Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json)
Hash identifier: oC4jXFEWKpH86rJEpB/Lqqki/WFdyErKOdr5Q1frTcU=
Subject key identifier: 26:C0:08:36:BC:72:10:72:ED:1D:4D:14:B8:12:34:27:1B:59:75:9F
Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Certificate serial: 019F19E89AE66E6515B1D147C98E4F1AF86C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 19:01:42 +0000
Manifest this update: Tue 30 Jun 2026 19:01:42 +0000
Manifest next update: Wed 01 Jul 2026 19:01:42 +0000
Files and hashes: 1: VlpI70dDa3SXtasYtMfEiBmSD6c.roa (hash: ZCpP7KsMiePX2xsWWMvyuZvFGbNzVM1llSJjyzmPYlQ=)
2: cuqHyO4V93ncme-J7Fr8-_3DTvU.roa (hash: RSEzdn3Ri0wlzenvwY/b18Rq2sLeWzRaHbLOuqaUorY=)
3: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: YldfS3jjKzTd0ouGnrubDOKtTusLNwZVDKEondVWCwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e8:9a:e6:6e:65:15:b1:d1:47:c9:8e:4f:1a:f8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Validity
Not Before: Jun 30 19:01:42 2026 GMT
Not After : Jul 1 19:01:42 2026 GMT
Subject: CN=26c00836bc721072ed1d4d14b81234271b59759f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e8:44:f6:4e:b1:46:37:aa:4e:fc:84:00:9a:
da:ac:1b:56:25:ec:3c:54:34:04:ec:f9:7a:3c:86:
0a:42:84:15:89:b5:2f:d0:a4:4d:e7:c3:c5:f6:c2:
d4:10:c6:40:eb:27:73:a9:8b:5c:f6:d6:ea:d5:1c:
08:a1:85:77:4e:b7:fc:b4:b2:f3:53:0c:0a:cf:91:
a1:5a:7c:eb:03:44:d3:4e:5f:ad:52:3b:af:c8:e6:
c4:87:ec:c0:a2:59:7f:b5:50:a5:de:d5:70:4a:a9:
7c:df:3c:84:16:4d:d0:6b:32:06:2e:c0:79:e1:e2:
d9:de:13:53:7d:0c:b3:c1:8f:0d:04:85:1e:03:9f:
b2:ef:00:c6:c9:35:bb:ba:e8:10:20:bb:12:c0:6a:
c7:e4:51:8e:4d:63:7d:fa:30:2d:82:6e:6c:40:57:
44:95:b9:07:30:a0:7c:3d:df:bb:d6:90:65:96:15:
12:ff:61:36:bb:94:fa:dd:ba:20:9a:c9:bf:92:25:
67:ee:15:88:46:36:68:6b:3c:07:a3:58:3f:2b:c3:
4d:50:6d:08:76:d7:06:65:95:df:ed:78:48:1d:40:
6c:7d:36:03:23:62:7c:71:e4:b8:aa:eb:32:fa:65:
a9:6a:8e:91:ca:74:7e:51:55:15:68:d2:07:71:90:
2f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C0:08:36:BC:72:10:72:ED:1D:4D:14:B8:12:34:27:1B:59:75:9F
X509v3 Authority Key Identifier:
keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:55:9a:fe:03:dd:bc:62:7c:ae:6e:9c:8b:5a:7c:d8:fb:cc:
18:da:84:35:94:e9:51:a4:a3:74:da:ca:3d:c4:32:bd:b0:6a:
e1:2e:aa:cf:a1:cf:dc:49:72:42:bd:23:4b:9a:da:18:4c:1e:
c8:91:c4:b1:c9:a0:c4:24:98:a3:00:88:20:18:9b:90:68:21:
a1:f4:7b:77:3c:ab:36:3c:f9:90:37:7a:55:89:9f:79:a9:77:
58:05:21:3a:6d:ca:e4:cc:3d:c5:e6:4a:28:22:00:ed:42:37:
af:75:ce:da:80:6e:4b:82:ac:a3:ac:84:b8:72:23:8e:82:59:
e6:1b:7f:91:a3:02:3b:b1:76:50:05:6d:11:fe:8b:d8:c1:67:
2c:41:10:e9:5e:92:5f:5b:59:14:a8:37:ae:6c:61:7a:e7:ac:
6b:e8:43:42:a0:00:88:35:3e:46:85:46:3f:14:a7:ac:55:5e:
d3:54:ec:f1:2d:30:f4:af:e6:f4:8d:03:da:f6:cf:95:05:89:
07:df:fe:8c:d9:3a:b7:b9:90:9a:b8:a8:18:b0:02:af:17:3b:
6e:ce:1a:09:93:16:91:1d:62:01:a3:66:2d:88:1c:d2:1c:41:
c3:6f:c4:51:87:1e:9b:6c:cb:b7:27:e6:55:ec:89:21:97:fa:
a1:d9:e1:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:40:20 2026 by rpki-client