Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: N+xjdF0wIHMc1uudXRM7CWKJ3gUAPA1MvpMsXrjgOh8=
Subject key identifier: 96:68:00:E2:71:94:43:B3:9D:19:DF:A1:E9:2D:6D:E8:BD:23:CB:9F
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 019D3940A678628B9F8D45D92442A13334FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 075B
Signing time: Sun 29 Mar 2026 11:00:31 +0000
Manifest this update: Sun 29 Mar 2026 11:00:31 +0000
Manifest next update: Mon 30 Mar 2026 11:00:31 +0000
Files and hashes: 1: BSwE4k_qFyqxMrdShjqvF4jnTL8.roa (hash: oMo6L40X4qe6QWPhrSHg9ULY1MyzZvPQEPrBk1VTYF0=)
2: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: tcZQS10RuxY2Rym2mNqfTTCi7yOtU4wu2DSHG44x+8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:a6:78:62:8b:9f:8d:45:d9:24:42:a1:33:34:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Mar 29 11:00:31 2026 GMT
Not After : Mar 30 11:00:31 2026 GMT
Subject: CN=966800e2719443b39d19dfa1e92d6de8bd23cb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e9:a4:a1:71:14:33:e1:ea:ed:42:30:33:80:
1c:65:b7:b9:82:64:97:b1:4d:99:ed:c3:07:a1:20:
06:0b:e3:ab:fa:0a:4b:42:32:cc:09:08:b4:88:d0:
0b:93:88:58:b1:b3:8e:25:d7:5f:71:fe:2a:79:18:
1e:ac:bf:d6:59:d8:11:ac:45:cf:64:b5:0e:7d:59:
6c:73:89:6c:95:1f:ea:1f:47:6a:f6:b5:e4:bc:81:
fe:a7:24:07:5c:2f:4e:61:f1:ab:d1:04:49:a4:48:
29:c4:07:20:5c:65:8c:a5:dd:7d:8a:6f:b7:3c:ba:
3e:74:bb:24:57:6c:f0:8b:f5:03:46:a4:42:41:93:
1e:a5:50:ca:0d:29:61:55:02:51:c4:33:ab:9f:62:
3f:c0:e5:a4:6d:00:7b:a5:fc:79:15:88:15:99:df:
3c:fe:21:b5:b1:63:8f:c4:86:e4:de:73:6a:fd:1c:
cf:30:ee:e7:72:c3:ad:14:7b:39:1a:42:cb:0f:c9:
cb:8e:65:2d:03:bf:35:d4:9e:d9:a8:25:74:8c:03:
cb:d1:96:f6:6c:29:d0:ad:4c:c1:ab:a2:72:c0:08:
d0:a3:38:1b:8a:aa:01:ad:28:80:b6:95:a0:ed:0c:
ac:7e:b5:12:f5:54:6a:be:a6:c1:00:c8:d9:6a:d0:
7f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:68:00:E2:71:94:43:B3:9D:19:DF:A1:E9:2D:6D:E8:BD:23:CB:9F
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:5c:01:03:03:bb:19:5f:8c:a0:68:6a:7a:b1:16:3f:76:95:
84:a8:bb:91:c8:65:7e:11:78:b3:e4:3c:7c:4d:dc:9c:6d:27:
80:9a:80:35:eb:47:1d:85:44:d3:72:5f:cd:0b:70:b0:91:2b:
6f:d2:d0:f1:3f:66:71:85:f9:2a:00:8f:8c:ab:e3:68:ea:54:
79:85:60:7c:97:90:1a:41:4d:97:3b:96:f9:35:24:a4:71:f9:
ba:b7:fc:fe:d8:cd:77:7b:4f:11:fd:8c:d7:c9:d7:00:3f:b9:
44:3d:e3:d8:26:dc:55:f3:3a:bf:63:4b:a1:f6:5f:92:9d:63:
b9:63:85:4d:53:a3:57:2a:29:a8:48:55:68:d5:d0:01:6e:0a:
c1:92:8c:85:a6:96:c2:40:e3:cf:7c:d8:41:d0:32:95:fd:1b:
28:f4:18:f5:6c:f3:e6:86:f5:3a:3d:54:1f:28:cf:ef:0e:f8:
4e:ff:f7:df:12:79:63:9a:59:73:ed:16:7d:0f:6e:ce:0d:e2:
93:ac:22:6a:3e:28:1f:6b:71:dd:21:e5:62:f2:59:1c:85:9c:
49:21:70:ce:a6:35:99:98:08:d8:5b:a8:24:6e:d1:5e:cd:34:
61:b5:4e:bc:8c:6e:c7:43:b6:be:4e:eb:11:86:9c:40:7c:f5:
ee:ef:99:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QKZ4YoufjUXZJEKhMzT/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjhmNDAwZDgzZDQ5YWFhNmU5MzIwY2EyY2JmYTkzZGE1
YmU3OWIwHhcNMjYwMzI5MTEwMDMxWhcNMjYwMzMwMTEwMDMxWjAzMTEwLwYDVQQD
Eyg5NjY4MDBlMjcxOTQ0M2IzOWQxOWRmYTFlOTJkNmRlOGJkMjNjYjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1emkoXEUM+Hq7UIwM4AcZbe5gmSX
sU2Z7cMHoSAGC+Or+gpLQjLMCQi0iNALk4hYsbOOJddfcf4qeRgerL/WWdgRrEXP
ZLUOfVlsc4lslR/qH0dq9rXkvIH+pyQHXC9OYfGr0QRJpEgpxAcgXGWMpd19im+3
PLo+dLskV2zwi/UDRqRCQZMepVDKDSlhVQJRxDOrn2I/wOWkbQB7pfx5FYgVmd88
/iG1sWOPxIbk3nNq/RzPMO7ncsOtFHs5GkLLD8nLjmUtA7811J7ZqCV0jAPL0Zb2
bCnQrUzBq6JywAjQozgbiqoBrSiAtpWg7QysfrUS9VRqvqbBAMjZatB/5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJZoAOJxlEOznRnfoektbei9I8ufMB8GA1UdIwQY
MBaAFIco9ADYPUmqpukyDKLL+pPaW+ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMt
YTI1ZTE0ZDUzOWEyLzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMtYTI1ZTE0ZDUzOWEy
LzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo1wBAwO7
GV+MoGhqerEWP3aVhKi7kchlfhF4s+Q8fE3cnG0ngJqANetHHYVE03JfzQtwsJEr
b9LQ8T9mcYX5KgCPjKvjaOpUeYVgfJeQGkFNlzuW+TUkpHH5urf8/tjNd3tPEf2M
18nXAD+5RD3j2CbcVfM6v2NLofZfkp1juWOFTVOjVyopqEhVaNXQAW4KwZKMhaaW
wkDjz3zYQdAylf0bKPQY9Wzz5ob1Oj1UHyjP7w74Tv/33xJ5Y5pZc+0WfQ9uzg3i
k6wiaj4oH2tx3SHlYvJZHIWcSSFwzqY1mZgI2FuoJG7RXs00YbVOvIxux0O2vk7r
EYacQHz17u+Ztg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:52 2026 by rpki-client