Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: HO06m+p+64aSGukhL4DO5XjCktRWojd83vLY3HEgPg4=
Subject key identifier: 36:31:09:1F:91:75:80:7C:22:BE:88:F3:6F:4E:8A:9E:21:C4:94:57
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019E1F7EC500C25C015A916B5F9132493DD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 06CF
Signing time: Wed 13 May 2026 04:01:02 +0000
Manifest this update: Wed 13 May 2026 04:01:02 +0000
Manifest next update: Thu 14 May 2026 04:01:02 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: Xhq7WoaCEOfwwScRrQUYE471+TLr7GEMwNrcJG5OgJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:c5:00:c2:5c:01:5a:91:6b:5f:91:32:49:3d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: May 13 04:01:02 2026 GMT
Not After : May 14 04:01:02 2026 GMT
Subject: CN=3631091f9175807c22be88f36f4e8a9e21c49457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:c6:fa:78:61:85:26:6f:3e:e2:d3:ff:da:
e4:a5:b7:03:59:09:95:45:ae:3e:02:ad:d0:5a:1a:
2b:0d:a5:2c:af:08:05:a4:ee:db:41:75:19:f6:39:
e9:66:29:8c:47:0d:3a:37:d1:35:36:50:64:93:c2:
fe:ee:d3:3f:95:eb:38:11:96:58:7b:29:c1:41:63:
2a:ea:76:8d:6b:4a:73:1d:93:a0:21:5a:29:4e:86:
62:09:69:d2:d5:01:9a:00:5b:d1:2c:b6:5f:d7:78:
20:5d:e2:25:8e:b5:73:74:16:12:fb:e8:43:3f:8c:
c7:cf:2e:67:dd:bf:59:5f:07:0a:bb:7d:e4:ce:60:
17:6a:5c:20:f9:d9:66:80:1f:62:f7:7f:69:31:96:
ec:79:58:58:eb:55:58:57:d1:2a:9f:8f:8b:d8:f3:
3c:47:53:e1:d3:83:e9:cd:41:33:1a:90:25:9c:e1:
fb:60:49:ca:62:85:ba:0f:16:80:6c:27:26:3c:38:
87:4e:92:f9:2f:ee:d6:fa:0d:d6:01:36:ef:a3:b6:
12:34:11:93:7d:5f:64:a2:f5:b2:77:7c:8c:93:6d:
dc:e8:54:4a:70:27:c7:24:d4:ed:92:98:4a:29:21:
dd:1b:d7:09:a3:3a:a3:74:a9:0e:ef:b1:70:78:4f:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:31:09:1F:91:75:80:7C:22:BE:88:F3:6F:4E:8A:9E:21:C4:94:57
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:78:0f:2a:ee:f7:95:93:4b:07:03:e3:e8:00:40:06:3b:5b:
d9:3b:de:87:27:f3:b8:3b:31:81:22:37:55:89:b2:89:17:d4:
b5:58:e0:ad:4d:e1:cf:47:3b:29:67:0f:e3:18:25:65:8b:f0:
c3:59:b3:c8:fe:60:44:94:63:a0:3a:0e:27:f9:56:af:82:f0:
e2:ca:88:e5:14:ee:08:4d:c3:ff:47:5f:31:96:dd:b3:95:aa:
66:5d:2b:c8:5b:69:8e:8f:50:28:3f:39:55:35:1d:e8:1f:4a:
a8:2d:a9:9b:9a:f4:c5:75:ca:6c:23:d4:77:50:30:c2:c3:ba:
3e:3e:1d:ae:50:64:91:74:d6:54:1f:01:7d:d2:60:ad:5e:3f:
67:3d:41:a5:16:37:39:a9:52:b9:67:0f:3d:b0:b2:5b:60:55:
57:c7:7a:41:fc:ce:ce:e3:3b:57:fa:dd:63:07:ae:ef:7d:74:
0a:59:82:f0:be:65:87:d0:4e:01:03:7d:5c:37:0e:c5:db:c4:
62:56:2e:4e:88:43:7d:d1:66:a7:c1:32:0c:93:4e:00:7b:fb:
1f:b0:5c:29:d1:e2:51:6d:36:a6:5d:10:07:d4:33:6b:1a:f0:
1e:e2:9e:e8:e6:7b:1c:45:03:91:72:22:38:82:4c:a4:da:04:
79:2b:a6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:47:54 2026 by rpki-client