Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json)
Hash identifier: zpBue1RPWcrligLz6waYpZ06+3ojLj7++mWaKuntf5E=
Subject key identifier: 67:E7:57:8C:6F:C5:F5:8D:7E:70:25:D9:7E:E5:99:C3:DB:DC:E0:F1
Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Certificate serial: 019E1EA3B10B26EAE28FF21A6B7383B03397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
Manifest number: 0529
Signing time: Wed 13 May 2026 00:01:44 +0000
Manifest this update: Wed 13 May 2026 00:01:44 +0000
Manifest next update: Thu 14 May 2026 00:01:44 +0000
Files and hashes: 1: 1-viZKzZcs2hL671huJpZke8oCa8.roa (hash: +mu7L8sH0WKwCKuSeMKrM/p/c/OlxP69D6YYgy4YRII=)
2: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: rPn3fdU7uc+vqU1drffMCNQfrAzwMW2xsot++Zr2XkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:b1:0b:26:ea:e2:8f:f2:1a:6b:73:83:b0:33:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Validity
Not Before: May 13 00:01:44 2026 GMT
Not After : May 14 00:01:44 2026 GMT
Subject: CN=67e7578c6fc5f58d7e7025d97ee599c3dbdce0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:1a:63:a5:54:a3:bb:8a:a6:71:72:d4:2f:
f8:51:46:88:16:88:8d:b3:d6:a4:0b:0c:7e:e6:69:
9b:0d:0b:ed:9d:1a:f1:f3:83:33:05:76:5d:5f:c5:
13:c1:76:f8:2d:6a:39:87:05:34:e3:3d:b6:f1:f6:
1f:f5:44:7b:a4:31:f3:92:11:44:8a:3a:8f:b2:ff:
0d:a6:ef:92:a9:69:69:cb:47:a4:f8:d6:bf:3a:c1:
a2:d4:ee:14:8e:ab:a7:92:30:3e:84:b2:6e:a8:1a:
fc:4d:65:8f:ad:1d:45:df:c7:71:ba:b5:57:03:81:
eb:63:90:66:f3:35:e5:07:ca:53:ed:10:ae:56:ec:
9f:b1:a8:c2:83:e9:f3:46:66:a8:2e:fa:21:00:42:
47:7b:cf:f7:bd:e8:17:86:a7:26:84:ab:06:5a:f0:
4a:36:2a:bb:03:9f:aa:45:76:c7:f0:35:2d:7f:9e:
8b:64:44:72:93:dd:3c:f2:f0:23:8f:cb:20:fb:d1:
0b:09:cf:98:1a:26:28:83:1a:6a:79:71:69:50:5a:
20:6a:cd:63:ae:3e:e6:43:b9:81:8f:1e:82:23:00:
95:3c:21:10:12:77:da:d6:73:fa:87:e4:3b:36:30:
b8:d9:76:28:66:21:72:ae:c4:ec:0d:24:e5:18:55:
10:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E7:57:8C:6F:C5:F5:8D:7E:70:25:D9:7E:E5:99:C3:DB:DC:E0:F1
X509v3 Authority Key Identifier:
keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:7c:7b:52:f5:54:95:a9:0c:21:80:85:6e:7d:57:55:b9:f8:
c5:ce:93:b0:c6:92:78:06:56:8a:38:67:33:83:8e:67:7f:ab:
aa:9f:c8:b7:44:b8:23:35:da:91:66:61:12:5e:78:cb:6c:82:
1b:a9:0b:20:c5:1e:84:1a:9a:05:f5:ea:f0:62:cb:a1:5f:a3:
dc:cf:d5:3b:51:50:04:9f:f7:95:46:8b:c3:bb:77:14:e1:48:
6c:eb:57:f7:d8:d5:d7:6e:4c:09:f0:09:c2:05:2e:15:ee:60:
c4:ae:c7:6a:ad:1f:0d:4d:3a:6f:46:21:6f:10:5b:a2:57:0d:
64:df:84:b5:43:e6:1d:bf:3a:29:c7:98:bd:ff:10:67:54:90:
64:0f:77:bc:3f:0c:3a:64:4b:fe:70:85:2a:e0:6e:56:ed:c0:
83:80:4a:d5:e9:1e:68:e6:07:9b:5f:13:12:f4:70:b1:55:53:
3f:e0:36:51:40:9f:a8:6f:99:0f:4d:39:22:a9:eb:bd:85:1a:
d8:3f:25:ac:a1:2c:16:b4:41:7d:ae:34:c6:be:f5:e2:b0:a2:
6b:03:13:73:01:c3:33:b9:bc:ea:04:fb:30:40:00:34:9e:11:
95:6e:40:9f:51:29:ee:36:e2:90:86:a6:23:3b:78:b2:76:2e:
02:a7:c9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:37:05 2026 by rpki-client