Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: rrMidVaGMKn5qe07C1HUoWRdldgvY2dT02gmQcuqMuM=
Subject key identifier: 51:AB:EB:35:04:AB:8A:84:10:B0:7F:35:20:2E:1D:40:B0:D4:A3:12
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019E205A3DF23CFD288700A15666717D87C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0DBB
Signing time: Wed 13 May 2026 08:00:45 +0000
Manifest this update: Wed 13 May 2026 08:00:45 +0000
Manifest next update: Thu 14 May 2026 08:00:45 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: RB5P0txte/iKBzOEDdZ0ZGEbpCbCCZTPYsj6XR0JRwE=)
2: ptikDTRhjTNxZI8dkI54eJbGFTA.roa (hash: 3SdSmJMo+FOvr1IMdnku5tDe7K6GsQTnPIBl17tgA08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:3d:f2:3c:fd:28:87:00:a1:56:66:71:7d:87:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: May 13 08:00:45 2026 GMT
Not After : May 14 08:00:45 2026 GMT
Subject: CN=51abeb3504ab8a8410b07f35202e1d40b0d4a312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:cb:6d:0d:75:b6:8f:d9:22:a3:fe:76:e6:
a7:e7:22:96:61:db:43:9c:ac:75:60:8a:40:cb:0a:
f5:49:92:06:56:15:c3:2b:0b:00:ee:fb:6d:14:a6:
03:8b:ea:b7:ce:a7:96:4d:a4:75:e6:21:ed:55:9b:
e8:3a:09:e8:38:c5:62:fa:c0:fd:08:4a:c7:0d:cd:
8a:98:d6:d0:66:3f:6e:50:64:54:96:9f:8a:73:5a:
54:3d:b4:cc:4d:35:b8:20:68:a4:da:1d:5c:09:bb:
a4:76:9a:9c:87:25:a6:84:fe:3d:6a:33:58:9a:29:
77:36:12:24:58:30:c5:2d:e6:92:d7:64:ad:ae:b6:
96:1f:59:27:b4:82:f2:46:c4:cf:22:a8:0d:6c:63:
e4:80:aa:6a:04:b1:98:19:d0:5a:6d:d7:a7:c4:b4:
f5:ee:c3:d7:cb:f9:5e:c9:45:e8:7c:d2:4c:88:2f:
d8:26:dc:a5:c8:13:06:94:43:3d:2c:9b:33:74:bb:
13:e1:d4:13:03:a1:6d:6f:3c:06:1b:b8:75:e3:61:
4d:3f:f9:c6:64:2e:1d:9a:bd:10:3a:27:19:8a:bb:
75:69:e1:b5:dc:88:34:e8:a2:c4:33:b2:80:a4:2e:
51:d5:e9:87:a5:28:18:77:38:7e:e4:89:e3:78:90:
f2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AB:EB:35:04:AB:8A:84:10:B0:7F:35:20:2E:1D:40:B0:D4:A3:12
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:92:18:fc:da:19:9f:62:a6:3c:d3:5a:cf:d3:c1:88:9f:5d:
99:23:80:ac:f9:ae:3f:07:d9:80:08:33:f4:d3:50:a5:52:8c:
d0:03:45:fc:67:11:52:94:04:e0:71:c0:8b:c6:72:b8:7b:2d:
f2:8f:44:26:4f:ed:a2:7f:66:cd:d9:93:70:7d:71:71:ac:87:
71:ab:7e:08:f5:eb:38:37:cf:d1:d2:1e:83:d5:36:5d:47:4e:
75:5d:ae:bd:9f:d3:b8:d2:02:08:f4:d4:a9:f7:0d:35:e2:8a:
71:75:e8:3b:b4:68:96:94:45:a8:eb:5b:28:be:a1:f4:2b:f9:
08:c3:d4:27:55:c9:4f:ff:21:a5:34:60:79:d7:9d:e1:5f:1f:
a0:1a:7c:3a:27:d6:46:e2:74:b5:b5:47:21:a9:9b:35:50:bc:
79:e3:fc:eb:a3:6d:f4:93:fd:91:ef:56:77:08:97:2b:af:49:
49:e1:06:7d:56:78:93:0a:d1:76:a3:62:7a:78:fe:f1:28:d6:
f6:b1:a7:7d:3f:86:9c:7c:ee:62:73:4d:05:95:f7:cb:0c:81:
5c:a5:4d:6f:92:f5:5f:f8:d2:0b:30:35:77:36:13:27:cf:64:
a9:da:b8:d1:ba:c7:12:c4:c4:f0:cf:2e:f9:50:93:ec:b2:2b:
f6:22:48:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWj3yPP0ohwChVmZxfYfHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZGI3MWY2OTE5YjBlZjk4ZWVmYzk5NjQ5MjhhODc1MTAy
MzZhMDMwHhcNMjYwNTEzMDgwMDQ1WhcNMjYwNTE0MDgwMDQ1WjAzMTEwLwYDVQQD
Eyg1MWFiZWIzNTA0YWI4YTg0MTBiMDdmMzUyMDJlMWQ0MGIwZDRhMzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2vLbQ11to/ZIqP+duan5yKWYdtD
nKx1YIpAywr1SZIGVhXDKwsA7vttFKYDi+q3zqeWTaR15iHtVZvoOgnoOMVi+sD9
CErHDc2KmNbQZj9uUGRUlp+Kc1pUPbTMTTW4IGik2h1cCbukdpqchyWmhP49ajNY
mil3NhIkWDDFLeaS12StrraWH1kntILyRsTPIqgNbGPkgKpqBLGYGdBabdenxLT1
7sPXy/leyUXofNJMiC/YJtylyBMGlEM9LJszdLsT4dQTA6FtbzwGG7h142FNP/nG
ZC4dmr0QOicZirt1aeG13Ig06KLEM7KApC5R1emHpSgYdzh+5InjeJDyBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFGr6zUEq4qEELB/NSAuHUCw1KMSMB8GA1UdIwQY
MBaAFIfbcfaRmw75ju/JlkkoqHUQI2oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODIt
OTA0YTA4MDMxYTlmLzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODItOTA0YTA4MDMxYTlm
LzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI5IY/NoZ
n2KmPNNaz9PBiJ9dmSOArPmuPwfZgAgz9NNQpVKM0ANF/GcRUpQE4HHAi8ZyuHst
8o9EJk/ton9mzdmTcH1xcayHcat+CPXrODfP0dIeg9U2XUdOdV2uvZ/TuNICCPTU
qfcNNeKKcXXoO7RolpRFqOtbKL6h9Cv5CMPUJ1XJT/8hpTRgeded4V8foBp8OifW
RuJ0tbVHIambNVC8eeP866Nt9JP9ke9WdwiXK69JSeEGfVZ4kwrRdqNienj+8SjW
9rGnfT+GnHzuYnNNBZX3ywyBXKVNb5L1X/jSCzA1dzYTJ89kqdq40brHEsTE8M8u
+VCT7LIr9iJIvg==
-----END CERTIFICATE-----
Generated at Wed May 13 12:31:33 2026 by rpki-client