Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
File: hZjLxOjf8YUkBKmSddIwpWERBV8.mft (raw, json)
Hash identifier: n/9h6OVERWxCRNCRbzZu3Fp2H7Xk5pyBB8+N0RzBzkI=
Subject key identifier: 6D:61:98:40:3A:E9:83:9F:4D:99:1E:91:28:8C:EC:96:A8:EC:82:EA
Authority key identifier: 85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
Certificate issuer: /CN=8598cbc4e8dff1852404a99275d230a56111055f
Certificate serial: 019E1F7F38FCD5555B7B1C051431CD35F81C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
Manifest number: 0956
Signing time: Wed 13 May 2026 04:01:31 +0000
Manifest this update: Wed 13 May 2026 04:01:31 +0000
Manifest next update: Thu 14 May 2026 04:01:31 +0000
Files and hashes: 1: 6Zls-m6M9cBINWFd4w7uZTmGtY8.roa (hash: G1IdsClkRwxJrpDcDQsqLk4FP+v4Gfd2cicmc4XSPyc=)
2: hZjLxOjf8YUkBKmSddIwpWERBV8.crl (hash: DTrIePXN+7lOMbqzypSQz6l/8p7YoRLxguDlz0OUpIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:38:fc:d5:55:5b:7b:1c:05:14:31:cd:35:f8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8598cbc4e8dff1852404a99275d230a56111055f
Validity
Not Before: May 13 04:01:31 2026 GMT
Not After : May 14 04:01:31 2026 GMT
Subject: CN=6d6198403ae9839f4d991e91288cec96a8ec82ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9d:c3:91:62:d5:54:37:43:e4:42:c9:72:25:
c3:54:cf:14:90:5e:b7:88:98:46:0d:91:67:dc:cb:
90:1a:8b:f2:b8:97:96:a8:3e:71:46:46:34:74:73:
26:f1:cb:86:63:c2:91:4a:90:98:5c:7c:ed:3d:ee:
ce:e8:9d:94:cf:40:e7:59:66:1a:ff:54:fb:e9:f7:
9b:be:71:2d:9f:d5:1b:61:27:c8:bc:5d:0f:31:5c:
ea:1f:82:6d:b3:32:d5:c7:bd:90:18:f6:96:4f:97:
8b:68:4a:74:ee:94:ef:a6:39:92:a4:3e:ab:1e:9d:
cd:0c:3b:c2:fb:a6:5d:89:5c:29:6e:b6:a7:d4:a2:
d4:36:cf:ad:73:26:4b:6c:3f:b0:b0:8f:e0:fb:8f:
14:f1:d2:38:55:46:e8:51:b6:fa:d5:fd:02:2b:09:
50:6c:9d:f6:64:c2:e8:44:d6:b1:cb:30:19:85:c8:
a7:fb:74:c3:3e:4c:38:5b:e4:9f:b0:eb:2f:6e:c4:
57:16:92:bc:10:66:0b:23:49:51:c9:6a:98:3d:92:
19:2a:c2:d1:ad:98:76:70:91:b1:8b:60:6d:f7:52:
5b:46:34:7a:74:3c:48:8c:e8:fe:cb:f5:59:60:f4:
bd:be:dd:f4:19:83:fa:6d:f6:5a:90:f9:a9:79:3a:
99:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:61:98:40:3A:E9:83:9F:4D:99:1E:91:28:8C:EC:96:A8:EC:82:EA
X509v3 Authority Key Identifier:
keyid:85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:3b:5a:c0:4c:2a:90:bd:50:f3:2c:ef:d9:62:86:cf:43:44:
34:71:1c:17:5c:22:76:2c:ab:f2:36:25:74:30:c5:5d:c1:da:
07:26:a2:41:21:a0:01:9a:3b:a4:4d:30:96:f9:f0:6a:a9:a4:
16:e4:ad:76:ab:43:70:9c:49:ee:0b:91:f8:d0:5f:ea:ac:7c:
3d:04:69:6e:e3:ac:17:15:b1:71:aa:ce:5c:19:d8:2a:11:87:
c1:4e:dd:a5:c4:da:09:36:ce:00:f3:b9:12:8e:89:72:34:50:
79:75:1c:29:55:6b:dd:cd:7e:56:ac:eb:1f:7f:53:32:87:40:
89:d7:d2:a7:9c:db:2f:4b:da:bd:d2:ee:c4:37:09:ad:19:9f:
2c:54:62:ae:4f:a3:27:cc:08:d0:06:68:fc:09:24:92:14:3f:
7c:36:27:45:ea:44:9c:f8:4a:c2:f8:77:1f:40:d1:07:24:90:
b6:72:8d:7f:09:61:4c:c3:62:c4:25:14:86:9f:b0:eb:d6:56:
09:28:b6:18:e7:ab:1a:d5:4e:3a:cd:16:d3:49:09:7a:43:67:
08:9e:3b:b5:60:d3:79:de:a1:1c:9f:ff:ba:c6:8a:42:c5:87:
38:6e:c4:0c:86:3b:88:96:64:c2:5c:3f:c5:0e:ea:f0:c6:72:
6c:36:b2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:17:01 2026 by rpki-client