Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json)
Hash identifier: 7XT2hqV+bclfDUQwrFqc94vYf0MVQNr/SR8Xzs4z67A=
Subject key identifier: CF:FE:78:A3:6F:2F:9D:22:4E:91:02:75:0B:61:3B:D0:41:0C:F5:1A
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 019E1F47984AB9FA6A0B2F736861F89034BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
Manifest number: 1540
Signing time: Wed 13 May 2026 03:00:46 +0000
Manifest this update: Wed 13 May 2026 03:00:46 +0000
Manifest next update: Thu 14 May 2026 03:00:46 +0000
Files and hashes: 1: EApMV8-N-zmao3CAo-NQpD3Lz2A.roa (hash: aR54mqSnxFgOPc79I9yN0jBUTDGkCFj+YEV/eOtu4c4=)
2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: h7w7uF92arN9s33JQXULOTfYKmriUYKpsuRaLa3uOK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:98:4a:b9:fa:6a:0b:2f:73:68:61:f8:90:34:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: May 13 03:00:46 2026 GMT
Not After : May 14 03:00:46 2026 GMT
Subject: CN=cffe78a36f2f9d224e9102750b613bd0410cf51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:56:78:8e:d2:61:aa:19:6b:5e:38:62:31:29:
28:04:20:d0:1e:22:db:d3:d4:13:b5:38:69:50:8e:
1c:ef:0e:6a:e4:2b:60:1f:4e:b6:3e:f2:ff:36:92:
74:6d:8d:b7:ee:17:5f:ac:b9:39:de:2c:e2:b7:82:
3b:50:b0:e3:33:60:ba:db:36:7b:be:46:82:04:1c:
4d:83:22:df:f3:40:7f:22:23:98:e5:d7:2b:54:8e:
41:22:18:22:9f:5f:20:87:89:71:f0:53:b7:fb:00:
0a:9e:df:84:ee:ba:f8:29:52:72:ce:6a:75:3c:c9:
dd:29:96:2d:70:c7:13:7d:17:23:24:5c:99:a0:78:
3e:8a:18:4c:80:f5:b3:02:23:25:cd:0b:27:15:f5:
ad:0f:70:70:e1:f1:c4:ad:43:aa:91:29:16:4b:8d:
2f:e5:1a:73:ec:44:4c:80:ab:36:5c:24:42:73:d8:
26:95:1b:e2:15:fb:c2:14:c4:2e:f7:96:e0:d1:93:
dd:e0:60:f2:33:05:f2:e0:f3:a3:ac:ab:ee:d3:b1:
bf:48:31:0b:b4:85:0e:07:41:7b:68:8f:17:7d:e9:
e0:01:44:5d:e5:1d:99:33:64:0e:33:81:82:4b:c0:
f4:53:9c:62:06:1b:bb:19:1b:a1:1d:f3:ed:9a:c9:
3b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FE:78:A3:6F:2F:9D:22:4E:91:02:75:0B:61:3B:D0:41:0C:F5:1A
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:49:04:6c:13:86:40:45:67:00:3d:5e:2d:fe:f1:b0:11:f9:
4d:f7:02:29:02:bc:24:7f:1f:eb:96:b3:d8:e0:b0:38:1b:34:
38:df:ad:dd:5c:80:46:4f:f8:f9:d6:e8:6f:93:fe:a1:d4:9f:
46:87:7b:97:cb:5b:db:14:8d:14:f7:57:7f:71:60:8f:4e:80:
c1:57:c3:e1:1c:00:64:ca:bc:6c:ef:01:a1:ab:14:5d:5c:25:
33:9a:43:2e:c2:34:be:45:28:7d:cc:8c:01:6e:5e:1a:79:88:
11:2a:0f:ba:37:ec:1b:4e:c4:a2:62:97:3c:f3:cf:5e:21:eb:
73:43:09:fb:80:4d:1d:c7:ce:ae:21:24:6b:85:f2:06:46:4c:
d0:b4:5b:ac:07:ed:d1:d8:4c:28:30:00:89:c3:3e:38:c0:3e:
d1:11:ba:ee:aa:76:6e:5b:2e:07:58:b5:ad:de:1b:dd:14:e4:
96:a5:7a:99:ee:0e:19:49:90:5a:98:8f:26:aa:5a:e1:6a:00:
32:54:52:ae:20:c8:a1:3e:6b:58:61:d5:7c:af:54:13:71:30:
8d:f5:b5:f8:b8:95:d7:ce:b0:3b:d5:f9:1b:38:d3:10:34:60:
db:b3:2b:8c:08:03:4c:c8:06:8f:b2:ee:1f:4c:9c:11:1d:0b:
51:90:21:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:03:09 2026 by rpki-client