Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: g44h0eESV+OEpP1psA5Rv22ky4UtkmOtKvtsTLnlGvQ=
Subject key identifier: 22:85:BA:5A:4F:1B:77:2A:18:BF:14:E6:3D:93:14:C4:AA:94:F0:2B
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019E1E3570AC12761391A6FDC96CD80F8FA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 06D2
Signing time: Tue 12 May 2026 22:01:19 +0000
Manifest this update: Tue 12 May 2026 22:01:19 +0000
Manifest next update: Wed 13 May 2026 22:01:19 +0000
Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: 9716auGlbo66qFC/8MHNjW+V7kBfQe+WayUCv+fMNF4=)
3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:70:ac:12:76:13:91:a6:fd:c9:6c:d8:0f:8f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: May 12 22:01:19 2026 GMT
Not After : May 13 22:01:19 2026 GMT
Subject: CN=2285ba5a4f1b772a18bf14e63d9314c4aa94f02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:98:18:ed:8a:e4:59:1b:86:70:b7:cf:ef:
93:cd:7e:19:9e:8c:6c:ff:98:81:eb:41:fd:ba:e3:
a0:1a:00:6e:e9:4a:1c:0e:74:c7:b4:ee:11:89:29:
f7:d7:0e:c1:6a:61:c5:21:0f:b0:e4:09:eb:1e:17:
ee:d6:58:c0:0c:7d:24:a3:70:e4:82:d9:6d:34:2b:
eb:86:4f:0d:0d:9b:ea:95:12:d6:58:05:2b:5e:9b:
0d:4f:fa:cb:06:df:db:56:cf:96:3c:e0:2f:88:9a:
f7:7d:94:dd:1c:51:87:5d:15:56:57:9b:7a:5f:3d:
1e:f1:be:93:45:89:cc:8e:50:35:1b:f4:fb:b2:86:
d2:91:b9:ad:62:88:f5:67:57:2d:ea:9d:28:7a:f7:
78:1a:28:71:dd:da:0d:0b:83:6a:08:b2:08:6f:ae:
65:3f:d4:1d:ba:54:95:f2:3d:a1:0c:d3:c8:43:92:
96:58:09:d7:46:07:f6:11:f4:be:f8:32:63:a6:fd:
ba:a8:0d:99:ec:ce:8e:8a:91:dd:56:24:39:c8:4a:
00:16:8b:70:11:84:a2:a7:bb:79:ae:d8:66:fc:d6:
3a:30:99:fc:41:fa:77:0d:2f:c4:38:22:f6:ae:db:
bf:82:15:88:83:ab:fc:b5:1d:a7:5f:f4:0a:09:aa:
28:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:85:BA:5A:4F:1B:77:2A:18:BF:14:E6:3D:93:14:C4:AA:94:F0:2B
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:d3:41:e4:dc:f2:80:fa:89:f8:c4:a8:da:15:9b:4a:fd:d8:
0a:51:c7:90:60:22:e7:f3:78:68:94:71:33:3e:ee:c3:be:cd:
18:88:2c:17:81:7f:5c:21:d5:cb:7c:61:94:63:dc:64:1d:15:
4e:78:89:67:0f:07:fe:60:e1:24:5e:1e:26:cf:77:a2:bc:22:
bb:33:e6:dc:c7:d9:c0:85:ea:c4:e5:dd:45:86:6c:85:86:18:
af:3b:b6:3e:70:ac:10:bf:89:1b:68:9e:80:9b:7d:25:ed:80:
f0:17:fc:82:c5:4c:75:58:9c:87:0e:d7:98:6d:cf:d6:a7:7c:
be:c9:35:94:61:ed:34:20:96:46:86:25:fa:57:b6:8b:f8:eb:
04:10:bb:da:11:bf:b9:80:fe:10:96:0e:a4:ac:0a:1a:cf:43:
4f:88:d0:ad:1b:d2:62:c7:e2:e4:73:79:78:0e:54:03:75:3c:
db:82:b3:e4:20:06:ee:68:5c:4d:7c:05:38:4c:ff:18:5d:7a:
22:44:bf:fa:d1:ee:ca:fa:fb:5a:06:31:5d:ac:29:6e:71:18:
06:c9:07:19:da:61:58:53:3a:3e:37:53:c3:7b:8d:eb:fb:45:
c2:36:de:9c:fc:22:2c:00:97:5b:73:6c:cb:d8:52:95:1a:a8:
72:c1:52:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNXCsEnYTkab9yWzYD4+kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj
ZWE2NzIwHhcNMjYwNTEyMjIwMTE5WhcNMjYwNTEzMjIwMTE5WjAzMTEwLwYDVQQD
EygyMjg1YmE1YTRmMWI3NzJhMThiZjE0ZTYzZDkzMTRjNGFhOTRmMDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubWYGO2K5FkbhnC3z++TzX4Znoxs
/5iB60H9uuOgGgBu6UocDnTHtO4RiSn31w7BamHFIQ+w5AnrHhfu1ljADH0ko3Dk
gtltNCvrhk8NDZvqlRLWWAUrXpsNT/rLBt/bVs+WPOAviJr3fZTdHFGHXRVWV5t6
Xz0e8b6TRYnMjlA1G/T7sobSkbmtYoj1Z1ct6p0oevd4Gihx3doNC4NqCLIIb65l
P9QdulSV8j2hDNPIQ5KWWAnXRgf2EfS++DJjpv26qA2Z7M6OipHdViQ5yEoAFotw
EYSip7t5rthm/NY6MJn8Qfp3DS/EOCL2rtu/ghWIg6v8tR2nX/QKCaooBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCKFulpPG3cqGL8U5j2TFMSqlPArMB8GA1UdIwQY
MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct
N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj
LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlNNB5Nzy
gPqJ+MSo2hWbSv3YClHHkGAi5/N4aJRxMz7uw77NGIgsF4F/XCHVy3xhlGPcZB0V
TniJZw8H/mDhJF4eJs93orwiuzPm3MfZwIXqxOXdRYZshYYYrzu2PnCsEL+JG2ie
gJt9Je2A8Bf8gsVMdVichw7XmG3P1qd8vsk1lGHtNCCWRoYl+le2i/jrBBC72hG/
uYD+EJYOpKwKGs9DT4jQrRvSYsfi5HN5eA5UA3U824Kz5CAG7mhcTXwFOEz/GF16
IkS/+tHuyvr7WgYxXawpbnEYBskHGdphWFM6PjdTw3uN6/tFwjbenPwiLACXW3Ns
y9hSlRqocsFSPw==
-----END CERTIFICATE-----
Generated at Wed May 13 06:50:05 2026 by rpki-client