Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: KSnRnx6bIxoOyaUjOneXMe0I/FXwobeNFEN2hUjR5So=
Subject key identifier: 95:5A:8A:83:24:43:03:DA:A2:FD:3C:01:6F:06:A9:C2:8C:26:A0:25
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 019E202456D951226E32FB472DF0D6CE5CD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 14B4
Signing time: Wed 13 May 2026 07:01:52 +0000
Manifest this update: Wed 13 May 2026 07:01:52 +0000
Manifest next update: Thu 14 May 2026 07:01:52 +0000
Files and hashes: 1: R833NOdXTD2aQWG3JavzKd06mys.roa (hash: fWZj94n90bNsji3CFK3WkNid37wFqWD8C1Qx/wwtaQQ=)
2: ZmLewUIWz9_zdShetR7Jdzl8lfo.roa (hash: fPaCPLobKeVWk/RzinoeDdlx4MxMtKzniHguRoc5v/k=)
3: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: qT9EzUKSm2AVY2cpz+ZQPIKloADTMWhuxDrBn3j38oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:56:d9:51:22:6e:32:fb:47:2d:f0:d6:ce:5c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: May 13 07:01:52 2026 GMT
Not After : May 14 07:01:52 2026 GMT
Subject: CN=955a8a83244303daa2fd3c016f06a9c28c26a025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:40:91:44:7e:1a:3b:5c:9f:0a:79:9f:cf:a4:
39:c2:92:a5:ef:59:85:9e:4b:95:0d:b5:c0:f0:41:
17:55:44:93:de:b6:59:47:c0:5e:ae:d4:eb:38:0f:
e9:f4:09:6d:62:94:39:0b:c3:44:88:e7:2b:90:e0:
67:1e:7c:92:ff:b5:91:f6:52:e9:d9:e5:9b:65:46:
27:e7:bb:eb:c8:18:3b:74:6d:e4:70:e8:87:42:eb:
7f:17:61:43:e9:82:c4:af:7e:c3:6c:e7:9c:82:ee:
47:13:0d:46:6a:46:ad:37:64:be:fe:79:2b:85:81:
3d:e0:c7:2f:64:0c:99:af:ca:83:87:c9:15:ac:be:
3f:ea:0a:f6:69:d0:62:d3:dc:e0:8e:3e:5d:fa:30:
f9:e7:4e:b6:86:fa:d3:e2:4c:b3:31:2e:6a:67:e6:
17:78:57:34:ff:4e:a6:3e:8f:5f:f5:44:b7:18:0b:
04:e7:48:9f:82:c4:cc:b0:df:b8:ce:7e:48:dc:df:
a3:03:b8:af:18:6f:61:10:c6:00:f5:93:78:81:54:
6b:92:1b:03:6d:ae:94:93:1d:39:0a:19:c0:2e:5b:
1a:81:e0:19:d7:8c:ea:b3:d6:a3:ce:ab:f5:b7:9c:
cb:68:c6:cb:d7:4c:c4:30:8a:b5:76:f7:a8:e0:39:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5A:8A:83:24:43:03:DA:A2:FD:3C:01:6F:06:A9:C2:8C:26:A0:25
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:7d:4d:49:e2:c6:49:06:64:8c:82:21:65:22:0b:6c:d7:ff:
be:d0:c1:80:e5:12:b3:1f:98:df:cd:21:d2:bc:b6:6f:37:c7:
b6:17:40:ef:d9:6d:a4:51:17:9a:a4:db:42:7e:20:af:8f:15:
5d:c1:c1:02:b1:a0:b7:b6:44:09:d0:18:e9:83:94:34:f0:0f:
c1:56:30:e3:9c:c9:c5:b4:2a:7b:9f:71:3c:a6:0d:5d:ab:a6:
e0:34:94:07:b6:78:c7:e4:80:c0:e7:cb:8d:35:86:dd:5f:fe:
9e:41:86:05:6f:42:66:1b:1e:4f:b3:d1:cf:39:19:d8:97:c0:
d0:5e:93:a6:a8:64:1f:56:22:ea:96:05:b8:17:80:2c:f9:ee:
95:57:36:f8:6c:d8:d7:b1:ad:40:e5:13:4e:e2:a2:a1:0e:95:
51:39:77:de:06:0c:e6:a2:3c:29:93:5b:d5:ff:6b:a0:91:c5:
25:b5:47:42:7f:40:ba:5e:83:a2:51:8c:d1:31:01:22:d9:18:
ae:ce:39:b0:2e:41:78:df:42:0f:08:26:f5:1b:9d:f2:f0:70:
9a:25:09:60:48:2f:32:af:6f:ad:2b:b0:ea:89:4d:93:9d:d1:
be:5f:f0:3e:db:44:ab:f8:93:0a:9a:f4:13:b3:e6:a3:3f:42:
f8:86:34:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:20:25 2026 by rpki-client