Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json)
Hash identifier: fhZ7/fs+tIFU9A5q9XqiFaIOpgO5eSMxoK9ly3VNGVI=
Subject key identifier: CA:54:17:7F:F2:11:49:55:79:A5:D9:F0:9A:4C:5C:05:A3:C0:1C:31
Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Certificate serial: 019E20918C610E6099A21952942EDDEAF138
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
Manifest number: 013C
Signing time: Wed 13 May 2026 09:01:10 +0000
Manifest this update: Wed 13 May 2026 09:01:10 +0000
Manifest next update: Thu 14 May 2026 09:01:10 +0000
Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=)
2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: srPgbq8/qPPXWc85cfoDnQm20YRYX2jg7wAmKYmCJ0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:8c:61:0e:60:99:a2:19:52:94:2e:dd:ea:f1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Validity
Not Before: May 13 09:01:10 2026 GMT
Not After : May 14 09:01:10 2026 GMT
Subject: CN=ca54177ff211495579a5d9f09a4c5c05a3c01c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:52:04:04:d1:51:dc:f3:30:d7:bf:5a:6d:99:
80:8e:77:63:35:1b:1a:fd:28:0e:dc:00:87:49:84:
9c:8d:2f:0e:2e:aa:11:5b:2d:53:48:cf:95:62:26:
a5:00:55:58:f9:41:7b:94:4e:c8:b5:d3:03:00:ec:
7c:74:35:49:7c:1d:60:21:67:06:95:f5:bb:29:f5:
66:ab:92:b9:bf:90:72:2b:53:5c:1e:68:e5:3a:5f:
5b:6b:8e:5a:cb:61:11:dc:b4:d3:f7:f8:56:d0:bd:
ee:f5:97:cc:d6:82:71:a4:09:10:a4:41:e7:4b:cf:
53:1c:f7:5d:b8:62:cf:0d:62:ce:b9:c8:16:8a:1f:
ab:8a:a0:cd:70:76:46:a9:2d:f6:cc:cf:af:00:a7:
66:84:88:0b:79:01:9e:69:19:ad:2f:d1:7e:f7:bc:
27:92:fa:9c:e7:9b:e8:16:8c:51:97:24:aa:14:d6:
7d:d0:bc:ea:27:30:70:61:bc:0e:22:30:5a:e6:38:
4b:96:fb:fd:4c:68:3e:fe:76:73:d0:8e:12:d1:56:
ae:bd:b4:d7:a2:9b:8c:0f:71:f4:80:9e:15:ad:64:
96:69:9f:7a:7d:cf:8a:af:2d:73:26:62:8c:a5:c0:
2b:33:2d:f8:bb:89:42:8f:71:ab:d9:e2:8e:0d:ac:
f6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:54:17:7F:F2:11:49:55:79:A5:D9:F0:9A:4C:5C:05:A3:C0:1C:31
X509v3 Authority Key Identifier:
keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:e7:32:d5:dd:e6:38:d5:bb:d9:02:07:c3:e1:4a:1b:29:f1:
fd:dc:b2:98:9e:95:a7:3a:5d:8c:22:ef:e3:92:99:5b:e2:fc:
49:ba:c0:d5:df:f2:98:33:ea:83:52:b6:55:b1:67:b3:5e:3f:
3c:43:2a:db:5d:c7:1d:f6:78:b3:87:42:99:a3:1d:10:d4:2d:
c4:75:11:ae:cc:5c:4b:be:6b:10:ce:8d:f2:dc:3e:da:d2:94:
87:11:d7:85:af:e0:2a:f3:f6:40:bd:8a:66:af:7c:4c:ec:a3:
21:74:6d:ba:38:76:07:64:72:a6:36:b8:89:36:34:48:5f:21:
ca:9f:71:7f:38:16:7f:c0:75:c3:61:3f:72:22:9b:67:e3:fd:
e5:8c:bd:6f:1e:7a:85:90:22:53:e9:59:65:da:67:87:b7:9c:
be:eb:07:17:7e:dd:b2:05:6a:b4:7c:4e:49:5a:bc:c7:38:4c:
c3:82:6b:43:d9:e7:79:3e:e9:d1:80:44:df:b3:4d:72:e5:90:
b4:c7:dc:82:41:d2:3d:4c:68:98:a6:74:1c:e6:65:c8:c8:1c:
08:12:6c:91:e8:af:d2:8f:94:e0:23:c2:af:bc:de:6f:61:ec:
df:03:16:7f:9b:fd:a7:b7:ec:1c:56:ab:21:79:06:9f:75:e8:
d6:cd:d6:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gkYxhDmCZohlSlC7d6vE4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MWU4ODIxZDAxYTk2ODhiOWVlN2FmMmFlYmI5NTljYmJl
ZDA3MmIwHhcNMjYwNTEzMDkwMTEwWhcNMjYwNTE0MDkwMTEwWjAzMTEwLwYDVQQD
EyhjYTU0MTc3ZmYyMTE0OTU1NzlhNWQ5ZjA5YTRjNWMwNWEzYzAxYzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFIEBNFR3PMw179abZmAjndjNRsa
/SgO3ACHSYScjS8OLqoRWy1TSM+VYialAFVY+UF7lE7ItdMDAOx8dDVJfB1gIWcG
lfW7KfVmq5K5v5ByK1NcHmjlOl9ba45ay2ER3LTT9/hW0L3u9ZfM1oJxpAkQpEHn
S89THPdduGLPDWLOucgWih+riqDNcHZGqS32zM+vAKdmhIgLeQGeaRmtL9F+97wn
kvqc55voFoxRlySqFNZ90LzqJzBwYbwOIjBa5jhLlvv9TGg+/nZz0I4S0VauvbTX
opuMD3H0gJ4VrWSWaZ96fc+Kry1zJmKMpcArMy34u4lCj3Gr2eKODaz2xQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpUF3/yEUlVeaXZ8JpMXAWjwBwxMB8GA1UdIwQY
MBaAFIQeiCHQGpaIue568q67lZy77QcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAt
YTEzMjM3NjEzNDU5LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAtYTEzMjM3NjEzNDU5
LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx+cy1d3m
ONW72QIHw+FKGynx/dyymJ6VpzpdjCLv45KZW+L8SbrA1d/ymDPqg1K2VbFns14/
PEMq213HHfZ4s4dCmaMdENQtxHURrsxcS75rEM6N8tw+2tKUhxHXha/gKvP2QL2K
Zq98TOyjIXRtujh2B2Rypja4iTY0SF8hyp9xfzgWf8B1w2E/ciKbZ+P95Yy9bx56
hZAiU+lZZdpnh7ecvusHF37dsgVqtHxOSVq8xzhMw4JrQ9nneT7p0YBE37NNcuWQ
tMfcgkHSPUxomKZ0HOZlyMgcCBJskeiv0o+U4CPCr7zeb2Hs3wMWf5v9p7fsHFar
IXkGn3Xo1s3WYg==
-----END CERTIFICATE-----
Generated at Wed May 13 15:15:47 2026 by rpki-client