Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json)
Hash identifier: gX8VHT1T8kR135ZJ4k5f8a0f/eokd/7WlejSiShnv1I=
Subject key identifier: F4:24:7B:81:3E:FB:19:54:9C:34:5A:2B:A1:9D:32:66:BA:94:0C:98
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 019EB921E76106A96D50660CB0C6D88EFF1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
Manifest number: 1600
Signing time: Fri 12 Jun 2026 00:01:07 +0000
Manifest this update: Fri 12 Jun 2026 00:01:07 +0000
Manifest next update: Sat 13 Jun 2026 00:01:07 +0000
Files and hashes: 1: blJ-TZh-82zY8BmhlGXDYcWlXEM.roa (hash: Fd7qkgfgnAB5yGlcwTOLNMtcHfXu1EK11nyoGzaI4T8=)
2: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: +QkU+1hHuyLCP2p9G2gQdd9YxNOeVxHnhxUt7Mhp2Sc=)
3: uGcdeOeH2FGE8oSm_emFftbBDBI.roa (hash: K6Jsrsz0fx7XMWqDVYW8cVOMG7U2AmGR+nHljnd4RYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:e7:61:06:a9:6d:50:66:0c:b0:c6:d8:8e:ff:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Jun 12 00:01:07 2026 GMT
Not After : Jun 13 00:01:07 2026 GMT
Subject: CN=f4247b813efb19549c345a2ba19d3266ba940c98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b6:d3:0f:b2:81:d7:70:88:77:9e:b2:d7:8a:
c8:02:24:02:60:6a:d2:fe:9a:1f:9e:07:2e:8b:3e:
9a:d2:19:de:b6:67:7c:8f:68:33:01:07:74:2a:27:
71:bf:d4:a5:c2:85:97:06:25:4d:d3:35:18:d3:e6:
61:59:e1:d1:fd:cc:0a:3f:44:9f:cd:4d:3c:9a:a8:
93:9a:7d:32:87:2d:83:67:9f:1d:f6:dd:a5:b7:b6:
44:45:04:82:65:e2:9d:fc:98:66:9a:3a:b4:b7:db:
ec:0d:28:3a:d1:27:9d:bb:bf:05:48:4d:8a:63:7c:
4c:fc:f5:68:3c:e4:b6:7b:ed:65:1e:46:fd:db:f7:
d9:38:1b:6c:43:82:f9:58:87:fe:30:3a:d7:db:58:
1c:c9:73:89:da:fa:c6:2b:78:5f:85:c1:5f:c1:41:
73:3c:a6:ae:92:72:0b:e0:2c:57:51:21:74:f5:83:
a9:6f:89:e5:e7:0f:52:b7:05:0d:de:62:10:e2:f8:
aa:62:c2:41:f1:35:cd:3e:72:fb:c4:12:18:dc:df:
ac:a6:42:37:eb:e1:52:ab:49:33:90:05:54:c9:65:
83:a1:61:28:89:de:e9:e2:b6:65:51:d5:39:69:f3:
2b:6f:c7:97:08:e5:dc:1c:e2:31:aa:0c:a0:0d:69:
7e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:24:7B:81:3E:FB:19:54:9C:34:5A:2B:A1:9D:32:66:BA:94:0C:98
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:4c:07:a8:24:28:7a:f3:a8:5d:ba:6e:38:e4:87:7d:dd:5c:
b2:df:f2:70:a7:97:87:6e:0d:aa:b0:3e:4f:b9:b7:52:14:c3:
0d:65:de:66:7a:b9:24:dc:9b:d2:1d:ff:0e:3d:6f:76:71:50:
ad:c4:59:75:2c:c1:76:87:ea:c2:a7:65:b2:09:b8:2d:c0:a8:
2a:4a:04:93:b0:7b:63:21:7d:23:00:b3:56:03:38:c8:6f:84:
d4:07:e8:79:ca:8a:1d:94:f1:3f:94:a0:e4:9b:37:6d:68:b4:
85:8f:64:c8:36:99:0d:50:7d:8d:80:80:47:95:71:21:c9:11:
8d:09:a4:1a:28:de:f2:73:e6:35:dc:22:f1:92:59:06:9e:a0:
b9:45:60:92:5f:47:c5:41:55:7f:ee:f0:ce:5c:93:a0:e4:be:
54:74:ff:33:9c:07:7d:a9:80:b2:4e:9e:ca:57:e1:ad:6c:28:
43:af:a5:bc:64:8d:19:c7:16:7f:03:de:41:bf:db:b9:26:84:
fc:fa:03:45:20:94:ab:79:f6:ea:d2:e3:06:63:61:6b:54:3c:
38:3b:c0:de:54:23:49:b4:af:c4:1c:8b:b8:21:e1:11:ab:4f:
93:3f:fb:78:dd:5a:da:37:82:7d:d4:fa:5c:14:50:83:c1:0c:
94:d5:8b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:28:33 2026 by rpki-client