Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: d1l3wFU3lPcLN6iPkhCgEWvNnKxlYHaP37MD62+Q7xY=
Subject key identifier: D9:50:C8:EB:25:5F:B3:68:83:17:CC:71:78:D1:89:72:A2:CA:B2:A0
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 019E1F47F37328A03AAB28F661ACD9DC1F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 133B
Signing time: Wed 13 May 2026 03:01:09 +0000
Manifest this update: Wed 13 May 2026 03:01:09 +0000
Manifest next update: Thu 14 May 2026 03:01:09 +0000
Files and hashes: 1: Kj0HsXicjlUn-679OFq2n6YXriA.roa (hash: oCViwBHC3VWx+KMwr83UJNJcJLGK68aAWyXoMhEGcUQ=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: wdD2XF5Fgtn06b+1EDyrAWFvgJAz7ePDx4ekqO7AXQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:f3:73:28:a0:3a:ab:28:f6:61:ac:d9:dc:1f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: May 13 03:01:09 2026 GMT
Not After : May 14 03:01:09 2026 GMT
Subject: CN=d950c8eb255fb3688317cc7178d18972a2cab2a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:59:ad:d2:65:b3:69:1d:b5:20:97:c4:a4:44:
a6:b4:8f:4e:1c:2e:12:31:5e:ef:2c:e7:82:35:3a:
e0:cd:f4:aa:52:74:da:e0:8e:bb:74:59:06:1d:35:
1e:d5:0e:cd:37:93:5c:1c:bb:aa:ce:81:91:6f:aa:
ce:bf:d1:8e:90:97:1b:8d:ec:34:dd:e4:b2:99:a2:
66:07:2b:be:db:59:1d:4d:4c:15:62:09:e1:d8:06:
46:8c:a8:d9:56:2c:1e:18:13:fa:b5:04:9c:2b:21:
2c:72:9c:53:c6:ac:c5:d0:95:9e:b6:ca:5b:59:4d:
fc:16:a5:6a:48:c9:3f:c1:bf:7d:5b:05:e4:22:a0:
76:9c:7e:09:cb:b2:cb:9e:55:65:50:1b:a3:ea:7c:
b1:47:9e:a5:cf:41:7d:ed:4c:53:97:fa:3d:41:5f:
e7:15:73:bb:08:81:43:b4:4a:d6:2e:a4:2f:66:90:
b6:ae:ff:e8:4b:95:96:99:6e:a3:fe:05:68:32:f6:
f3:75:1d:1c:01:af:5f:df:da:fa:67:e0:63:44:bb:
aa:f3:cc:29:a3:30:bb:f1:cf:c0:fb:e2:b5:9f:4c:
e9:56:0b:f7:6d:dc:69:c3:65:27:0a:41:d7:ea:66:
45:6e:48:f6:4f:7e:47:cb:38:92:18:d0:74:da:b0:
32:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:50:C8:EB:25:5F:B3:68:83:17:CC:71:78:D1:89:72:A2:CA:B2:A0
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:dc:1d:e8:2d:12:28:6f:f9:38:7c:1a:cd:bb:91:b3:c4:d8:
86:bc:3b:05:c6:b2:07:08:08:59:4d:88:f6:22:63:7e:5c:44:
72:33:37:5c:63:85:28:56:f1:e0:64:61:8a:e0:ea:ce:45:ea:
a2:38:b8:26:07:f8:ac:07:cd:84:f4:e9:c1:c4:9e:af:1e:f6:
9c:3a:03:b6:a5:d4:aa:80:f7:d0:1f:8b:69:10:7d:24:36:ca:
22:bf:51:bc:07:91:a3:e6:a5:5f:2d:ac:dc:fd:03:da:d8:e5:
61:1a:02:51:23:55:a5:2b:6e:1d:78:1d:06:d9:a9:c6:94:73:
d8:4c:b2:1b:0f:5b:b9:84:8e:f5:58:61:eb:f7:3a:4f:61:b7:
f4:08:6f:de:e6:d1:92:f0:a9:15:57:c4:13:e4:10:69:1e:af:
5b:71:2e:01:98:1d:8f:7f:20:86:41:2e:bf:91:25:48:99:3c:
58:4d:0b:87:a4:60:77:b0:ba:7e:87:df:dd:93:15:95:91:aa:
d5:1f:f2:3c:9f:27:84:01:2a:b0:bf:d4:27:39:f1:f1:33:07:
f9:f2:52:f7:6e:fb:9a:57:d7:97:12:51:e4:0e:09:ec:00:ba:
ce:59:75:0e:00:1b:70:93:d3:8b:14:94:10:37:90:e9:01:ce:
f3:3d:fc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:24:58 2026 by rpki-client