Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: /aXgQ2xA24i8R0rbANWSf4uQAOD30JttK+TcGZi4yq0=
Subject key identifier: B3:CC:31:5E:11:CB:87:C3:39:01:42:23:47:DC:76:1F:ED:E1:F0:C1
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 019F11F8892244F10F1E4875E05DC3FA22A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 0B9B
Signing time: Mon 29 Jun 2026 06:02:08 +0000
Manifest this update: Mon 29 Jun 2026 06:02:08 +0000
Manifest next update: Tue 30 Jun 2026 06:02:08 +0000
Files and hashes: 1: Sillb4nEsk9ouNCXzONZ9guaHgo.roa (hash: kbWq0G9OhRAUE6xI4of3xM29A3/8ukL1B/VOzXX1Z7E=)
2: W1-b2_39t40IJEIlY1fU30KPC7Y.roa (hash: DG8YwHrN9i6MKPRhk3te8aFn4nTPHySMexyk/ryRI0I=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: 3jWC+i4Z7DXQE7RRSBo+T6pfZbuHAaafUmgYNlsvj+8=)
4: q3L-DLkESBWHiQCDrzrriCchSdo.asa (hash: J3JSTCDpkSsTV/MAnz+RFfxXP4Ryp2u8ZqcS0lN7eB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 06:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f8:89:22:44:f1:0f:1e:48:75:e0:5d:c3:fa:22:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Jun 29 06:02:08 2026 GMT
Not After : Jun 30 06:02:08 2026 GMT
Subject: CN=b3cc315e11cb87c33901422347dc761fede1f0c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:77:ca:da:76:f9:95:34:5e:5d:81:2e:7d:3a:
9d:d5:a9:ad:96:16:35:43:99:b8:07:e7:2d:8a:d9:
6a:a7:f0:d8:55:da:27:a4:f7:5e:4d:b5:7e:37:57:
09:b1:84:03:c4:0e:eb:81:65:68:00:7b:6e:9f:94:
6b:68:60:fa:44:a8:62:31:d0:40:6c:2b:20:d7:f9:
67:3d:2f:37:cd:13:0b:86:43:fb:2a:3f:a9:af:dd:
d0:2b:db:25:43:40:3e:6d:c3:0f:bb:e8:35:ef:ca:
54:77:63:27:a6:0d:93:8d:4a:34:f0:8c:5b:36:12:
29:92:ab:ca:b1:1c:b2:73:c3:fe:47:04:63:6b:a9:
45:0a:67:50:a3:63:3a:03:c9:19:08:6e:75:f2:b2:
36:ab:dc:c4:2d:08:56:b1:bd:71:f3:14:26:55:9b:
a0:e2:fd:fa:2d:57:9b:6f:31:bb:07:1b:f5:10:cd:
dd:e0:2b:c3:15:54:6e:f9:7c:7f:79:ec:c3:81:b1:
dc:1e:ac:d6:9b:1c:8e:ab:d5:8f:7c:10:70:4b:3d:
34:ed:5e:7a:9e:ce:a7:84:b9:59:e2:54:21:bf:44:
16:f9:ac:78:64:2d:c4:19:d3:c8:67:5e:e0:87:af:
90:f9:7b:93:d0:23:03:ce:d3:db:9c:80:c7:dd:07:
a8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CC:31:5E:11:CB:87:C3:39:01:42:23:47:DC:76:1F:ED:E1:F0:C1
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:df:13:88:f7:b7:22:1c:7d:6f:59:e2:58:3a:48:5d:14:0e:
b0:ce:6a:ce:2b:d2:ba:46:4d:55:7f:a6:4b:5e:3e:ea:22:fa:
cc:0d:6f:42:36:92:dd:b2:94:cb:2c:b4:a3:98:55:6d:5c:a6:
1d:13:6f:fe:fa:b9:05:e6:f5:3e:4f:76:50:30:2f:05:88:e4:
47:82:59:65:70:95:55:7a:84:4f:a5:25:27:94:cf:d2:b2:92:
a8:37:91:8a:03:4e:32:04:2a:ce:cc:04:f5:40:cd:dc:2f:53:
39:bc:45:e0:30:77:35:3c:b1:b2:3c:d1:14:71:1f:1b:de:87:
1e:43:71:22:dd:6c:81:b5:ab:ba:93:4d:db:34:56:98:2f:94:
a5:84:cf:6d:c5:5e:90:db:1f:70:04:51:a9:27:fc:cc:f6:f6:
9b:48:8a:d9:1c:04:4b:bc:ff:5a:32:c7:23:23:e6:fa:62:70:
07:64:56:2d:65:fa:44:52:98:90:04:5a:a4:4b:4d:76:78:e4:
5c:1d:2c:86:7e:f3:3a:97:4c:fe:1b:d2:9e:8d:41:59:be:c0:
c3:27:0d:c1:7b:4b:bf:e3:86:33:ec:7c:b7:02:a6:89:bc:46:
16:aa:02:e8:a6:32:57:f8:3a:57:04:22:f7:65:22:7a:ff:f5:
81:b1:b8:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:47:16 2026 by rpki-client