Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json)
Hash identifier: rrszDdK5jj38uAeyh7JsGWFAY0AZzB9e9GPiKCwFCv0=
Subject key identifier: D9:B6:59:90:77:FD:49:58:90:25:8F:FF:7C:87:34:E5:65:FD:82:8E
Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Certificate serial: 019E303BAF136373B685AB320B58F065A5C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 10:01:18 +0000
Manifest this update: Sat 16 May 2026 10:01:18 +0000
Manifest next update: Sun 17 May 2026 10:01:18 +0000
Files and hashes: 1: VlpI70dDa3SXtasYtMfEiBmSD6c.roa (hash: ZCpP7KsMiePX2xsWWMvyuZvFGbNzVM1llSJjyzmPYlQ=)
2: cuqHyO4V93ncme-J7Fr8-_3DTvU.roa (hash: RSEzdn3Ri0wlzenvwY/b18Rq2sLeWzRaHbLOuqaUorY=)
3: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: 44tKwQLxsoRHVCBrZioRPdp34LPGyNrrHYCCOQgcCv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:af:13:63:73:b6:85:ab:32:0b:58:f0:65:a5:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Validity
Not Before: May 16 10:01:18 2026 GMT
Not After : May 17 10:01:18 2026 GMT
Subject: CN=d9b6599077fd495890258fff7c8734e565fd828e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:67:74:38:6a:54:a7:57:5d:26:21:3d:0d:56:
3d:f0:e1:11:ab:ff:af:d0:fe:58:7a:82:a0:a8:91:
40:82:c2:ef:80:8a:e3:74:e2:3d:0a:ec:82:a8:99:
ce:2d:6f:c9:7f:2b:c9:c4:3d:36:ca:bf:40:8e:cd:
1f:16:e8:01:7c:17:13:4a:6e:53:f9:ac:01:a8:21:
85:3f:16:0f:fd:fe:fc:d9:c6:aa:b4:cc:1c:70:b0:
53:30:84:a1:ea:b0:c6:78:2f:29:83:77:eb:16:b8:
aa:1c:bf:8c:2d:d8:91:6a:ed:64:52:c3:c5:d0:83:
44:cf:3f:18:4a:37:ad:2f:0e:52:6b:f5:5b:b1:74:
d0:d8:4b:7e:8a:02:30:90:d1:a4:e0:4c:a0:41:b1:
7f:cd:0d:a9:6a:4d:f5:2a:52:32:a7:e0:09:23:0e:
e5:8e:d6:a5:a9:75:ae:b0:a6:3d:fb:b4:de:89:af:
4a:99:cc:c2:87:99:2d:1f:e4:83:2e:03:da:fd:2d:
1e:e7:89:f9:ea:c9:d3:ce:f6:e1:a0:e9:fa:db:31:
4c:aa:f0:bd:c4:9f:c6:24:04:1a:e1:50:9f:2c:19:
cd:c2:66:0a:df:e4:8d:e0:b9:d1:24:6f:44:df:28:
ea:70:0c:f6:db:85:55:dc:7c:25:e3:58:a8:28:a7:
9c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B6:59:90:77:FD:49:58:90:25:8F:FF:7C:87:34:E5:65:FD:82:8E
X509v3 Authority Key Identifier:
keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:17:38:8e:f0:c6:29:97:c3:3f:94:24:8b:09:9e:91:73:13:
c0:76:27:0e:4d:ed:ae:5c:91:76:aa:32:bc:86:02:42:c0:5f:
a8:67:e7:83:a1:78:e4:77:1c:b4:9a:5e:7c:7b:82:15:38:ea:
4c:ab:f5:19:59:15:5b:28:51:56:75:0f:c3:93:9e:be:5b:dc:
cc:66:4e:8c:b8:5f:d0:93:fb:76:24:9f:3b:0d:0e:06:7d:66:
aa:25:f7:92:f7:c2:fb:09:35:c6:e6:f9:50:ec:8c:fb:a5:29:
24:23:8d:ab:9d:56:9c:a8:d7:cd:46:39:11:15:e1:ec:f5:5c:
f9:44:cc:1e:a5:c8:df:d8:dd:88:06:2b:2b:82:bc:1f:06:98:
a5:16:e4:65:f7:4e:86:24:a0:b9:f8:6d:f8:1d:c7:73:71:cf:
3b:4d:90:d6:1f:b1:2d:a2:e8:e6:f0:b2:41:84:de:80:10:d5:
c3:36:03:17:64:8c:8b:bf:eb:22:05:c5:36:a2:ec:d5:71:e4:
96:44:dc:d3:ac:ba:61:bd:2c:c5:da:19:44:d4:85:e5:e6:0a:
37:da:a4:04:00:b1:55:24:52:b1:f9:b5:c8:0f:d2:55:6d:c6:
bd:36:83:7f:27:04:a4:83:04:b3:38:f3:ce:89:9b:4f:a0:b6:
be:c2:28:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:30:35 2026 by rpki-client