Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
File: Hrq0DWCBM83fdsO1pvgV34H7x90.mft (raw, json)
Hash identifier: PmBejnIv2R7SytjuuPkGRKIKZNowMOci8K8gHtKB/Qw=
Subject key identifier: 34:09:CC:67:8F:6F:B2:0D:BE:1B:1B:D6:99:FD:74:CC:D4:91:3C:84
Authority key identifier: 1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
Certificate issuer: /CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Certificate serial: 019DFC16E906B5B4F7437F2140037278FFB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
Manifest number: 0440
Signing time: Wed 06 May 2026 07:00:52 +0000
Manifest this update: Wed 06 May 2026 07:00:52 +0000
Manifest next update: Thu 07 May 2026 07:00:52 +0000
Files and hashes: 1: 5Kagby_sStjMFhSw2G6-l1YpdBk.roa (hash: Noo2j7EiUwmhRo9X0f0rtLLladI+Ufm3DSaLlHlT9cg=)
2: Hrq0DWCBM83fdsO1pvgV34H7x90.crl (hash: 0RcrzXtCZLBmguYrNvxuFo0oHmuxJtA7ze+clsT8Kp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:16:e9:06:b5:b4:f7:43:7f:21:40:03:72:78:ff:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Validity
Not Before: May 6 07:00:52 2026 GMT
Not After : May 7 07:00:52 2026 GMT
Subject: CN=3409cc678f6fb20dbe1b1bd699fd74ccd4913c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:4b:d4:17:a2:c2:dd:0d:da:42:d4:a2:49:
87:9b:72:5c:72:a5:e8:c6:e5:d2:59:95:a1:63:16:
9c:91:1f:2a:84:80:d6:58:4b:6c:f6:fa:b8:5c:71:
d0:d5:25:eb:9d:e8:6b:64:4e:35:5e:f7:5d:f2:ca:
21:85:94:32:bd:0e:85:f1:76:8d:00:3c:54:50:43:
e4:5c:1c:ad:1c:11:13:3a:09:fa:51:a1:36:b3:a6:
ab:a1:8b:25:26:c5:a7:7c:bf:05:9b:60:5a:cc:ef:
52:97:d7:88:c2:1d:b4:04:d5:b8:7c:e3:09:7a:f2:
10:fc:24:2c:a4:92:ae:16:6a:22:a5:d8:07:1a:2f:
88:5f:45:df:bc:af:2c:ec:2a:b2:e0:99:f3:0e:a5:
26:d5:5b:d1:60:e6:cf:6e:f3:f1:ab:c9:49:09:a4:
23:41:a1:3d:de:c7:3d:d0:75:5e:74:9e:30:14:ba:
df:e5:ab:a4:dd:5b:43:ea:b6:26:fc:16:d0:ac:1b:
ec:e7:cf:0c:13:dc:83:d0:60:5f:7c:1f:87:17:4f:
1e:1a:a9:31:c2:4d:fc:f5:30:7c:d3:64:4b:ac:12:
31:35:a7:9c:66:f3:6b:37:de:fc:6d:bb:4d:ee:33:
30:74:b0:21:e9:8c:49:e8:5e:79:15:be:7c:8a:b1:
3f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:09:CC:67:8F:6F:B2:0D:BE:1B:1B:D6:99:FD:74:CC:D4:91:3C:84
X509v3 Authority Key Identifier:
keyid:1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:f8:9f:20:e4:ce:6a:c1:14:0d:f9:17:8f:4b:9d:ed:cd:d0:
91:45:d4:9d:a7:be:77:54:a1:bf:43:78:dd:12:1d:79:db:0c:
d3:38:96:e8:ac:a4:8d:04:ae:e9:7a:71:74:d6:3a:9e:f7:08:
cf:b8:c3:fd:37:40:bf:c0:06:fd:e3:86:80:3e:91:fa:f4:45:
f5:6a:62:1d:b4:f4:64:64:b2:11:09:d4:ef:8c:5a:b2:6d:e1:
64:88:2c:13:e4:5c:21:f4:23:ca:47:b7:5b:f4:fd:44:b2:a3:
ee:93:4e:1c:1a:74:d3:9f:7f:b4:ac:b8:8b:36:6a:c1:0e:0a:
5b:61:17:3e:25:7e:34:14:af:a0:c6:4d:e8:e2:23:e1:19:9d:
2e:e6:cb:ea:f2:15:7f:81:5b:b7:59:bf:54:21:f3:f0:8b:d1:
e8:bf:fd:32:72:eb:78:d3:ee:10:d0:db:31:f6:55:7a:e3:3b:
f3:a6:7f:a6:74:bd:6a:8d:b6:54:9e:04:3c:00:d5:3a:a1:c9:
65:ee:08:26:3d:24:9d:46:e0:68:00:45:11:9f:0e:1f:cb:34:
01:15:40:18:7b:48:51:0c:99:c8:38:3f:81:eb:29:18:c4:2f:
2a:4e:d1:fa:dd:d3:a5:14:4c:34:45:82:22:fa:54:e3:8d:64:
c2:ac:0a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 16:45:23 2026 by rpki-client