Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
File: hKafxWiJTLOYXt7yIha9mZdN4lE.mft (raw, json)
Hash identifier: D3MleNUg6FJfcJdTMNHTJtVRGnvdor5SQ72YLhfstig=
Subject key identifier: 51:28:C8:11:74:95:95:06:C3:75:67:85:AA:93:90:80:1C:DD:37:94
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 019E1E35D8E7ED98E37AE54F3795CA6A0796
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
Manifest number: 15D0
Signing time: Tue 12 May 2026 22:01:45 +0000
Manifest this update: Tue 12 May 2026 22:01:45 +0000
Manifest next update: Wed 13 May 2026 22:01:45 +0000
Files and hashes: 1: 5yDhnFwC0iVn5DPcpR3QmCvoVv0.roa (hash: ZjrAq68K+mD03JUMhXQCJJAVWYAycmpN3p0OOOXApGI=)
2: hKafxWiJTLOYXt7yIha9mZdN4lE.crl (hash: ugUf6dnPXUV81zmcogl37yQAeGvzVqvVqMTQCF3okiM=)
3: iimJ_FJ2za4rPb0lbWSF-wMFV-U.roa (hash: 9GhANmHxIYz0vSDlZn19gbsqViraUvvPcjEm2QpG0pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:d8:e7:ed:98:e3:7a:e5:4f:37:95:ca:6a:07:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: May 12 22:01:45 2026 GMT
Not After : May 13 22:01:45 2026 GMT
Subject: CN=5128c81174959506c3756785aa9390801cdd3794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4d:c4:6c:28:c2:fe:e7:47:9d:6d:86:ca:af:
4e:bb:80:31:1c:da:21:7c:26:b2:36:21:31:7d:30:
ee:be:cc:92:63:1f:22:49:c5:a6:93:e2:bf:ff:80:
34:8d:d7:23:10:4d:15:81:b2:19:3e:c3:70:4f:43:
40:01:34:f9:e2:01:5c:73:6e:7d:01:c9:54:18:38:
1a:f2:91:10:75:81:4b:45:ee:f8:c5:5a:db:69:93:
de:ff:d3:8a:42:d1:78:2d:18:9e:0f:ec:49:46:ba:
53:14:57:8d:cc:ac:98:1d:cc:1d:21:bd:42:9f:94:
81:e2:fd:ff:46:44:c8:e6:1d:bc:29:d8:52:01:75:
4b:d6:44:e6:aa:4e:4e:b3:dd:f1:4b:7b:dd:9e:10:
c0:3c:fd:39:83:3e:fe:f8:74:8c:4b:8f:4f:1c:c5:
dd:6d:38:07:8f:0d:39:4f:3b:70:0d:04:d7:6e:14:
f2:20:7e:c4:3c:35:9f:2a:75:e5:0a:37:59:91:f6:
bf:3a:05:6b:6b:42:0a:12:c6:ed:6c:e5:7f:d6:ea:
ec:3e:3a:65:82:2c:81:cb:55:9a:2a:0c:fb:9a:e7:
15:2f:53:5a:a5:9c:ba:ce:33:79:e7:1d:99:89:48:
87:c5:94:b2:de:12:90:c8:20:f7:f0:48:cb:88:8e:
0d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:28:C8:11:74:95:95:06:C3:75:67:85:AA:93:90:80:1C:DD:37:94
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c7:47:49:63:2b:a1:4d:43:a8:62:b8:48:b6:3d:84:e3:a4:
a0:d8:d2:c2:8a:38:49:07:eb:32:8f:8b:d7:ad:08:1a:0f:87:
5b:04:74:31:38:fe:10:63:4f:80:ef:59:96:6a:b4:0f:0e:ca:
93:2f:9a:0b:2d:ff:8a:55:07:3d:a2:dc:c1:7c:fa:51:7d:c8:
47:31:dc:3d:d5:04:e4:e4:71:00:4b:28:9a:38:2f:67:7b:83:
6f:57:a3:4b:f0:03:f5:b9:50:c2:f8:19:55:23:1a:2c:1a:53:
85:45:de:4d:3f:07:f3:12:64:6a:d1:d6:cb:d1:82:66:a2:18:
cc:7b:21:03:ec:e6:a6:b3:34:b0:62:c9:da:f6:5c:76:2e:81:
00:17:da:8f:3c:77:93:83:58:5f:ae:9d:c4:36:1a:03:1b:91:
2c:06:c5:5b:8c:18:1f:3d:31:35:5e:09:fc:76:a0:b9:ca:a7:
ed:31:59:d8:6e:07:47:e9:22:1d:af:dd:d7:90:02:68:10:3a:
a4:bb:b0:e7:28:ae:83:69:b2:14:90:8b:7d:8e:d9:0f:dd:d9:
32:29:54:75:d4:27:90:45:55:8f:98:ab:0b:5b:5d:61:d5:d6:
d1:48:58:7c:df:dd:09:e8:fb:b3:ea:7d:5e:55:0f:45:dc:e2:
88:5f:60:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:55:07 2026 by rpki-client