Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
File: HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft (raw, json)
Hash identifier: MlYtmteoOtCQ/tbgNtqQxGImubBJf/3f8fovDPhzjZ4=
Subject key identifier: D9:E2:0A:91:FC:B8:C7:35:3F:76:37:55:66:14:E2:15:DC:33:AF:58
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 019E1CB469C4D2359A2222CD19F7532AEF50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
Manifest number: 0EB2
Signing time: Tue 12 May 2026 15:00:46 +0000
Manifest this update: Tue 12 May 2026 15:00:46 +0000
Manifest next update: Wed 13 May 2026 15:00:46 +0000
Files and hashes: 1: 9LdPykNZeXV9TgPfmM-EGl7Gtyg.roa (hash: A15KaO5jS+sOax5wrVIE6LFbgUntOJ9pEvZQVObAuXI=)
2: CrcpLmJ84yQmAm5rRisNfFSLOxo.roa (hash: 9YMbM0zSHIdNV6iTUAZlLpno7hi9RZRYkPuNQ/IQ8Rg=)
3: HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl (hash: Ge4HDDjqlaGrByqHQBe/3LmY/Ffnmr0GqXTyKPIOmjc=)
4: KLpxcziAIHIxQSEYpd_o6PvM4vE.roa (hash: itbhxLzSGakvliHpbibpLq6gl91E3V9yH4QUfsh7/Gk=)
5: Sgc_Gnaj8DBJHADUAweAsgC-9Hs.roa (hash: SsfE892wv31doCM1yCrfDrfn/qQfmDFe4kz7AyxvqoI=)
6: TA_UQQnUzcyb4z4VNBXIFoSiKOQ.roa (hash: 5coZuaEZYCG1SDhEG5622pcijd3TmgMAYuwLwdnG3Xk=)
7: ThxZ_zz0qI-5X_9-MC23lXGeW4c.roa (hash: v+wF6wFf27Ypcfgbcy3yS1RY4Bsxs0fkYYHyrIRuiQE=)
8: rT_Kt6pwMc_Vos1dQ4JEbXZXE6Y.roa (hash: MbMjgVirW/O9r5VhnuSLEFmJXnKto2qtS9XCt9qnLmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:69:c4:d2:35:9a:22:22:cd:19:f7:53:2a:ef:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: May 12 15:00:46 2026 GMT
Not After : May 13 15:00:46 2026 GMT
Subject: CN=d9e20a91fcb8c7353f7637556614e215dc33af58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:f0:26:ff:41:86:5b:a3:24:78:bf:57:07:
7f:b0:95:27:6d:e6:e0:99:57:35:d0:aa:34:23:31:
8a:06:d3:64:73:de:e4:72:d9:39:b1:bb:01:3e:08:
13:7a:c1:1f:c9:f5:aa:0a:b3:7d:fe:7c:42:81:9f:
d8:c7:8a:b6:4e:7e:a2:ac:3e:bb:d7:9b:ca:69:94:
1e:1c:fd:6e:9b:50:62:e3:51:f6:06:3f:79:d7:7e:
76:cb:70:1e:fe:5f:90:5e:86:a9:1f:2c:c7:02:c2:
f6:48:3b:eb:ae:0d:a6:5a:89:d5:21:45:af:9a:28:
20:59:de:f6:a5:0f:7d:f0:90:f5:46:bf:1c:77:18:
1b:12:72:af:20:f4:26:56:2d:13:d5:fc:60:a4:20:
70:5e:dc:f0:3c:5b:00:27:f8:eb:90:0d:7d:50:78:
63:b0:16:6f:ad:0c:28:42:ec:2e:0c:fd:e0:4f:b0:
29:9f:69:82:fe:79:d6:67:17:e8:6a:14:1f:9d:73:
04:b6:b3:02:37:15:12:d8:10:da:08:fa:a2:20:13:
23:a2:6a:84:08:38:5c:25:41:10:25:d6:7e:26:58:
74:c7:a1:93:2e:15:7f:b4:a1:f9:82:e6:48:27:ab:
75:23:f2:e6:f3:3f:4f:c0:bd:c6:59:57:7d:a7:7f:
2e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E2:0A:91:FC:B8:C7:35:3F:76:37:55:66:14:E2:15:DC:33:AF:58
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:11:49:e6:28:06:d4:98:52:f3:68:f5:c7:25:98:4a:75:0b:
f1:65:90:c1:53:b6:9a:79:67:22:32:22:b0:28:b1:9a:d3:6f:
e4:13:a0:78:4e:0c:3f:41:81:3f:fa:88:66:58:74:a3:e0:4c:
45:03:46:f0:66:9a:47:4b:d9:cb:60:49:7c:b6:25:e9:c2:89:
82:f7:fe:11:b3:f3:a6:fd:68:78:45:7e:26:db:75:7e:5e:0a:
50:a8:e4:3d:e9:13:05:b4:7b:ab:d5:cb:44:c0:ca:a3:d3:93:
39:01:9b:12:22:64:0f:16:93:c2:52:d8:22:3c:f9:17:a4:2f:
74:fa:59:7c:d6:f0:f2:10:ac:45:4b:0b:9f:79:90:aa:00:91:
6d:b5:94:ee:f9:85:39:2e:f8:67:28:d4:d4:28:d4:de:1d:e8:
14:ea:ab:7d:ab:f6:3e:48:be:a7:d4:92:b9:d8:29:d3:49:31:
c2:a1:a1:2d:fd:86:bf:30:69:a2:0b:4f:6e:d6:a7:01:28:92:
1e:52:ff:33:1d:16:4b:42:4c:31:c4:58:b1:f8:70:70:9e:99:
c9:ac:3a:d4:6e:1b:7d:f5:d6:8f:1c:0b:32:5a:87:a9:13:3d:
3d:05:62:f6:68:9c:67:60:fd:65:48:de:54:0c:ed:9d:ba:53:
13:9e:ec:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:19:02 2026 by rpki-client