Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: gA2X5qZOl+SMOI+yxke/5+aU2+5cPmIBu3GoAUm9Zsg=
Subject key identifier: 5A:1E:AB:89:F1:3E:E5:F3:51:41:D4:DA:12:FE:4D:21:FF:1E:DD:3B
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019E1F10F59A54045D1822C30FA79D455D36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0D3C
Signing time: Wed 13 May 2026 02:01:05 +0000
Manifest this update: Wed 13 May 2026 02:01:05 +0000
Manifest next update: Thu 14 May 2026 02:01:05 +0000
Files and hashes: 1: EPIHsxcfLuChPC0N3L4_ybUFOk0.roa (hash: 1xlVkrwEe8dHdyY6GUfJC8Bthh85BMj9UMn+rmdsApg=)
2: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: zph+BKoyRrua+EYJDlhrfo6m+T8wCRqFx5r1f5QnDfU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:f5:9a:54:04:5d:18:22:c3:0f:a7:9d:45:5d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: May 13 02:01:05 2026 GMT
Not After : May 14 02:01:05 2026 GMT
Subject: CN=5a1eab89f13ee5f35141d4da12fe4d21ff1edd3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a2:32:88:52:b4:e9:a4:d6:3d:c3:cb:ab:c0:
4d:7d:91:d6:16:16:ef:29:29:ef:c5:9d:6a:f5:b7:
f7:92:05:d2:49:83:6b:85:32:cf:1e:5c:ee:05:28:
f9:fb:a8:e2:fc:6b:dd:b9:a1:1d:b8:37:73:4b:12:
d1:52:54:7e:4c:da:1b:92:28:99:87:96:71:9f:51:
ab:d1:64:22:59:5f:45:f7:40:84:b7:36:2d:1e:77:
f9:7a:e3:1d:8a:c5:2b:e0:c1:6e:45:92:2d:af:a4:
50:88:e9:6d:6b:bb:be:df:0f:14:ea:78:1a:e1:99:
88:f0:24:1c:95:70:44:46:b4:cf:8b:49:4f:15:1e:
ed:5d:29:ab:39:88:bf:b2:13:20:9f:a0:d5:96:8a:
62:7d:a4:32:85:5e:3b:3e:83:15:63:d2:2b:a5:d0:
a1:06:b2:01:91:71:02:3c:3f:a7:7a:03:6d:fb:b4:
9a:32:3c:1c:49:d7:8d:5a:c7:7a:7d:bd:46:37:5f:
dc:03:a6:c3:c0:43:ff:64:ef:cc:33:1a:24:0f:1f:
5b:89:e2:b7:b5:cd:1e:40:a9:e7:23:11:78:10:36:
7f:5c:fe:0b:c8:75:b5:7a:07:38:5e:f4:b7:4e:ad:
74:58:46:a8:e1:66:e5:96:89:52:25:cf:bf:1f:78:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1E:AB:89:F1:3E:E5:F3:51:41:D4:DA:12:FE:4D:21:FF:1E:DD:3B
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3e:32:6e:61:0e:5c:67:64:21:18:16:eb:80:74:8a:13:16:
8e:03:7d:12:31:ca:0a:8b:57:a2:9e:30:4a:06:0e:b9:f9:03:
54:8c:54:2c:1b:d2:ea:48:07:78:b3:d3:41:44:af:76:2d:4c:
cf:b9:7c:d7:8a:20:e4:57:82:55:2a:4e:fd:85:e3:45:10:e8:
27:9f:44:e6:9e:e9:e6:20:4f:55:87:1b:24:d1:e5:df:66:c0:
17:fb:be:17:8b:38:ef:cc:c6:54:db:8d:4b:b3:0d:c9:bc:05:
19:28:4f:82:0e:ba:2b:23:59:5c:18:10:b1:7e:ca:0d:36:5a:
8b:68:75:40:b7:40:96:14:aa:ab:84:ec:c7:82:a1:e7:08:0a:
bf:42:1f:6d:40:ee:c7:da:8b:b7:71:55:dc:c0:66:72:50:83:
cf:24:cf:30:65:18:91:6f:04:1f:a2:4b:e9:ae:39:02:3e:c5:
d2:86:89:ec:4f:cc:7b:51:ba:d3:89:dc:10:ce:e3:9d:11:53:
f0:0f:9c:fd:db:c0:bc:58:53:4b:ea:9a:86:7e:33:64:ef:fe:
dd:65:00:c8:c9:61:b0:c6:14:81:0b:4e:b1:eb:fd:04:31:47:
25:80:6e:87:8e:a5:d5:95:13:aa:94:6c:ed:ef:c2:11:71:7a:
f5:7f:53:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:47:33 2026 by rpki-client