Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: 2XE/IrcahUftlZk3x0jQluY3gpqwe4L06ZI509aXVU8=
Subject key identifier: 5F:ED:DA:79:A5:84:36:1B:92:71:92:5F:20:7B:39:AD:2A:DC:F1:6A
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019D2C2A9F39F4A1C773FDE25E8FCC7A6714
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0651
Signing time: Thu 26 Mar 2026 22:01:23 +0000
Manifest this update: Thu 26 Mar 2026 22:01:23 +0000
Manifest next update: Fri 27 Mar 2026 22:01:23 +0000
Files and hashes: 1: A_-FW985zbY15HsoQHY3jzaLsqE.roa (hash: eSJY0BewKa72GIdMnrs7+2x+KiKuirCjSmv68OLB6u4=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: /v6G6p4IdtWIxonVX5h1cUJUkY2Jg6+QxCrX9leN9sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:2a:9f:39:f4:a1:c7:73:fd:e2:5e:8f:cc:7a:67:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Mar 26 22:01:23 2026 GMT
Not After : Mar 27 22:01:23 2026 GMT
Subject: CN=5fedda79a584361b9271925f207b39ad2adcf16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:6d:bf:49:b8:cf:c4:29:89:78:a7:18:a0:
68:3b:d0:c4:ee:73:94:c0:2a:a1:ae:29:b6:0b:8f:
cc:fb:40:f9:b3:9b:21:7f:de:ea:8a:b4:9a:01:fc:
eb:67:24:85:30:18:97:0c:9e:a4:8b:ff:64:0c:a1:
23:4c:34:fe:e5:cf:8a:b4:4d:25:b8:20:13:97:50:
83:c1:c9:df:38:c1:41:a7:a8:1b:e1:29:2f:6b:7c:
4e:5c:f7:a5:00:72:b6:e3:06:a8:6f:2f:8b:14:55:
fb:de:a9:4f:7e:4e:42:f7:f8:bf:55:d2:1c:a5:e8:
3c:a6:74:e1:50:f9:ad:1c:52:2b:a5:1f:36:11:fd:
42:43:2b:85:8a:9e:80:83:24:81:a4:d8:e9:68:ac:
dc:16:ef:00:2b:aa:75:e3:11:98:62:8f:26:78:30:
12:c0:14:2c:1c:b1:ba:74:02:21:bc:4d:1f:10:6d:
92:7c:72:82:5e:66:06:cc:42:81:05:ed:ea:0a:c3:
91:1f:fe:27:ae:30:c8:04:a9:31:2c:ad:0a:d4:72:
af:97:04:3c:a6:33:e8:aa:42:90:3a:fc:f9:6c:58:
68:91:7c:56:56:08:b9:0b:3d:08:a0:28:2e:17:28:
5c:c7:5a:05:3a:02:b7:e1:70:a1:74:1f:06:22:3a:
3f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:ED:DA:79:A5:84:36:1B:92:71:92:5F:20:7B:39:AD:2A:DC:F1:6A
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:78:93:05:90:97:9e:4e:e3:b6:5c:e3:ff:9d:60:ac:59:ea:
8b:a0:2f:0f:ad:89:bb:47:7c:a2:e3:02:dd:d2:63:95:47:0a:
c8:f5:8f:c4:45:7e:3e:2f:60:08:38:67:de:bd:46:32:07:35:
a8:4d:7e:19:75:5d:bf:e1:1d:70:42:64:95:0b:82:23:e3:45:
f5:c3:83:99:08:3a:81:fa:fd:b1:c9:48:1f:07:7e:64:36:56:
87:1d:aa:2c:a8:50:75:fe:4d:25:a6:54:fb:b6:28:2c:1a:35:
b1:68:da:b9:52:1a:5c:42:46:2d:93:6a:37:05:d3:96:bb:f4:
00:13:a5:e7:1c:cb:1a:1f:c2:87:90:e9:43:cb:e5:26:c8:82:
da:c3:ed:a9:b1:fc:11:29:dd:99:68:31:59:f0:f0:47:80:3b:
71:97:92:6f:b4:24:30:cc:99:b0:86:83:8d:b0:81:9e:15:37:
cb:30:bb:3b:80:8c:dc:5a:eb:e0:b0:8e:20:68:02:54:86:92:
52:6e:cf:86:fd:8e:cc:53:a7:16:1f:68:31:09:84:ba:5b:89:
3d:a1:33:98:df:c9:38:4d:54:d4:e4:94:3b:f3:b2:b8:b2:10:
6b:f0:30:2e:0b:fa:16:6f:06:5e:5e:ab:d9:f1:59:ad:51:d6:
37:43:02:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 05:20:44 2026 by rpki-client