Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
File: HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft (raw, json)
Hash identifier: xLF1dI9AprDcgcfmEB88VO66q1EGLUY51ggrbqlugpM=
Subject key identifier: 53:25:A3:75:8A:C7:51:D7:78:3A:86:0F:C1:16:9E:0A:14:12:D2:B9
Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255
Certificate serial: 019D258424C242CFD92F63C4679BBE0B244B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
Manifest number: 0E32
Signing time: Wed 25 Mar 2026 15:01:50 +0000
Manifest this update: Wed 25 Mar 2026 15:01:50 +0000
Manifest next update: Thu 26 Mar 2026 15:01:50 +0000
Files and hashes: 1: 9LdPykNZeXV9TgPfmM-EGl7Gtyg.roa (hash: A15KaO5jS+sOax5wrVIE6LFbgUntOJ9pEvZQVObAuXI=)
2: CrcpLmJ84yQmAm5rRisNfFSLOxo.roa (hash: 9YMbM0zSHIdNV6iTUAZlLpno7hi9RZRYkPuNQ/IQ8Rg=)
3: HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl (hash: el04i8Z7ROftbcc7ovuTAYXKqiLoppbSPyA/V/rmFbg=)
4: KLpxcziAIHIxQSEYpd_o6PvM4vE.roa (hash: itbhxLzSGakvliHpbibpLq6gl91E3V9yH4QUfsh7/Gk=)
5: Sgc_Gnaj8DBJHADUAweAsgC-9Hs.roa (hash: SsfE892wv31doCM1yCrfDrfn/qQfmDFe4kz7AyxvqoI=)
6: TA_UQQnUzcyb4z4VNBXIFoSiKOQ.roa (hash: 5coZuaEZYCG1SDhEG5622pcijd3TmgMAYuwLwdnG3Xk=)
7: ThxZ_zz0qI-5X_9-MC23lXGeW4c.roa (hash: v+wF6wFf27Ypcfgbcy3yS1RY4Bsxs0fkYYHyrIRuiQE=)
8: rT_Kt6pwMc_Vos1dQ4JEbXZXE6Y.roa (hash: MbMjgVirW/O9r5VhnuSLEFmJXnKto2qtS9XCt9qnLmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:84:24:c2:42:cf:d9:2f:63:c4:67:9b:be:0b:24:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255
Validity
Not Before: Mar 25 15:01:50 2026 GMT
Not After : Mar 26 15:01:50 2026 GMT
Subject: CN=5325a3758ac751d7783a860fc1169e0a1412d2b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e6:93:43:59:12:f4:68:02:fa:3f:eb:b2:0e:
7e:8b:f6:90:a5:4f:63:7b:f9:da:02:08:53:25:cd:
6b:98:1e:06:c0:5b:04:49:18:14:21:50:24:1a:0e:
85:4c:e6:bb:b0:18:d1:e6:08:ed:c2:e8:4d:a5:6b:
84:d4:59:c6:b7:6b:8c:f9:57:1d:23:6c:c1:3b:a3:
a0:d7:15:99:d9:47:36:2d:39:b7:8d:fe:8f:94:2d:
84:a8:76:96:03:33:eb:db:f7:99:73:1a:70:7b:8b:
f3:8a:28:3f:3e:48:10:ec:8a:46:84:ed:9c:c6:54:
19:ab:7a:99:c2:6a:41:fe:e6:d8:cd:01:e9:9e:44:
56:a4:95:45:f1:1a:51:5f:17:15:57:75:23:45:3d:
d1:30:95:14:0f:58:8a:b0:44:49:f0:b6:bf:3b:08:
fa:d0:b8:46:f5:b8:21:0a:00:cf:48:88:88:e2:e9:
f4:ab:b3:3f:2f:f8:52:f7:6d:6d:18:ab:6a:08:3f:
b8:29:e8:00:31:09:94:26:84:e1:72:49:ef:92:2e:
f1:2b:3b:2d:69:a2:d1:7b:b7:a7:2a:ab:c8:53:67:
09:e1:2a:84:c0:88:e9:2a:1c:1e:2c:d9:ec:ae:80:
62:3d:fd:ec:5c:31:0b:02:4a:0c:39:83:1e:53:ea:
1b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:25:A3:75:8A:C7:51:D7:78:3A:86:0F:C1:16:9E:0A:14:12:D2:B9
X509v3 Authority Key Identifier:
keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:fb:33:ff:e9:77:9d:56:02:2d:18:38:83:21:6d:83:e4:6e:
ce:7b:8a:4b:f4:68:3e:4d:6c:a7:a3:20:2b:c1:0b:9a:08:ea:
4f:be:3e:c5:6e:13:a5:b4:e3:f2:40:a0:d4:6b:db:08:b0:6f:
b0:0d:2c:fa:cd:12:14:71:f4:74:61:58:ba:69:00:36:0c:fc:
c9:fd:20:8a:f6:dd:1b:56:e1:bd:be:4e:e5:bc:45:64:b3:b0:
0a:1a:a9:2a:d8:b3:b1:4b:0b:a9:f1:96:0e:13:8d:f4:28:a8:
58:6d:1c:00:d5:ae:56:84:ec:48:d6:cf:8a:3c:f2:aa:f5:bc:
d2:e7:81:ed:6e:30:a9:57:bb:0b:b7:a7:ca:13:a9:2f:a9:ba:
04:e3:05:a6:b0:3e:14:13:e7:f3:e0:e9:3b:61:2e:c6:d2:98:
49:59:57:12:ea:18:c3:4b:51:48:24:4c:2c:9c:2a:bc:e9:2d:
47:99:58:d5:73:18:0c:90:7b:61:ca:ac:88:26:4e:dd:c6:d7:
8c:a5:ab:ce:c7:9d:90:10:80:83:87:5d:02:6f:f3:e2:2a:12:
20:ec:2f:7a:e7:8b:9a:e9:e0:57:28:e5:78:88:dd:ba:fe:36:
3f:a5:d3:a6:b9:60:eb:96:a9:15:e5:5f:2c:7f:22:80:a9:94:
29:1a:57:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:40 2026 by rpki-client