Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier: iUUS19yefQO2PxMdwSSSO5PISp3LkI1NIO7zeJ3WbNA=
Subject key identifier: CD:A0:73:14:3F:1D:91:43:09:1F:24:29:C4:E8:5F:33:93:AC:D1:06
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial: 019E1DC71506F82F447AB454E73F332CEEBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 20:00:46 +0000
Manifest this update: Tue 12 May 2026 20:00:46 +0000
Manifest next update: Wed 13 May 2026 20:00:46 +0000
Files and hashes: 1: VEhqpg2DKZALngIWKZ9wpJb_gow.roa (hash: eVC1T6V9z6tdKZozR/Hwdp5CGnz0qMtozQ0y9WfwLqs=)
2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: Nsx8SYJaBSnObiKYShhLwRXsi4VWSs5OMtBqFGRd0tY=)
3: q1d9qphsr7BBftyeovhVZGIYZQ4.roa (hash: +tfCetbCMafL/EBqBv20w2hEhDvthJhTv88fbIYf72A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:15:06:f8:2f:44:7a:b4:54:e7:3f:33:2c:ee:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
Validity
Not Before: May 12 20:00:46 2026 GMT
Not After : May 13 20:00:46 2026 GMT
Subject: CN=cda073143f1d9143091f2429c4e85f3393acd106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:f9:a2:2f:f2:57:57:7a:3c:ba:4a:12:e0:
7b:bd:82:e1:89:fb:87:ed:8e:ef:87:53:2c:e0:35:
01:58:d5:3b:3a:dc:99:c2:dd:06:50:bd:af:72:7f:
06:9e:83:4a:89:c2:d4:4d:19:d5:b2:46:50:76:41:
76:fa:84:71:c4:4e:2d:67:f1:98:24:41:45:75:31:
e9:16:5b:22:17:e8:34:9f:15:9f:11:0c:ab:f5:5a:
6b:2e:cc:49:c2:18:71:5f:8a:fc:f1:d5:e4:9c:0a:
7e:b7:16:95:68:52:68:8c:8d:86:36:30:fc:a1:5a:
37:5c:fc:e1:48:e2:7f:fa:7b:33:5d:9d:2b:4a:7d:
41:a3:23:4d:1a:e9:3e:18:cc:a0:0d:fb:41:25:1c:
2d:25:59:c9:09:fb:d7:ac:2e:24:6a:c8:77:f6:f7:
9b:12:fe:db:b3:29:15:60:2c:66:fd:2e:f9:17:eb:
13:d5:02:1f:ef:ee:df:e5:25:d6:18:f3:cb:c9:1d:
c8:68:7a:ba:cd:e0:39:47:94:20:15:b0:44:e3:f4:
e9:96:33:bd:de:36:6b:b3:ee:5d:f6:d3:d7:fa:0f:
53:19:37:c8:ff:b2:d2:da:09:44:24:27:1c:a6:67:
3e:93:13:d7:1c:26:32:6c:1c:b0:e7:c4:85:7b:d5:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A0:73:14:3F:1D:91:43:09:1F:24:29:C4:E8:5F:33:93:AC:D1:06
X509v3 Authority Key Identifier:
keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:94:9d:b9:88:ee:e0:a2:17:93:7a:0e:0a:87:94:94:f3:28:
c9:04:91:16:3f:c7:54:58:f5:27:0c:1f:57:2a:77:3b:87:23:
94:09:2f:38:fe:56:e0:75:2b:86:2a:e5:f7:85:23:d7:a3:74:
d2:58:fd:1b:18:a8:f7:e8:43:a7:fb:0a:5a:1c:82:3e:11:f1:
8e:fc:ae:cf:41:70:b1:9c:80:29:a5:8a:2f:f7:1e:f9:d8:73:
6b:7b:b6:ea:62:40:44:81:5b:69:27:9c:9c:69:8f:09:39:da:
fa:7c:5d:39:4a:1b:2b:1d:27:8e:ad:34:aa:6a:b2:44:a7:f2:
65:12:ff:5f:c8:5f:31:b2:2c:75:fe:5d:98:ec:a2:43:8f:da:
a0:3e:fe:fa:d2:35:da:63:26:1e:7b:41:cc:09:cf:32:7f:e4:
a8:0e:be:f3:37:47:28:49:50:f8:70:8a:de:cd:85:54:50:2d:
95:66:f8:0c:48:5e:c6:e8:e2:5b:83:9c:99:0f:6e:4c:9a:21:
ae:8f:6a:eb:d6:09:16:c7:01:08:83:87:71:b4:85:df:4d:28:
93:85:18:72:37:78:ec:59:6a:ab:38:9d:a0:22:ef:9e:4c:1f:
c9:4e:eb:ab:32:10:5c:17:65:bb:86:42:92:92:b9:db:d2:8c:
11:88:8a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:37:32 2026 by rpki-client