Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json)
Hash identifier: qdsgNYnevOMZB/BBkpKXjaVPOqttnmgwapgTdQQMhQ4=
Subject key identifier: 95:56:CC:11:D6:42:2E:58:F5:92:E0:A7:E0:84:90:CA:54:FF:91:C4
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 019E209171303A8A5C7D1140D8841EE65F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
Manifest number: 0C41
Signing time: Wed 13 May 2026 09:01:02 +0000
Manifest this update: Wed 13 May 2026 09:01:02 +0000
Manifest next update: Thu 14 May 2026 09:01:02 +0000
Files and hashes: 1: 2k061tGHc03Ey0V3NX4-GnPnNBc.roa (hash: cqhlKMqnXJOJCr7N4xEDssiNgQoWfirNtnOj+DZf3Xk=)
2: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: 7VEKn03UYeSM66Y5FYz5aEu/1INw7ItXHg9fRsEN+FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:71:30:3a:8a:5c:7d:11:40:d8:84:1e:e6:5f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: May 13 09:01:02 2026 GMT
Not After : May 14 09:01:02 2026 GMT
Subject: CN=9556cc11d6422e58f592e0a7e08490ca54ff91c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:07:00:75:02:9b:f6:b5:29:59:0a:c1:3e:e3:
a8:40:0c:ba:50:50:b5:7a:a3:b4:5b:5a:4f:18:3a:
3e:8a:b6:fc:b5:b4:86:68:0b:a4:dd:61:f8:c8:77:
e6:45:57:51:0a:15:a4:c5:e3:69:8d:c3:d1:57:ff:
a8:1b:b3:06:4a:32:9c:77:f1:9b:9f:99:70:5e:14:
aa:09:fb:e7:a6:22:fb:6c:51:d0:25:96:81:02:42:
73:24:5b:e1:26:78:56:56:5f:c9:9b:71:69:cd:f4:
1f:89:19:da:81:05:d8:0b:27:2b:c3:78:00:9d:dc:
d8:d6:31:75:b2:9a:6e:4b:96:02:bb:23:98:ad:5c:
07:9d:ba:da:13:9c:2f:a0:5e:be:60:0c:28:2e:88:
46:51:90:e7:4f:1b:ea:61:8e:98:d1:5c:9f:59:df:
d1:e7:e4:63:3f:00:65:3c:2d:81:92:0b:43:14:f2:
d6:26:9a:eb:ed:90:f5:15:9d:74:91:ec:5d:71:a7:
79:f5:80:50:97:9a:d3:2f:07:3f:24:12:bf:50:ef:
dc:f2:1d:78:a9:75:fa:a7:ed:7a:d8:15:a4:14:43:
3a:f2:eb:93:1a:6d:1c:0f:f4:0a:a7:9b:09:17:eb:
44:ce:e9:01:1d:00:9f:89:35:19:9a:d9:03:35:66:
b9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:56:CC:11:D6:42:2E:58:F5:92:E0:A7:E0:84:90:CA:54:FF:91:C4
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:b1:9f:38:91:92:bc:c9:6b:6f:59:6c:63:6a:cc:42:85:a1:
73:2b:29:73:61:a1:dd:73:97:96:2f:53:4c:25:00:63:1c:02:
2e:7f:6b:26:f0:78:a0:1d:ca:45:b1:0e:81:c1:47:3c:79:b6:
7f:08:14:03:74:45:40:40:6e:49:25:aa:ec:02:a7:36:2d:0b:
f1:6d:d2:0e:2d:80:40:de:19:96:82:33:e9:27:ff:b4:05:07:
3e:bd:7b:55:1c:2a:3d:03:29:d3:4a:1f:c4:3a:ae:e8:54:8d:
6a:3e:04:00:d4:67:4c:79:f8:c5:12:d7:dd:e8:bb:14:92:15:
0d:99:03:d9:86:db:28:d8:8d:a1:cc:a0:82:c3:dc:5d:28:be:
74:cd:41:43:b5:91:29:a5:4d:07:73:10:4f:2f:93:e6:87:b9:
9d:48:b3:5a:ac:b1:5a:f1:b9:dc:7c:f7:97:cc:5a:e0:aa:3b:
c9:85:aa:4f:48:f5:97:2d:b7:c3:1b:4c:5a:ba:33:ac:8d:63:
68:88:a4:f8:93:6f:d5:b9:b5:1c:74:a3:e9:89:1b:e3:46:2b:
78:fd:aa:1c:2c:0b:d8:cb:c8:46:02:5a:0e:15:33:5f:77:73:
90:e1:d4:15:6c:90:3c:76:d6:1c:7d:d0:ee:bd:dd:50:27:9f:
ab:bb:a9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:45:51 2026 by rpki-client