Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: pqRsuuRULUiQ23ZSfSSABl2GCPVUTV5aIv2rpD3qm+Y=
Subject key identifier: 84:10:C3:B8:7A:D2:22:62:32:76:EB:F7:90:9B:59:10:03:71:97:04
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019E563717801D2CBA00A39B39A9D04F766F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 06EF
Signing time: Sat 23 May 2026 19:01:51 +0000
Manifest this update: Sat 23 May 2026 19:01:51 +0000
Manifest next update: Sun 24 May 2026 19:01:51 +0000
Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: qwlEiixk8v+RUvVWKdCe86sYmR+8MS9/9TXZzQNHweQ=)
3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 19:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:56:37:17:80:1d:2c:ba:00:a3:9b:39:a9:d0:4f:76:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: May 23 19:01:51 2026 GMT
Not After : May 24 19:01:51 2026 GMT
Subject: CN=8410c3b87ad222623276ebf7909b591003719704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:32:ec:c9:90:d2:c7:54:4d:58:45:c3:69:3b:
3a:13:ca:eb:58:c5:d2:bc:5b:f6:11:d6:db:e2:6d:
fe:2d:96:44:9a:2c:37:05:a6:58:9d:b5:7f:8b:a6:
9b:8e:c3:f6:8f:72:8f:90:f2:a6:92:7e:8a:a1:e3:
4e:72:23:47:06:96:94:7f:a4:6a:14:c0:fb:cc:86:
33:11:29:5c:7e:a9:51:8e:f9:e8:37:71:37:ac:c2:
7e:b2:f7:5d:d3:55:d5:b7:a2:ac:80:3e:c6:6c:7d:
6d:cb:94:c3:29:43:b6:49:49:d7:43:d2:f8:2d:ae:
7f:56:32:76:13:8b:47:f4:a6:12:e9:cf:dc:66:d3:
55:3a:51:6d:ba:65:75:b9:e5:31:62:40:73:04:e0:
08:9f:01:d0:b7:74:a7:eb:d8:9d:64:dd:de:df:6b:
96:8a:dc:e9:52:d1:d9:f5:0b:74:ba:c6:31:31:da:
aa:29:1a:2d:06:e7:1c:56:e3:fe:fd:e3:de:d9:92:
aa:e3:b4:c7:4d:52:79:dc:07:47:d0:a3:d4:2f:d0:
d3:ca:5a:96:69:78:3a:20:a2:34:4c:11:6d:ca:4b:
79:6f:17:ce:a4:7d:13:7d:2d:8c:c7:2d:0e:bd:e5:
0d:58:a6:7a:de:09:a7:6f:b8:70:f7:c4:ad:0c:a9:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:10:C3:B8:7A:D2:22:62:32:76:EB:F7:90:9B:59:10:03:71:97:04
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4d:bb:00:46:ba:9b:31:2a:2d:55:8e:c0:17:c8:c8:25:14:
ac:e8:5f:c9:aa:f4:ed:6e:1f:21:1b:bf:f9:d1:12:76:a7:c2:
c4:b0:fc:8b:04:2f:2e:60:9a:0f:b6:05:3d:bf:d0:e2:44:e3:
e4:16:03:93:29:7f:67:9c:ff:40:17:be:87:48:9f:a9:d5:60:
03:81:70:33:22:93:f2:3c:23:c9:81:d0:64:a2:8c:27:37:28:
75:ed:a0:aa:55:88:f7:03:da:a8:d8:b0:fe:81:c0:e0:61:db:
e4:a5:8f:51:8a:18:90:10:9e:b1:db:e0:86:f6:9b:94:00:cf:
68:6d:ad:1a:b3:3c:6c:76:0c:09:ce:d0:4b:23:50:61:e2:52:
bc:8d:b9:2f:9d:03:d9:85:be:79:44:38:14:1c:84:f6:7a:cb:
e5:71:7d:25:63:27:6c:a5:1b:57:17:83:89:23:38:b3:9e:8b:
a8:70:06:23:10:41:69:38:99:46:74:de:bb:c5:be:3a:30:2d:
73:3f:5a:d6:46:4c:79:74:e6:27:89:85:c4:92:54:1e:52:05:
b4:b0:a2:49:45:d9:68:6b:04:e2:f3:fb:ba:05:20:a7:02:a5:
28:76:03:a8:f0:06:67:c5:bc:66:5e:53:80:78:07:db:d4:fb:
23:9e:82:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 04:38:05 2026 by rpki-client