Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: q/selUb+0hlmA6TgzIcLG/6fck5BWRpc3sKIokaQHnM=
Subject key identifier: 74:52:E0:1C:26:B9:EF:9C:F7:49:C8:B0:D9:1C:13:F5:A2:E5:61:F7
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 019E32612A96B5E3DB8343A8C1A4954E98B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 07DC
Signing time: Sat 16 May 2026 20:01:29 +0000
Manifest this update: Sat 16 May 2026 20:01:29 +0000
Manifest next update: Sun 17 May 2026 20:01:29 +0000
Files and hashes: 1: BSwE4k_qFyqxMrdShjqvF4jnTL8.roa (hash: oMo6L40X4qe6QWPhrSHg9ULY1MyzZvPQEPrBk1VTYF0=)
2: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: 4tkhhkz4rJB+k3BVmxTTuM8Qvp79+/OtXs3RoIvy1p0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:2a:96:b5:e3:db:83:43:a8:c1:a4:95:4e:98:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: May 16 20:01:29 2026 GMT
Not After : May 17 20:01:29 2026 GMT
Subject: CN=7452e01c26b9ef9cf749c8b0d91c13f5a2e561f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:90:ae:16:3b:6e:50:9a:78:28:96:8b:80:84:
a3:7f:15:7d:9d:ad:c6:ac:79:7f:76:9d:ea:9b:26:
3c:25:fb:00:c0:0b:e5:70:54:bc:c7:14:f7:a9:b8:
16:ef:65:a8:47:a7:02:98:5d:7d:31:0b:60:e6:77:
cf:b4:7d:fb:05:b8:c0:52:b9:d3:87:9a:0a:81:ef:
e8:1c:7b:e7:60:c0:ff:ac:8c:b6:7d:e5:20:e2:9b:
dd:29:f7:18:15:9b:61:03:20:0e:f3:49:d1:37:3f:
12:d8:df:2b:14:04:2f:cf:e5:3b:ff:26:6a:38:6d:
b1:f5:3f:d0:7c:0a:c9:91:ab:d0:b1:27:39:ec:d4:
1c:2d:be:69:41:12:2b:7a:29:e0:c7:f3:d8:70:a1:
83:39:b6:e2:ab:45:3d:4c:95:8b:44:53:6a:38:e4:
36:83:4b:f9:3d:ab:10:d4:c2:08:ff:32:12:be:16:
41:66:a4:50:66:91:8b:fb:c0:70:36:5e:6e:46:dc:
5a:a2:b5:dd:b2:c4:52:a4:90:ad:0d:57:45:65:ad:
27:31:ff:b3:42:f5:43:12:8c:59:a5:f1:ed:05:be:
43:23:20:76:f4:bd:79:01:71:34:87:72:a2:09:6a:
bf:56:67:bb:fd:eb:47:e3:5e:3a:b9:d9:2d:be:a1:
5e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:52:E0:1C:26:B9:EF:9C:F7:49:C8:B0:D9:1C:13:F5:A2:E5:61:F7
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2f:0b:b3:f8:68:72:08:b0:a1:74:ae:99:0c:85:a2:9c:a4:
e3:d0:f0:4a:19:5f:dd:fd:7a:4a:ee:42:95:bd:3d:66:e1:7c:
5a:0e:57:3e:24:97:3b:7f:88:15:cc:17:58:c7:e0:dd:0f:55:
7b:a8:04:f3:37:00:e3:a4:81:16:00:bc:d4:42:2a:66:21:d0:
60:81:22:29:76:7a:09:6c:35:32:be:2f:5c:9f:d1:a9:e8:1e:
99:9a:4d:a0:4b:5a:8c:ea:fa:25:5d:95:cf:bd:3d:7e:53:fa:
aa:59:d7:ba:99:a4:b3:c2:a7:29:10:46:72:df:9d:74:ad:59:
a8:e0:f4:17:be:e0:10:e2:b3:8e:46:57:b8:e5:5a:4f:61:83:
4d:e1:f2:00:f9:05:5f:25:4d:35:84:27:28:d3:24:2c:7f:f6:
55:2c:19:47:5b:a7:66:b4:d4:18:ea:59:93:08:28:39:a0:f4:
44:98:b1:9c:93:50:43:58:39:03:fa:4c:0c:70:b5:4d:7d:4f:
88:21:73:3e:e8:09:d5:e4:2b:a0:ae:b8:ae:86:6c:b7:db:59:
45:6b:15:2d:0f:de:1a:76:7b:ca:89:90:ea:7c:ff:62:8d:41:
53:85:00:44:9f:a7:76:1b:fb:a2:e3:01:03:64:dd:bd:3b:80:
8d:68:7a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:22 2026 by rpki-client