Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: XxudGp8mGehQV2sKI5sFojhZypL19bHAxgrACNGmsEs=
Subject key identifier: 14:66:B9:5A:A2:44:C6:1C:5C:D5:E8:D5:6F:C4:2B:95:5C:66:D1:C9
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019D27E0480E96E61BEDE28F20247C2DAB44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0CBC
Signing time: Thu 26 Mar 2026 02:01:43 +0000
Manifest this update: Thu 26 Mar 2026 02:01:43 +0000
Manifest next update: Fri 27 Mar 2026 02:01:43 +0000
Files and hashes: 1: EPIHsxcfLuChPC0N3L4_ybUFOk0.roa (hash: 1xlVkrwEe8dHdyY6GUfJC8Bthh85BMj9UMn+rmdsApg=)
2: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: eJ69/a10vhRHpw8pdsFPGD/QPpSmn7jj9BYx6WLq86I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:48:0e:96:e6:1b:ed:e2:8f:20:24:7c:2d:ab:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Mar 26 02:01:43 2026 GMT
Not After : Mar 27 02:01:43 2026 GMT
Subject: CN=1466b95aa244c61c5cd5e8d56fc42b955c66d1c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7a:81:e9:5f:a3:3f:f5:5b:07:aa:cf:48:22:
f4:cd:d9:20:80:20:29:fd:a7:29:13:3e:f0:9d:38:
19:3c:fd:8f:17:04:6c:3e:72:06:11:2d:fa:f8:2b:
1b:56:13:7a:c2:98:6c:55:2b:54:34:b6:9a:04:90:
ba:b3:3e:cc:2e:1d:e4:27:13:67:13:fa:aa:47:be:
18:bc:39:99:a5:b1:bd:01:be:c3:75:36:a7:1f:8e:
84:48:e7:aa:e0:3e:f2:5c:5c:93:05:2e:3d:d7:83:
db:8d:fc:10:30:f0:36:58:9a:06:66:ee:eb:54:28:
85:c9:d8:9c:67:2f:7f:b4:aa:85:25:a6:b9:6e:51:
17:3c:ea:ba:77:db:f2:30:6f:86:54:cb:da:d2:2a:
48:08:52:ec:10:fe:b6:a2:b4:f6:77:45:3e:03:55:
7d:86:ea:40:e5:de:88:d8:f3:41:5f:b9:d1:a8:e4:
ac:2c:8b:2c:5b:f1:32:d0:ab:21:41:b7:6b:9d:dc:
fc:da:d0:38:ae:2c:d4:60:b8:c2:92:09:8e:c0:33:
b6:86:06:2e:6d:3c:7f:5a:f6:f6:b6:7e:52:54:47:
0a:71:af:2a:a6:5e:e9:07:a3:2a:ef:55:af:03:14:
3a:ac:55:c5:14:61:68:1a:95:67:50:e9:48:eb:37:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:66:B9:5A:A2:44:C6:1C:5C:D5:E8:D5:6F:C4:2B:95:5C:66:D1:C9
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2f:f0:e6:2a:2b:8a:e0:ad:2d:57:79:ec:17:bf:a4:c3:de:
a4:3b:8f:2a:a1:e1:d7:7c:06:7b:b5:c4:d3:9c:3f:65:18:67:
05:a1:c5:77:8d:7d:fc:1c:51:b3:d6:0a:8d:6f:71:b5:5d:66:
2d:1b:c1:04:a1:6e:63:04:ad:20:a5:36:78:bd:2e:c1:04:8f:
15:50:ab:14:f1:42:cb:b1:34:b4:36:17:f6:5e:3f:bc:44:df:
bd:32:01:9c:1e:00:01:23:fe:2d:77:7e:d0:b5:54:5f:b6:63:
c6:59:2a:81:ad:e4:b6:ec:0d:cc:48:66:7f:bc:1d:b2:79:74:
22:43:75:c1:f4:cd:6a:79:2f:a2:3a:0d:b2:98:bc:0f:3b:5d:
70:be:b4:24:86:ba:0f:a5:13:c6:22:93:19:e0:fa:69:98:ba:
86:8a:0a:b2:42:62:f6:b8:83:d9:23:9c:42:7d:24:cf:33:d3:
b3:15:f7:8e:38:54:1b:0c:50:2b:06:7b:20:1f:8f:24:bc:01:
80:48:ba:4f:20:be:42:42:d5:74:7c:83:25:96:e0:0a:d6:d8:
08:34:89:d4:ca:37:63:69:36:97:8c:81:99:a0:6e:14:25:59:
60:cf:18:e1:03:fc:56:5d:1a:c5:00:6b:9a:00:21:10:23:06:
30:df:db:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n4EgOluYb7eKPICR8LatEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGU3NDYzZWQ4NDk4MDIwZGQzOTIzMjI0NTlkMmNmNDBm
MjI2YjIwHhcNMjYwMzI2MDIwMTQzWhcNMjYwMzI3MDIwMTQzWjAzMTEwLwYDVQQD
EygxNDY2Yjk1YWEyNDRjNjFjNWNkNWU4ZDU2ZmM0MmI5NTVjNjZkMWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHqB6V+jP/VbB6rPSCL0zdkggCAp
/acpEz7wnTgZPP2PFwRsPnIGES36+CsbVhN6wphsVStUNLaaBJC6sz7MLh3kJxNn
E/qqR74YvDmZpbG9Ab7DdTanH46ESOeq4D7yXFyTBS4914PbjfwQMPA2WJoGZu7r
VCiFydicZy9/tKqFJaa5blEXPOq6d9vyMG+GVMva0ipICFLsEP62orT2d0U+A1V9
hupA5d6I2PNBX7nRqOSsLIssW/Ey0KshQbdrndz82tA4rizUYLjCkgmOwDO2hgYu
bTx/Wvb2tn5SVEcKca8qpl7pB6Mq71WvAxQ6rFXFFGFoGpVnUOlI6zeNBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBRmuVqiRMYcXNXo1W/EK5VcZtHJMB8GA1UdIwQY
MBaAFB3edGPthJgCDdOSMiRZ0s9A8iayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5Njgt
NDNjN2YwMjdjNmU0LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5NjgtNDNjN2YwMjdjNmU0
LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAS/w5ior
iuCtLVd57Be/pMPepDuPKqHh13wGe7XE05w/ZRhnBaHFd419/BxRs9YKjW9xtV1m
LRvBBKFuYwStIKU2eL0uwQSPFVCrFPFCy7E0tDYX9l4/vETfvTIBnB4AASP+LXd+
0LVUX7Zjxlkqga3ktuwNzEhmf7wdsnl0IkN1wfTNankvojoNspi8DztdcL60JIa6
D6UTxiKTGeD6aZi6hooKskJi9riD2SOcQn0kzzPTsxX3jjhUGwxQKwZ7IB+PJLwB
gEi6TyC+QkLVdHyDJZbgCtbYCDSJ1Mo3Y2k2l4yBmaBuFCVZYM8Y4QP8Vl0axQBr
mgAhECMGMN/b6A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:01:38 2026 by rpki-client