Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
File: hAfwBj7przHYfP5lubwZPrQsiWk.mft (raw, json)
Hash identifier: DIljoxYS3x8eiSLrq4A2xUgLwgNGHmA47I4zmdP+lkc=
Subject key identifier: FB:57:38:50:FF:B2:3C:C4:7C:70:52:40:12:47:19:90:F5:BD:CB:C6
Authority key identifier: 84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
Certificate issuer: /CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Certificate serial: 019E1E6C1C4B29A7D3ED48B0B01C012B5AD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
Manifest number: 096A
Signing time: Tue 12 May 2026 23:01:01 +0000
Manifest this update: Tue 12 May 2026 23:01:01 +0000
Manifest next update: Wed 13 May 2026 23:01:01 +0000
Files and hashes: 1: hAfwBj7przHYfP5lubwZPrQsiWk.crl (hash: /Jf6WVb3HdCe+qKkWyKYU3JGnE9i7WN/p+34QOJ++dY=)
2: ilf77_-o9-q6za7MOsqeG7F-F18.roa (hash: QcXY77GP6oWSI7llT54vOOPgAvyMn7s0Et6LlhSw/kk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:1c:4b:29:a7:d3:ed:48:b0:b0:1c:01:2b:5a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Validity
Not Before: May 12 23:01:01 2026 GMT
Not After : May 13 23:01:01 2026 GMT
Subject: CN=fb573850ffb23cc47c70524012471990f5bdcbc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:32:85:f3:83:85:6a:06:0e:59:a4:b6:c4:c9:
73:99:94:a3:b0:e4:31:49:bf:b3:16:a5:74:40:03:
42:f4:c0:69:96:b8:70:cf:06:2a:09:f0:aa:1c:9d:
ab:e0:59:b0:ee:b2:14:34:7d:b1:2a:9b:00:3b:3c:
db:de:f0:42:11:c3:68:1b:fd:f7:65:dc:57:27:8a:
15:33:4c:d0:3e:d6:ee:d6:9c:6b:ac:0b:af:bd:91:
36:73:da:4c:21:dc:72:a6:b5:f0:62:37:69:fd:0b:
6f:a4:ec:6d:03:7d:51:6c:ac:e1:d8:9a:5f:bf:e2:
46:93:a3:bf:0c:5a:1a:e4:4f:6f:e9:8c:de:1b:5b:
4a:88:f6:48:cd:30:96:43:02:17:2a:0d:bc:c8:c9:
17:c1:4d:43:be:f7:18:fa:a1:24:6d:64:f5:be:bf:
de:6e:fd:3d:c2:85:66:3a:3a:2f:e1:70:a7:20:83:
93:75:d8:21:db:30:51:32:40:0a:84:bf:96:cc:9c:
27:a8:0b:30:da:9b:9c:51:d9:a6:ed:97:aa:d8:ab:
53:0c:a8:b8:d7:26:db:30:ef:99:2a:fb:6d:a2:e6:
9e:16:9a:d8:f2:99:90:e2:d3:70:e4:93:22:21:35:
8a:a7:0d:5a:eb:cc:f1:60:af:85:6e:21:2c:82:d6:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:57:38:50:FF:B2:3C:C4:7C:70:52:40:12:47:19:90:F5:BD:CB:C6
X509v3 Authority Key Identifier:
keyid:84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:4a:03:b6:97:e1:b5:32:d6:37:c8:81:ee:1d:0b:2a:be:22:
9b:ab:0d:b4:75:c0:3b:0a:51:33:8f:91:4c:a6:ae:cb:70:b5:
2c:ac:15:ba:08:9e:b4:3c:68:15:ef:54:06:14:93:8a:91:5e:
07:a5:77:6f:ba:09:ca:eb:e7:f3:52:b0:09:8b:bc:0c:99:d1:
dc:6b:3c:e7:07:bc:3c:68:b8:3e:35:b4:f2:38:99:7c:30:8b:
f3:c3:8a:9a:0c:ae:c3:9b:55:a4:20:92:19:f7:1a:4a:d1:5c:
33:6e:a8:6d:aa:42:90:8f:cc:e0:b3:bf:9e:39:66:2a:17:98:
b5:9c:40:61:42:60:8d:e6:23:40:e4:70:35:d8:74:28:f5:3e:
1c:92:d7:58:c7:81:84:2d:78:f6:a1:a3:4b:dd:ca:44:a2:05:
9a:34:46:60:93:c6:a7:0c:66:ad:8e:c8:91:03:02:9f:a2:cd:
42:02:87:6f:14:87:30:52:f3:90:f1:1f:1e:02:f9:fd:9e:db:
44:3c:a3:e4:ad:9e:90:8f:69:59:90:bc:87:7f:20:03:a8:05:
58:c9:d4:00:e5:6f:81:50:cb:79:f4:24:22:dd:56:0d:67:91:
3f:ad:2b:69:46:d1:bf:4c:3e:01:bf:7c:5c:b1:53:38:84:4e:
b2:6f:3a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:30:45 2026 by rpki-client