Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
File: hGr1TmVYz8hiUpRuRpKrknd8DhA.mft (raw, json)
Hash identifier: SKZZl4lrsq/vfVPuMYkletIwGqxoDaC50lmrZlaqiJY=
Subject key identifier: 89:2D:43:CA:E8:B3:F8:7D:30:7C:8A:E7:13:C5:BC:D0:CE:70:62:F2
Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
Certificate issuer: /CN=846af54e6558cfc86252946e4692ab92777c0e10
Certificate serial: 019E4E45D9F5004C95982785B5EA91889B0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
Manifest number: 1543
Signing time: Fri 22 May 2026 06:01:01 +0000
Manifest this update: Fri 22 May 2026 06:01:01 +0000
Manifest next update: Sat 23 May 2026 06:01:01 +0000
Files and hashes: 1: DzxlgYolYmYrOw6dLtHYtuvzTW4.roa (hash: snxX9+Dmsgw6Tf7GTwWvTcPR+yOEzI9Wj8zN8W2eCBE=)
2: OQLmyHIHKnOQqtsOG6o6hyfLKFE.roa (hash: OAPut5klxvnwxvXekYncRq9ZTcquwuK9N/4Pis2RPnI=)
3: SU9l9n5tTaHoiwwtJtq99KggAas.roa (hash: 7Jnaa+yaZEgfZ0pJI5V9JYe56J0Eyz54F3utpVXqqBs=)
4: hGr1TmVYz8hiUpRuRpKrknd8DhA.crl (hash: ZRoIVePBBarASsMSDa6EPoJjrgnnChiMFI3LA1sU8cU=)
5: y18u9oMcyFjkgl_LFXqULX8NytA.roa (hash: B5vX5oLv2822UN69f2wG7jEHSe1FzIcV1zpP+Ish8P8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:45:d9:f5:00:4c:95:98:27:85:b5:ea:91:88:9b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10
Validity
Not Before: May 22 06:01:01 2026 GMT
Not After : May 23 06:01:01 2026 GMT
Subject: CN=892d43cae8b3f87d307c8ae713c5bcd0ce7062f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:7e:1d:0c:d1:15:c4:53:ab:e8:5c:23:9b:
3e:c3:8c:2f:3d:bc:9b:a7:6c:a7:12:94:e2:75:a6:
26:eb:a8:f3:30:4f:97:26:7b:21:66:e4:6e:43:7a:
9a:3c:50:84:31:99:0c:0f:00:ae:f9:45:7b:f1:eb:
2f:0f:47:f6:3e:f9:c6:11:6b:63:ff:f7:5f:32:2a:
d3:c1:a7:91:41:cc:4f:07:ed:75:37:60:c5:79:c6:
7f:d6:24:74:cf:53:6c:ff:e3:4e:f2:f7:6e:13:7b:
f1:df:0c:c2:a5:bd:be:c5:ec:14:28:70:76:1b:2a:
e8:d3:21:aa:bb:7b:54:86:63:e9:e7:b7:08:6d:45:
92:46:31:84:cb:52:3c:69:0d:95:8c:e1:7a:cc:54:
66:31:00:33:94:02:3c:46:d6:33:ff:fd:89:75:24:
a0:95:ff:ac:f5:c9:87:4e:4b:1c:31:e5:e6:6a:d8:
df:1c:02:be:e5:86:ac:01:8e:7a:c3:de:4f:94:65:
67:96:64:ea:6c:38:10:ec:6e:ed:52:7b:c0:c9:81:
68:dd:5f:95:34:a5:a2:66:97:78:f8:67:be:4b:2d:
a6:63:24:1a:29:f7:4d:3c:a4:48:e4:a7:4a:17:ed:
e2:9f:25:7c:47:2c:58:57:49:0d:d0:39:ee:44:0a:
c3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2D:43:CA:E8:B3:F8:7D:30:7C:8A:E7:13:C5:BC:D0:CE:70:62:F2
X509v3 Authority Key Identifier:
keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:40:6a:a7:62:75:30:97:e7:79:7d:46:db:c8:7d:90:a4:d8:
42:a6:fe:b6:e0:3f:db:16:94:94:00:26:0e:06:2e:69:1f:7e:
15:d4:66:7e:f7:fc:eb:83:01:96:a7:a4:1b:cb:12:12:8e:25:
23:0d:77:f1:04:be:e5:7e:d0:0a:8f:9d:77:ac:18:71:0b:15:
1b:bc:fe:5a:66:f4:be:08:45:55:d6:77:5b:64:b8:39:4a:a9:
14:5a:71:92:9a:52:bb:fa:52:32:ab:ce:42:49:54:76:0f:b3:
ba:c9:7f:93:f4:00:65:76:a9:35:ff:4e:d0:25:92:e1:e0:8d:
ff:ec:4f:19:f2:e2:f3:6f:5e:2e:9b:68:f4:1a:42:ff:78:f3:
8a:e8:13:5d:94:97:db:e5:bf:cb:93:11:9c:35:6c:22:7a:0d:
9d:32:42:c4:63:e3:c8:57:dc:be:88:e3:c3:0c:f1:d8:8b:1f:
32:ae:f4:3d:53:76:69:69:41:d8:6d:2e:47:f3:35:c1:7c:16:
bb:3d:87:86:cf:2d:d0:b4:d0:09:13:ed:98:9a:6a:d5:84:f9:
81:7c:bf:1e:33:ac:13:b5:95:41:5d:22:b4:75:62:8c:c8:68:
16:36:db:cc:36:6c:1f:51:9f:63:a2:94:7d:f8:7c:56:83:81:
6b:a2:07:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 15:10:36 2026 by rpki-client