b:25:
10:12:60:e7:39:ed:aa:b5:b3:bb:78:25:02:80:26:
a8:20:75:51:cf:09:fc:bd:d6:1e:9c:d2:14:6b:a1:
0e:3c:31:8f:1e:0b:a4:35:9c:2c:43:66:56:cd:e7:
1b:13:f9:02:25:4f:c7:0a:cd:2f:16:e5:46:d9:2a:
65:81:06:ef:87:bc:20:fb:b0:6d:5e:14:b8:78:81:
95:15:c7:83:a4:f5:3b:aa:f4:94:9a:38:20:cd:0b:
64:5c:1a:10:71:13:65:60:88:68:54:f0:ae:85:39:
87:ef:51:d5:af:8a:d4:d2:31:0f:5e:ec:83:fc:13:
a0:f8:4d:a8:8b:e8:f2:57:f2:76:0e:57:22:94:05:
f5:a2:4e:75:dd:28:15:d1:25:de:28:23:77:a3:33:
71:80:61:46:fb:a3:ca:2e:a3:07:56:f5:ac:b6:ac:
96:de:92:a0:67:ce:5f:29:b2:fa:62:96:2e:b1:30:
ba:50:ed:8c:d4:b2:0f:4b:5d:d3:44:bc:64:56:d7:
84:61:8a:44:8a:c8:a6:04:5f:a7:05:91:db:cb:ea:
2d:eb:20:47:9a:f6:01:fb:53:c9:0e:1e:70:be:2a:
40:31:ad:fd:55:af:6d:8f:5e:10:25:78:4d:b9:6c:
46:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:56:67:6C:57:3A:53:4A:FF:E2:FF:42:2C:90:A3:DE:72:3B:1E:1F
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:c3:c1:14:09:2d:7d:9d:cb:b3:86:0a:8b:f5:9a:56:c5:0a:
23:65:41:ea:9c:f4:aa:a8:ea:4e:7a:61:0e:3b:ea:f0:2c:81:
1d:8e:6f:ca:3b:20:c4:71:a8:ea:5c:c0:7d:5d:0a:4f:f0:e4:
19:c6:20:f3:63:82:90:e9:39:59:0c:68:c5:41:84:97:4d:8f:
49:9c:af:d1:aa:66:9f:af:51:e6:5d:20:c8:c4:31:5a:0c:0d:
b9:d3:04:fc:5b:6b:57:bf:5d:1b:01:68:15:f5:cb:e1:f4:85:
fc:e6:24:56:2c:b9:f8:51:da:5e:2c:fd:fb:7f:e3:2f:25:4c:
77:e5:34:80:68:cc:50:0d:50:7b:d8:d2:c0:7b:c5:e3:e7:63:
8a:d0:e6:ca:01:e3:cd:5d:2d:64:0b:6b:9a:b3:9b:81:ee:f8:
c7:d5:ae:df:30:d6:df:f4:e6:24:22:3c:df:cd:01:2c:67:82:
c9:dc:4e:5a:5c:cd:19:41:6b:75:6e:8a:53:6b:81:a8:12:35:
b9:57:2c:bd:3e:00:6f:cf:72:8d:17:0e:75:00:a6:38:7a:67:
2a:78:4e:98:9f:fe:9b:9d:3a:77:4e:11:5b:18:e4:1f:1c:1e:
3f:59:99:b6:8d:7f:46:74:3a:fe:e6:e9:ab:dc:82:a2:df:a6:
b9:fa:57:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:08:28 2026 by rpki-client