Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: uFPK27diMl/LDyGtyycd9o+Cp3Uim1Ml/SJ/I6Q+1+Y=
Subject key identifier: 33:DA:92:FF:98:57:C7:D7:62:DF:83:DB:DE:84:8D:0A:53:BE:63:FD
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019E209182CC11B1FC108EE1AAE1DF806D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 051E
Signing time: Wed 13 May 2026 09:01:07 +0000
Manifest this update: Wed 13 May 2026 09:01:07 +0000
Manifest next update: Thu 14 May 2026 09:01:07 +0000
Files and hashes: 1: 1-eF7e7FBTv1kNZvAqKgKcchP_r8.roa (hash: NJzA8zp4PiibAViDgdZjRywfinrsmcRR8mpxvA7kUN8=)
2: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: D0vDdrRVFl+g1E5m+vgZBdOTgAo6AhIXiApumaoIS3U=)
3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:82:cc:11:b1:fc:10:8e:e1:aa:e1:df:80:6d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: May 13 09:01:07 2026 GMT
Not After : May 14 09:01:07 2026 GMT
Subject: CN=33da92ff9857c7d762df83dbde848d0a53be63fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:12:04:09:f7:45:f4:db:e1:ee:9e:2b:8b:63:
91:53:4e:a7:1a:a9:f7:00:96:b8:eb:b5:41:21:ae:
bd:22:25:f8:9f:b9:a8:0e:d3:25:22:ae:58:22:62:
0e:11:31:d9:b9:96:11:61:38:c0:8d:de:2d:16:6b:
74:35:a5:fd:e0:dd:48:2b:c0:9b:bd:7f:b6:65:c7:
62:93:05:af:d1:98:83:59:3d:23:a9:7f:bf:cc:7c:
e9:b6:fa:1e:a9:bc:f3:fd:a5:fc:24:07:79:1f:b5:
66:f4:7c:92:61:4e:3a:d7:1e:7c:c4:64:d1:36:e7:
76:05:70:a5:10:d4:f7:fb:5f:f1:5d:f8:13:c5:53:
10:d0:5b:ca:fd:91:7f:fa:cb:da:49:4c:ad:e4:ae:
b2:6d:e8:0b:d3:9b:2b:6e:74:c0:9d:de:6a:77:8d:
33:ab:d6:d2:fc:8f:e6:f4:06:8c:7f:23:27:c8:c7:
7f:84:d7:47:f4:04:2a:20:4b:a7:d2:39:5a:7b:b0:
e6:b0:6b:b5:db:6d:50:40:9b:2f:7e:dc:96:f7:e8:
78:16:2f:bf:d9:8b:43:12:a9:fe:37:2e:cc:29:09:
48:3e:07:e3:02:b3:1c:09:58:ba:0b:30:cb:4e:3f:
97:10:fa:91:b1:3a:e7:42:9e:88:ff:a4:6b:a0:e0:
d5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:92:FF:98:57:C7:D7:62:DF:83:DB:DE:84:8D:0A:53:BE:63:FD
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:1e:46:a7:14:15:2b:c5:0e:c0:12:5a:5b:2c:ea:b1:b3:6f:
d6:61:b9:7d:21:9f:50:02:e4:95:62:45:15:53:ac:69:45:0b:
a9:7d:90:c3:88:45:20:0f:bf:85:8e:e9:2d:35:d0:a3:82:99:
d4:06:a3:a1:8e:38:cc:28:65:19:81:32:2d:ee:dc:f7:40:c5:
b1:58:d0:cc:c5:78:ab:01:71:81:cc:b2:c8:6d:af:6a:05:df:
c7:25:60:10:e7:d2:01:f8:7a:d9:b3:ee:9f:94:db:f3:83:3c:
ea:ca:a1:84:eb:e9:ff:ff:28:0b:ed:db:1c:a5:cc:a8:c8:b5:
24:12:66:ce:42:8c:5e:39:b7:4d:79:a6:de:5d:6b:b8:e6:f3:
02:10:9b:7c:d2:d9:fb:d2:da:70:1a:92:47:99:4b:8e:5a:60:
16:15:8c:d9:f8:c1:47:10:48:73:ba:a5:7a:2c:fa:ef:c7:04:
2b:d4:74:17:22:d1:16:5c:c2:5d:b0:d0:1d:e6:78:25:58:c2:
67:82:38:89:db:c1:ef:85:6d:99:a0:33:75:f4:3a:53:57:ca:
09:1d:a8:ef:8b:e7:40:83:82:7f:b2:ff:11:fe:83:e9:78:26:
58:27:0f:ad:8b:58:00:33:94:5c:e1:8b:ea:b1:fa:4e:34:80:
62:d1:76:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:59:47 2026 by rpki-client