Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
File: hZjLxOjf8YUkBKmSddIwpWERBV8.mft (raw, json)
Hash identifier: amrMG1GBXS/HaMbmxNTkGtdLXpweSYFkNyJf50mtyZo=
Subject key identifier: 5B:04:EC:52:B0:79:65:70:9D:FB:8F:2D:6F:29:61:AE:96:57:85:A6
Authority key identifier: 85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
Certificate issuer: /CN=8598cbc4e8dff1852404a99275d230a56111055f
Certificate serial: 019D265F1C784FB962FFAAEE2075CDA864B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
Manifest number: 08D5
Signing time: Wed 25 Mar 2026 19:01:00 +0000
Manifest this update: Wed 25 Mar 2026 19:01:00 +0000
Manifest next update: Thu 26 Mar 2026 19:01:00 +0000
Files and hashes: 1: 6Zls-m6M9cBINWFd4w7uZTmGtY8.roa (hash: G1IdsClkRwxJrpDcDQsqLk4FP+v4Gfd2cicmc4XSPyc=)
2: hZjLxOjf8YUkBKmSddIwpWERBV8.crl (hash: yagLQqH+5EI9YabvoP/A5qr577f1uH+2uWD31OXZins=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:1c:78:4f:b9:62:ff:aa:ee:20:75:cd:a8:64:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8598cbc4e8dff1852404a99275d230a56111055f
Validity
Not Before: Mar 25 19:01:00 2026 GMT
Not After : Mar 26 19:01:00 2026 GMT
Subject: CN=5b04ec52b07965709dfb8f2d6f2961ae965785a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ee:6f:9f:fa:52:51:fd:66:87:ff:84:36:32:
5e:28:6c:5c:67:a8:a6:7b:b0:35:46:13:fc:96:cf:
89:db:82:70:fc:12:ba:db:1d:e4:29:46:ba:c5:f2:
36:7b:7e:11:74:16:45:2b:20:25:93:7a:44:76:9e:
14:c0:47:86:3a:50:82:2f:64:8e:ad:79:28:db:c3:
b6:e5:c0:41:49:4c:0d:89:94:3e:8f:7c:19:7a:4d:
0f:77:da:b1:6a:7c:4f:25:3a:18:49:b0:41:b1:f4:
36:df:33:6c:9b:82:ca:e9:8a:36:94:e9:db:cf:c4:
07:39:57:db:fa:06:9d:d2:ff:09:ca:90:6f:2e:20:
fb:7c:ad:a0:6f:de:13:09:eb:8e:ae:e9:98:94:bc:
d1:38:6d:da:8d:53:ac:f1:c2:48:e0:c0:63:56:23:
fa:0f:bd:29:8b:24:6c:0b:d7:b1:6a:67:9d:8e:b4:
b5:4e:e6:3e:58:31:18:59:a6:e7:15:a0:7f:cb:20:
10:fc:03:96:bf:ae:b2:c7:c0:a4:37:53:cc:d3:97:
ab:b6:9f:8b:96:77:01:3b:30:2d:f5:60:de:c8:ab:
89:ef:a1:72:13:3c:ae:a9:3c:da:1d:c4:87:03:0a:
4f:88:9d:db:b6:cc:a9:9a:80:29:46:c1:0c:03:52:
a0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:04:EC:52:B0:79:65:70:9D:FB:8F:2D:6F:29:61:AE:96:57:85:A6
X509v3 Authority Key Identifier:
keyid:85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b2:77:cc:b5:a4:1e:ae:89:c1:45:e4:6f:cb:58:4d:6b:f2:
6a:73:0c:af:6a:c6:b4:15:3c:7f:8c:10:5f:21:c4:bc:9b:a1:
52:a6:a1:9d:ff:32:e9:54:72:94:6f:e6:8c:04:d1:83:6c:0e:
38:25:dc:df:58:5a:3c:93:3b:ea:a1:06:e5:4e:16:b8:4b:8a:
42:20:35:30:aa:7c:c5:ed:25:e4:69:00:c9:51:d3:e4:4b:06:
51:8b:ff:f7:a8:34:ea:21:d3:26:31:4a:93:17:26:7d:e1:2f:
16:76:86:90:3d:46:92:48:b0:6b:25:8b:0f:96:65:71:cf:da:
3b:38:fc:e9:bf:9e:f6:1e:3b:cd:44:44:44:66:91:b4:7e:61:
f1:b6:7a:59:45:be:12:05:94:f6:8e:e0:1c:06:e1:1a:88:84:
f6:f6:e1:fc:17:39:32:65:45:89:aa:93:3b:1c:89:a2:a5:8d:
2e:3a:5d:05:19:ce:d4:5c:97:47:b4:65:d3:35:05:2c:cc:99:
89:67:fd:f6:c2:fb:19:9e:6a:5b:da:db:47:4f:d0:fb:03:93:
f3:a6:45:db:4f:ef:49:cd:d5:4e:61:a6:67:a6:22:22:e8:13:
37:8a:0a:d4:22:c4:85:1e:6e:c2:db:37:2c:5e:c9:05:15:c8:
27:fd:96:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:59:14 2026 by rpki-client