Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
File: sHATRrrVXff13IGLu7z7t9sQcKs.mft (raw, json)
Hash identifier: Ev60tLqSQpNjEwsGTuf3oMOqg41L49s7LmUT4U7hRHk=
Subject key identifier: 8E:EB:7B:90:54:95:31:57:85:7A:31:D7:48:93:45:FD:23:AD:AE:C3
Authority key identifier: B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
Certificate issuer: /CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Certificate serial: 019E1D905BFA8C873F8FDB78CAE2DD909469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
Manifest number: 0ADD
Signing time: Tue 12 May 2026 19:01:00 +0000
Manifest this update: Tue 12 May 2026 19:01:00 +0000
Manifest next update: Wed 13 May 2026 19:01:00 +0000
Files and hashes: 1: WnIgFqDUtt5MOFYPPxGh5mG_FSA.roa (hash: x54UNNX5k2mt5behlKnqsueUS0vpAx/Jev9aIjgXAdg=)
2: sHATRrrVXff13IGLu7z7t9sQcKs.crl (hash: u+D03TMGZhOeOD7bBmcM93S3SbivcUUcqyT2x1QDRtw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:5b:fa:8c:87:3f:8f:db:78:ca:e2:dd:90:94:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Validity
Not Before: May 12 19:01:00 2026 GMT
Not After : May 13 19:01:00 2026 GMT
Subject: CN=8eeb7b9054953157857a31d7489345fd23adaec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ff:83:73:45:9f:37:8d:a2:11:a5:13:a7:90:
ee:54:02:83:9a:4a:42:27:dc:c8:d1:a7:d2:6e:6b:
75:b3:ea:95:93:3a:b0:b5:e9:b1:41:64:c3:7b:11:
b6:98:50:62:7e:a1:bd:bf:1b:dc:8b:e6:07:a4:dd:
10:9f:15:18:ff:e4:0c:7d:ec:c9:ec:26:58:be:2c:
3d:9e:e3:da:fe:c1:98:bd:e4:bc:f4:df:d1:f0:c0:
61:ae:d8:34:6b:2d:7d:0e:27:be:b5:29:e3:60:63:
65:e2:4f:a4:1b:7d:3e:44:bf:9f:f6:d2:a3:3e:d1:
a1:bf:86:93:65:f5:71:fd:82:d4:30:65:f5:61:b6:
42:ff:ab:0b:4f:ce:f5:a5:dd:10:b2:8e:a2:2f:16:
e4:b7:fc:da:f3:39:d5:93:19:f6:1c:d4:e1:a1:80:
b5:41:5c:bf:bd:74:67:33:93:19:74:af:fd:92:c7:
fa:2e:0a:4e:aa:ce:82:27:92:c8:da:da:fe:a4:82:
d8:a8:ae:ca:11:78:4c:a7:08:65:26:7c:a1:a6:e2:
dd:14:72:1c:3a:ee:16:f0:11:a1:dd:dc:79:d1:e6:
b6:ce:6a:a5:ba:ab:b6:85:8b:56:2c:46:a7:6a:18:
73:ad:8b:a6:1c:b4:5a:d9:62:b5:3d:bf:db:10:e8:
5f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EB:7B:90:54:95:31:57:85:7A:31:D7:48:93:45:FD:23:AD:AE:C3
X509v3 Authority Key Identifier:
keyid:B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:65:95:dc:88:66:47:cb:c9:30:5d:b3:0d:c3:4a:7a:84:50:
cb:14:74:8f:1c:54:38:59:c5:0f:77:12:9e:ce:a8:01:76:97:
80:35:eb:70:19:8e:27:bc:f5:a0:fb:fa:93:c5:f0:fd:0a:0e:
81:82:e7:34:19:c2:68:00:0d:df:6c:66:a8:b4:ff:f0:f0:35:
9b:e0:48:09:50:70:0b:98:11:77:4c:83:b2:8b:fd:9d:2c:08:
e7:51:b3:18:a3:bc:51:a5:e2:9f:d4:1a:db:64:75:d8:35:82:
46:04:55:ef:ba:33:e1:72:0e:14:9f:f5:89:c4:55:8a:14:02:
9c:2c:64:af:0b:7d:0c:e1:b8:b3:7a:56:da:c7:2a:45:23:f0:
53:f6:d5:f5:74:8d:e0:4e:d6:6c:25:18:c2:b9:27:27:ad:12:
ac:82:13:91:18:f7:04:6f:7d:8a:73:6f:6e:e0:41:c0:ae:7b:
62:66:d0:1d:90:e4:17:bd:4f:c7:0e:f6:48:c6:11:62:10:bc:
86:3f:a1:bb:66:f8:70:71:38:e5:8c:cf:a9:df:d1:ff:09:97:
d5:e9:d2:74:bb:8f:dd:66:54:26:4f:44:4a:c8:17:a4:0e:00:
04:a1:5d:01:89:ea:26:20:5e:e6:37:a4:16:db:4d:d8:41:7f:
1c:0c:da:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:22:38 2026 by rpki-client