Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
File: hT8dWhiK5rK18qoTjbj5mqWq16E.mft (raw, json)
Hash identifier: BYI9OrH17GE90EWtdsosd/pm9r010v/Yqu6WKNFhAmI=
Subject key identifier: 21:B4:D1:35:74:76:C1:FD:CE:E0:55:C2:22:08:05:B2:0A:89:EB:97
Authority key identifier: 85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
Certificate issuer: /CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Certificate serial: 019E205A7CA7ABC20C591DB9B15B3E992E94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
Manifest number: 0242
Signing time: Wed 13 May 2026 08:01:01 +0000
Manifest this update: Wed 13 May 2026 08:01:01 +0000
Manifest next update: Thu 14 May 2026 08:01:01 +0000
Files and hashes: 1: FC_VFDWxRgvoLdyaf52ezfjlzY4.roa (hash: ikf5D2Q+V7XdSE1hWi8KX7L8XUe1goHfTjIB4LBsAqg=)
2: hT8dWhiK5rK18qoTjbj5mqWq16E.crl (hash: kte9XktD4Op3Jr25F/62o490pDx6ihW/n4qli71zr24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 08:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:7c:a7:ab:c2:0c:59:1d:b9:b1:5b:3e:99:2e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Validity
Not Before: May 13 08:01:01 2026 GMT
Not After : May 14 08:01:01 2026 GMT
Subject: CN=21b4d1357476c1fdcee055c2220805b20a89eb97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:eb:2c:9e:21:ef:97:c0:55:53:c9:8f:e4:
c7:ec:94:32:f4:48:d4:e4:0a:41:f6:5b:7e:3c:ea:
8b:b7:7c:c7:73:0d:73:3f:a5:71:92:9c:5d:62:62:
da:18:e5:00:0c:2e:19:e4:5a:da:23:a9:bd:99:f2:
64:3b:e2:75:57:1d:44:59:d0:bc:6e:d7:48:bd:34:
72:ee:ec:29:c3:01:1f:07:3f:8e:8b:27:8d:11:f9:
24:5c:23:cd:05:83:c6:a8:92:19:82:2b:60:a7:dc:
b2:1a:34:a0:0c:14:d5:56:d4:5a:0e:c1:8a:85:01:
59:20:62:eb:2b:be:c6:9e:01:cd:6e:51:6c:aa:8a:
70:79:8c:78:dc:31:dd:ea:72:5f:0e:a4:2a:81:8b:
74:84:62:69:fd:52:b7:f7:8d:4a:b9:af:92:77:27:
a9:a1:54:e1:46:38:7f:0c:d3:f1:e8:c6:01:3f:f1:
b7:6f:83:64:01:cd:51:1a:9e:ee:93:80:00:f7:8a:
0f:c7:a5:ae:99:05:87:cd:d0:3a:97:6d:0d:fb:c2:
09:11:c5:7d:32:70:61:c5:7e:f7:67:12:cf:54:74:
2a:59:9c:b8:42:18:01:61:b2:d7:ab:3e:31:48:3f:
bc:17:5b:7f:56:5f:4f:e1:ac:28:8a:1e:76:6b:40:
55:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B4:D1:35:74:76:C1:FD:CE:E0:55:C2:22:08:05:B2:0A:89:EB:97
X509v3 Authority Key Identifier:
keyid:85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:8e:56:88:a3:e5:4f:27:06:87:00:d9:21:a7:b2:85:cd:ec:
12:85:54:4b:ab:e1:4d:1d:7f:23:c8:50:9c:ff:0b:27:86:44:
09:88:8e:70:b5:50:4b:d1:7a:12:32:ba:c4:82:58:a1:c7:be:
45:4f:0a:c4:8e:31:fb:ea:37:81:07:45:aa:66:de:a9:84:5c:
a5:58:4d:4a:fe:37:a7:c8:ad:e7:00:df:4d:10:01:0d:2a:63:
67:99:a6:2d:0f:db:16:48:1f:4f:3e:74:2e:d7:fb:bf:ba:1d:
e0:f4:ca:ac:88:d8:c1:23:39:39:de:c9:4e:c1:19:f0:23:27:
23:54:2e:5f:8a:15:88:69:4a:78:7e:f3:ea:cc:7a:f5:c0:81:
ab:c8:d5:b5:03:06:9d:14:fe:bd:d6:66:d8:d3:bd:63:b9:6b:
5d:a9:64:27:96:8d:ec:38:2a:3e:d1:72:b8:87:fe:ff:5f:e3:
32:62:8a:27:8a:d6:86:f2:c4:e2:28:97:60:e0:ac:95:9e:3b:
f7:05:7a:7c:82:24:48:d4:56:30:54:ef:fe:f3:f1:e2:9a:1b:
92:19:9a:e5:38:7d:82:69:2e:89:22:e3:c0:28:76:20:d4:d3:
e9:83:75:03:de:b5:fb:09:8a:6f:86:aa:64:5b:41:2a:27:d1:
61:a6:16:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 19:10:12 2026 by rpki-client