Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: me+S2fvmCLLJn53dQOFMUf4CgYRyu1TJ530mtbsS+Aw=
Subject key identifier: 8F:36:2D:8E:B7:78:2E:77:8C:AE:45:88:F5:70:E9:AD:E2:7D:D0:4A
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 019F19E8737D87D7568D006E0F8FB5D4E9DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 07D4
Signing time: Tue 30 Jun 2026 19:01:31 +0000
Manifest this update: Tue 30 Jun 2026 19:01:31 +0000
Manifest next update: Wed 01 Jul 2026 19:01:31 +0000
Files and hashes: 1: 7F5MFPLGX7n9kqmK4iPr3DwuhNU.roa (hash: sUozPnCyk9y8i1GS+PfFGedUQX43402xLyKa/GCV0HY=)
2: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: Ocr492eAtbs9/zOt8PSYMZA7fAILLiMi1OZtfG+Q2tM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e8:73:7d:87:d7:56:8d:00:6e:0f:8f:b5:d4:e9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Jun 30 19:01:31 2026 GMT
Not After : Jul 1 19:01:31 2026 GMT
Subject: CN=8f362d8eb7782e778cae4588f570e9ade27dd04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b7:1b:c8:22:d2:ff:c5:c1:9b:ea:3a:ff:cc:
7d:bc:2e:5d:51:7d:cc:a3:be:b2:86:5f:f5:ba:1c:
69:e8:26:4d:87:57:77:0d:d9:2d:7d:20:02:90:89:
3f:e8:69:f8:d9:60:54:58:4c:e5:2e:8d:78:e1:c4:
f0:ba:0a:02:05:e5:04:45:5d:ad:a4:32:b7:34:39:
f7:c1:65:7e:e4:79:13:38:17:9e:34:10:b2:0e:f8:
32:39:57:d3:af:19:b6:55:3b:72:b9:9d:bf:d5:f6:
4d:0a:c3:d1:97:44:2c:7e:8b:b3:39:80:cf:8d:64:
41:79:4c:11:a7:c2:43:6b:83:38:66:41:a5:a7:5a:
ce:dd:ed:9a:8b:91:bb:6c:da:0b:10:d8:59:19:dd:
04:da:b0:80:e9:c3:e3:63:71:19:5e:50:d1:3c:e6:
e8:e2:f3:ac:8e:1c:04:49:9d:5e:30:62:d8:bc:a0:
f4:dc:6f:a4:70:38:e7:65:00:1f:54:f7:94:37:59:
c2:19:05:c4:bd:57:67:5f:41:92:4b:9d:9b:0b:7e:
52:2f:8d:39:b3:fd:fa:04:48:ff:97:7a:8a:f9:cf:
4f:6a:5f:0a:bc:5c:ff:e2:aa:3b:39:58:7c:b2:45:
dc:be:e8:d6:f7:9a:7d:8f:1f:ef:98:69:17:d0:2f:
4d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:36:2D:8E:B7:78:2E:77:8C:AE:45:88:F5:70:E9:AD:E2:7D:D0:4A
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:58:64:d9:d3:a1:8f:78:c0:4c:38:24:2d:bf:93:a4:4b:4e:
cd:12:50:9a:de:29:8d:03:71:5a:30:93:4b:ae:da:f9:e3:3f:
b6:7e:4a:ee:76:f2:9e:77:0d:5f:3f:69:51:d4:90:e0:88:d6:
a9:ab:c6:a7:04:90:56:58:2d:b6:f5:01:e5:3c:33:8f:b2:b6:
a6:80:99:aa:9b:2b:ae:09:89:9d:aa:94:24:2a:8c:e2:85:28:
a5:b6:5d:86:29:b7:e9:aa:c3:80:9c:78:bf:6d:78:68:51:2d:
d3:19:b1:39:e7:cd:c5:e5:2c:56:d7:c6:46:f7:dd:11:dc:8a:
0a:85:0f:a0:0e:91:4d:31:0f:e4:84:8e:ae:01:82:5b:d4:59:
0c:e6:19:2c:3b:32:4f:ec:45:3f:04:8c:09:1b:20:7c:9c:f9:
13:15:ed:dd:ed:78:9b:5e:9a:18:b6:de:c8:3d:9d:d1:b5:78:
8e:c5:b5:a7:e2:a4:64:a1:a2:db:b9:3b:b2:29:33:d3:5f:08:
7c:a8:bf:15:fb:d7:cc:85:e6:bc:8e:6f:a5:f1:bd:be:5a:44:
cd:7e:87:74:6d:bd:13:b7:ed:96:90:83:bd:82:f5:d8:04:4e:
47:40:a3:94:fa:3a:12:04:ff:56:3f:b6:f7:52:d2:80:2e:c0:
59:49:23:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:18:28 2026 by rpki-client