Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: 2k99nSFD9NGjNPIGHlOsjnJ4BeluYZS/P2/e+lf/Ur0=
Subject key identifier: 1D:5B:92:66:D2:D6:01:A7:0D:46:C8:2D:79:39:22:C3:E3:2D:F7:C9
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 019E1D900F9120CD5BED34040E66BB32D01B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0987
Signing time: Tue 12 May 2026 19:00:40 +0000
Manifest this update: Tue 12 May 2026 19:00:40 +0000
Manifest next update: Wed 13 May 2026 19:00:40 +0000
Files and hashes: 1: DLumB3dr6jlfHoiS9Gw_fIJrHvk.roa (hash: 5nKHF0MVunEP7PYJoKkfoQt8SYyn/TqTcUA4jgE0VRw=)
2: VMwkQbgZsaD1modLD1OCZoOdaP0.roa (hash: hFT/2DxMA5YwrG6LBI7zWfiz+2OyUaLWWeHm7RJ0nXg=)
3: cPKzl4MAM1VPvGgqdoHotmjF_TQ.roa (hash: Kwq91RaELM7PU5xhh1ZgTtP0NFXJmqvp86LKfBSRLfM=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: oBTqL74bbQxA5Ttd6sUmTF7/431xHpLNLFriORR4uWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:0f:91:20:cd:5b:ed:34:04:0e:66:bb:32:d0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: May 12 19:00:40 2026 GMT
Not After : May 13 19:00:40 2026 GMT
Subject: CN=1d5b9266d2d601a70d46c82d793922c3e32df7c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ea:67:a1:86:5d:82:1c:7a:1c:09:2a:19:3a:
a7:13:74:9f:a5:17:0f:69:7a:5a:e9:e5:89:f9:c5:
d8:fa:a0:a4:a6:a4:d6:55:76:79:d6:4f:ce:93:d5:
32:ba:22:97:c3:22:25:02:35:b3:ed:f9:ee:ca:3b:
13:da:5b:a0:8c:57:1c:d9:e4:a5:29:70:99:7d:66:
c6:5d:d0:84:39:94:d0:17:83:5c:60:b0:7f:94:f8:
c9:17:e1:29:17:94:3c:86:12:7d:95:58:75:3c:17:
3d:c3:44:47:aa:c7:84:82:f8:ee:27:ca:5d:08:26:
67:26:0b:e6:e2:ab:56:ed:d5:a4:fe:f7:6d:61:53:
81:7f:a1:d8:24:e9:bd:88:ff:68:00:ca:75:0a:03:
9b:98:4d:15:4b:1b:6f:c9:c3:61:bb:48:0a:df:d7:
0c:2d:02:6d:c8:41:08:ff:c8:d8:e4:ed:b2:60:10:
1b:b3:be:f1:6d:2d:44:96:41:55:ab:d5:36:10:8d:
3f:a0:a9:d1:8c:ac:60:f8:f2:c5:4f:2a:60:49:69:
8a:b0:6d:67:a0:f1:6e:73:9d:6d:87:ca:b2:92:98:
5f:26:06:fe:94:f9:c7:52:41:f5:2e:a1:7e:6d:24:
e2:24:f6:9c:c2:63:8e:7b:b1:22:3e:6a:39:69:41:
d1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5B:92:66:D2:D6:01:A7:0D:46:C8:2D:79:39:22:C3:E3:2D:F7:C9
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:26:d4:c2:9f:f1:38:d9:9d:33:ef:c0:9f:06:a1:82:f5:df:
8f:88:86:07:95:cf:c8:14:8e:90:26:e6:70:16:c2:23:9d:fd:
31:4c:da:ca:f3:16:06:53:32:ca:ae:ae:32:6f:99:94:eb:33:
2c:f8:04:79:fc:40:6f:c4:7a:a7:30:4f:40:85:f2:0f:41:1b:
a5:ac:d6:4a:4c:5b:d9:fc:8e:14:c2:63:3c:c2:df:81:1c:aa:
2d:a0:f7:4b:f4:5a:42:ab:8f:44:f3:12:f4:59:58:82:00:eb:
01:35:a0:28:b9:c7:b4:3a:fa:f1:fd:bc:4b:d0:b5:ee:13:c5:
44:de:d2:f5:8a:05:5c:be:a5:a4:2e:fe:ec:45:bb:fd:51:27:
99:5a:41:95:be:c8:19:65:dd:ce:6d:73:5d:07:c5:07:59:c5:
e3:62:58:5b:8a:b9:4e:81:84:80:45:f2:be:c5:08:e1:05:aa:
76:fc:03:42:a8:0c:db:37:48:41:0c:27:97:cb:0f:c1:94:01:
14:10:34:92:f2:5c:c0:6f:a5:de:79:10:96:ed:5d:03:fc:f0:
fd:ff:1a:0b:91:95:a2:32:17:e3:f1:df:89:cf:14:50:2e:9c:
ac:52:38:3e:a6:77:c1:3e:f3:38:10:3d:bd:38:ac:85:07:a5:
30:b6:1d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:10:49 2026 by rpki-client