Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: 59ZEEFtGGT8zW0sZyjiUm/n9N5aBs/Xgk6rhGDOfAdg=
Subject key identifier: CB:25:84:DE:21:94:01:79:3C:A1:CD:A8:E0:7F:1C:A8:00:E2:19:CA
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 019E1FB5A9A6DCAFB48AB01435B491B67F92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 102D
Signing time: Wed 13 May 2026 05:00:59 +0000
Manifest this update: Wed 13 May 2026 05:00:59 +0000
Manifest next update: Thu 14 May 2026 05:00:59 +0000
Files and hashes: 1: Mm3cGWuzg7gyTt25MrA_Cb8WYyU.roa (hash: QSO9mmv4K2NyhZinj8I/GzIYb/RrAcM6Y8mv7blhZ40=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: HlOFKSTrQVhKuPoK6GSyejtoXw/nV1gl2SMTqdYGY4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:a9:a6:dc:af:b4:8a:b0:14:35:b4:91:b6:7f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: May 13 05:00:59 2026 GMT
Not After : May 14 05:00:59 2026 GMT
Subject: CN=cb2584de219401793ca1cda8e07f1ca800e219ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5f:b8:ba:89:5f:fd:ca:c7:16:0a:19:b8:52:
a0:52:60:cf:93:0a:6e:94:56:8f:c6:d0:95:db:fc:
44:bb:ed:2a:b9:3a:4d:25:f9:59:b5:71:b5:28:d6:
d5:65:9b:3e:2c:9c:dc:b2:e7:b8:61:b3:b5:8e:f8:
ad:0c:77:c6:e8:9b:51:87:62:9d:8e:00:ac:42:fd:
68:9b:db:92:f3:df:fb:ec:67:11:bf:ea:bb:62:7b:
e5:67:e8:b3:56:5b:ba:33:50:71:83:e6:2d:87:bb:
1b:3e:c5:36:59:ed:57:bf:3a:65:35:b6:3e:b4:80:
07:3f:8b:b0:e9:d5:f7:3d:8d:43:fb:76:30:2d:de:
f3:f5:ed:39:9e:cc:22:b5:2d:ca:0e:7e:87:0c:40:
35:8a:fb:89:23:36:09:41:0b:5f:48:94:9a:c0:ad:
11:22:96:f3:97:80:4d:a0:b0:4d:80:a2:8f:01:f6:
79:70:15:11:c7:4b:ac:9b:1f:e4:16:1b:8e:fa:49:
b0:da:80:66:dc:34:4b:20:5d:ef:3a:60:14:ba:66:
6e:24:6f:c7:ee:da:ee:8a:20:7e:a4:d4:57:1a:c0:
b4:40:9b:9f:44:2a:d4:94:54:17:8e:a7:ab:6f:3b:
45:8e:4f:93:79:b5:36:e7:69:77:20:c6:cb:28:08:
19:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:25:84:DE:21:94:01:79:3C:A1:CD:A8:E0:7F:1C:A8:00:E2:19:CA
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ce:e7:1f:e8:b9:8c:44:ea:35:56:25:10:3e:4f:43:e3:55:
ca:75:d4:17:35:95:af:e9:ce:8b:9d:80:77:d7:9d:9c:61:89:
24:68:eb:0d:73:db:f2:6a:b2:57:42:cc:81:ba:93:b8:c7:a5:
b1:f6:ae:3a:bb:46:50:d7:62:f1:0e:1c:77:49:00:9e:5f:96:
97:d2:04:47:11:4e:f5:a1:1c:e4:14:62:54:14:93:72:e9:11:
cc:7a:dd:c1:c4:e8:ba:a0:e7:6f:00:2c:81:8e:99:13:fa:98:
55:d2:69:f0:6c:a1:52:ca:75:cb:b5:81:70:fa:7e:f4:7f:97:
52:b6:ba:60:b3:1b:c2:13:34:e9:85:fa:ee:fc:24:0a:3d:70:
53:51:e0:8a:f6:90:47:f1:13:5e:fa:99:22:33:8d:12:10:af:
35:cc:e0:5e:ad:fd:06:ed:77:7a:a5:9c:a2:86:f6:b5:f9:1f:
8b:0d:19:33:73:fc:47:96:f5:0b:9b:15:82:f1:6b:4c:ce:30:
d7:a4:6a:a4:43:96:86:e3:b3:5e:a8:a2:78:05:72:a8:9b:f3:
ef:18:c1:67:25:aa:31:0b:af:d9:49:fc:7e:29:67:e0:5e:32:
2f:c0:6a:dc:03:29:af:64:d1:36:74:78:10:5d:60:1f:46:b1:
c1:5f:26:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:42:33 2026 by rpki-client