Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: mf8/W8P7JLT3qVSXhxnQOAVaRyHZOcYnY/otw6e0xoU=
Subject key identifier: BD:C2:80:BD:D4:25:B1:75:8C:8D:22:32:47:3A:48:86:4E:CE:EE:48
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 019E1F10B7E31B3C4C22CFFC476AE131C019
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 0B97
Signing time: Wed 13 May 2026 02:00:49 +0000
Manifest this update: Wed 13 May 2026 02:00:49 +0000
Manifest next update: Thu 14 May 2026 02:00:49 +0000
Files and hashes: 1: U967gx6zU2ewhEleCWFHT_7A_9o.roa (hash: rEcp4qFupVQgVYmsA8hG1Q/G6+z2CIRB0Mx5vxsYxf0=)
2: h-KmrUFQix2mPVIgPxijrxKClGw.roa (hash: fc8hHRpimWi4M001kIYlHNuSFZw5gckGt8QS97+VBbM=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: h7gZ3R3JWGmdPcDzTY86p87eTw4X7ug7zaX6NLmX60A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:b7:e3:1b:3c:4c:22:cf:fc:47:6a:e1:31:c0:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: May 13 02:00:49 2026 GMT
Not After : May 14 02:00:49 2026 GMT
Subject: CN=bdc280bdd425b1758c8d2232473a48864eceee48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:92:26:b9:79:58:de:a7:33:5e:77:09:ab:
4e:63:1a:57:dc:d4:09:f0:78:2b:f4:44:18:d6:33:
c2:9b:b4:81:e5:10:82:a7:07:c4:89:8b:f0:cf:5e:
84:cc:d6:a5:62:30:05:cc:a9:28:7c:fa:66:25:35:
8a:52:c1:cd:cf:ec:15:ae:36:ae:c2:29:a9:0b:42:
4f:94:f2:0c:40:17:6e:b6:fa:50:b1:79:ef:f4:3e:
7d:d3:b0:94:b6:73:db:80:58:ab:2c:1b:d2:b1:3e:
09:57:80:0c:1d:49:1a:ff:a8:64:84:4b:99:27:e5:
55:a2:de:ea:b9:cf:1d:22:d5:71:6f:21:8d:1d:d5:
78:c9:f9:69:15:4c:f0:f3:b2:61:40:a8:54:a6:08:
cc:6e:dc:f0:30:74:f3:62:8d:03:8e:ed:8c:e9:e2:
ce:a1:13:6f:4a:b7:a2:ca:da:48:53:12:fe:1c:41:
fa:5f:6b:6f:22:a4:20:aa:f0:66:9b:43:ef:ca:9c:
5f:81:63:a2:91:92:b1:9c:44:84:b3:cb:f9:ab:8b:
c9:3a:22:4f:37:0f:98:8e:35:b5:c3:19:8f:76:6a:
24:39:7f:51:67:9e:89:44:4b:d4:fc:9d:a2:34:8b:
a6:0c:85:09:b4:0e:c3:ee:9c:02:3a:f2:73:f0:f9:
46:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C2:80:BD:D4:25:B1:75:8C:8D:22:32:47:3A:48:86:4E:CE:EE:48
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:f6:97:7a:0d:a1:64:f0:89:4f:d1:9f:49:03:fb:e8:6a:29:
ec:38:a2:84:c1:b8:a9:97:83:54:f6:93:2f:d7:2d:28:0a:84:
82:16:21:75:50:d5:96:9f:87:4c:c3:97:95:2d:6b:45:8c:ba:
8b:56:2d:89:ec:13:0e:0c:e2:fd:4b:ef:3a:4e:a6:2c:f5:23:
b2:94:91:26:ec:60:54:af:6f:c3:cf:b8:b5:87:fa:0b:b0:ed:
fc:b6:35:79:b5:59:8f:2a:87:a0:2f:4e:37:bc:22:fb:50:92:
e8:1f:be:79:2c:e1:16:09:71:90:08:63:9a:a4:3d:a7:03:42:
ca:f5:7c:e3:95:63:4b:a5:29:0b:c9:53:f7:1e:bc:54:0e:75:
0e:2c:82:6f:4b:b0:27:7a:06:4d:3e:9a:74:67:69:6f:27:22:
8c:f7:84:4f:04:b7:d7:83:58:6e:1a:79:e3:d8:16:5e:72:ad:
f7:5a:90:12:e1:0f:f5:f7:20:31:13:90:a8:69:59:ca:d1:e9:
7e:45:cb:cd:91:d3:c8:b7:36:b4:c2:e6:7c:f6:48:ca:88:20:
fb:a4:72:8a:4c:d7:58:73:b9:76:fd:38:0c:e1:6e:78:ac:3f:
96:a1:b3:cb:01:ed:81:00:15:6e:9e:1a:46:78:ab:8b:62:a2:
c4:e6:4b:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fELfjGzxMIs/8R2rhMcAZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni
NmIxMGEwHhcNMjYwNTEzMDIwMDQ5WhcNMjYwNTE0MDIwMDQ5WjAzMTEwLwYDVQQD
EyhiZGMyODBiZGQ0MjViMTc1OGM4ZDIyMzI0NzNhNDg4NjRlY2VlZTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2IGSJrl5WN6nM153CatOYxpX3NQJ
8Hgr9EQY1jPCm7SB5RCCpwfEiYvwz16EzNalYjAFzKkofPpmJTWKUsHNz+wVrjau
wimpC0JPlPIMQBdutvpQsXnv9D5907CUtnPbgFirLBvSsT4JV4AMHUka/6hkhEuZ
J+VVot7quc8dItVxbyGNHdV4yflpFUzw87JhQKhUpgjMbtzwMHTzYo0Dju2M6eLO
oRNvSreiytpIUxL+HEH6X2tvIqQgqvBmm0PvypxfgWOikZKxnESEs8v5q4vJOiJP
Nw+YjjW1wxmPdmokOX9RZ56JREvU/J2iNIumDIUJtA7D7pwCOvJz8PlGPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL3CgL3UJbF1jI0iMkc6SIZOzu5IMB8GA1UdIwQY
MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It
YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm
LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATvaXeg2h
ZPCJT9GfSQP76Gop7DiihMG4qZeDVPaTL9ctKAqEghYhdVDVlp+HTMOXlS1rRYy6
i1YtiewTDgzi/UvvOk6mLPUjspSRJuxgVK9vw8+4tYf6C7Dt/LY1ebVZjyqHoC9O
N7wi+1CS6B++eSzhFglxkAhjmqQ9pwNCyvV845VjS6UpC8lT9x68VA51DiyCb0uw
J3oGTT6adGdpbycijPeETwS314NYbhp549gWXnKt91qQEuEP9fcgMROQqGlZytHp
fkXLzZHTyLc2tMLmfPZIyogg+6RyikzXWHO5dv04DOFueKw/lqGzywHtgQAVbp4a
Rniri2KixOZL+g==
-----END CERTIFICATE-----
Generated at Wed May 13 07:06:33 2026 by rpki-client