Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: mO6TWS5UJXH/9j+667YP6XIY2oxq7eYU8RLjRWEj6H4=
Subject key identifier: E2:74:C1:15:A3:DA:24:B7:F6:89:5B:E5:BA:B4:3B:10:5E:AF:04:0C
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 019EFCF29D945D013C95D9EA297B3E76516D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 055C
Signing time: Thu 25 Jun 2026 04:03:38 +0000
Manifest this update: Thu 25 Jun 2026 04:03:38 +0000
Manifest next update: Fri 26 Jun 2026 04:03:38 +0000
Files and hashes: 1: AGVrI7h1W1sZnmEHrQIXxLRxF1Q.roa (hash: K1nbjcJomqgMcH/NVsTCJWhMoSmEDtw4c8u/MMrHlso=)
2: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: v2b3A5TdNACSgQ6jxPBvgvMA6qfU9i7wbW5s1OGvN7U=)
3: fnZsGtHZZ57ibD1bgR7D-kx03A8.asa (hash: gnq6h8vpZgrDrbXWUtlG5+lFKokphaSsAqWL7zsvVig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:f2:9d:94:5d:01:3c:95:d9:ea:29:7b:3e:76:51:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Jun 25 04:03:38 2026 GMT
Not After : Jun 26 04:03:38 2026 GMT
Subject: CN=e274c115a3da24b7f6895be5bab43b105eaf040c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:37:8a:ba:e7:0e:a9:0a:1e:db:42:d2:23:87:
a3:f4:ec:55:10:b5:58:12:8c:f5:3f:ff:c6:24:14:
60:2b:e0:db:de:ef:19:6a:45:b8:85:2b:1b:8a:65:
7e:79:cf:5f:d4:32:fa:6b:b0:a3:ba:10:78:82:45:
c7:80:f3:2b:26:72:a8:3b:48:e2:ef:be:aa:0e:4a:
2c:ee:6b:f5:97:e2:8a:03:19:1a:46:67:0b:1b:34:
2e:40:22:bc:33:4c:29:b7:d9:09:eb:1e:39:b2:c4:
39:98:0f:08:7b:56:83:f7:7d:0f:11:75:61:53:69:
07:5a:45:6a:57:59:78:6a:31:6a:dc:b0:29:95:58:
13:0b:4e:2c:f8:be:72:c2:7f:eb:ea:87:a8:37:a5:
58:fc:d6:57:39:09:8a:00:96:86:dc:a7:33:17:b6:
55:c5:2f:e1:0b:02:08:b7:ee:3f:66:03:f1:8b:23:
76:40:51:1e:f0:0a:6e:d7:7c:c2:e2:8c:ea:08:16:
5b:22:aa:dc:4f:a8:33:cd:08:1c:cc:53:95:fd:2f:
16:92:15:c7:c9:49:80:de:ad:70:06:6b:11:ae:19:
76:4d:28:1f:9f:4b:2e:3f:b0:8d:5f:d0:94:10:63:
4b:ed:36:1b:3d:a1:35:b1:96:f3:e3:51:96:03:f2:
a2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:74:C1:15:A3:DA:24:B7:F6:89:5B:E5:BA:B4:3B:10:5E:AF:04:0C
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:9c:1c:35:ff:f8:72:c9:17:f6:22:3e:b0:f0:b6:52:cf:a3:
df:71:db:d7:87:9d:3e:09:e2:8a:74:e0:3a:21:b4:64:a7:08:
ed:b5:3e:2a:d9:fe:49:74:4e:de:f5:92:82:fa:65:5a:a8:d0:
3a:3c:61:b0:dd:fb:9f:70:f3:07:c5:49:9f:47:49:af:e8:57:
a2:78:48:36:5f:aa:d7:59:5f:b0:f8:24:47:78:7c:31:f6:70:
8e:af:71:81:21:7c:0d:06:68:c6:3c:32:73:b8:f7:77:c1:e4:
3a:47:41:0b:5f:d9:12:6d:5d:40:03:1e:1e:19:2d:9e:8f:d5:
58:9e:49:12:d8:4c:0e:09:cd:00:35:49:63:d2:77:2b:82:38:
49:55:93:27:bc:fd:6f:88:19:bd:f1:32:4d:b4:fc:ce:c0:2a:
ff:d2:6f:4b:a0:da:b5:c6:7d:2f:1f:b3:9c:1b:d8:a3:ee:39:
4c:7e:0d:89:df:a8:62:f5:6e:84:6c:7d:19:8d:cf:8c:93:97:
d4:0a:bc:8a:cf:05:16:5c:db:6e:3d:9d:ef:2b:37:5f:31:27:
f1:03:be:22:db:6f:cb:8d:d9:56:ec:ef:05:6b:3b:1f:08:0e:
20:00:e4:d4:0c:c3:80:e6:b0:a4:ba:85:77:26:f0:cb:a2:f4:
bf:a0:9f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:21 2026 by rpki-client