Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: zSeDtLZ6TXRm+q4qwfv6Ivx7vg5NdMoAcgyB8uWZzzw=
Subject key identifier: B7:32:C1:99:1C:E0:51:14:51:C6:C0:4D:EF:EB:EF:1D:20:3E:29:64
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 019E284B82D2EAD4E5C1C8F728EB087D925C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 0B22
Signing time: Thu 14 May 2026 21:01:37 +0000
Manifest this update: Thu 14 May 2026 21:01:37 +0000
Manifest next update: Fri 15 May 2026 21:01:37 +0000
Files and hashes: 1: Sillb4nEsk9ouNCXzONZ9guaHgo.roa (hash: kbWq0G9OhRAUE6xI4of3xM29A3/8ukL1B/VOzXX1Z7E=)
2: W1-b2_39t40IJEIlY1fU30KPC7Y.roa (hash: DG8YwHrN9i6MKPRhk3te8aFn4nTPHySMexyk/ryRI0I=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: /u7+Wu4QiooALnnDv4sGgIWVui+A5pB8tMyoiCqhTE0=)
4: q3L-DLkESBWHiQCDrzrriCchSdo.asa (hash: J3JSTCDpkSsTV/MAnz+RFfxXP4Ryp2u8ZqcS0lN7eB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 21:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:4b:82:d2:ea:d4:e5:c1:c8:f7:28:eb:08:7d:92:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: May 14 21:01:37 2026 GMT
Not After : May 15 21:01:37 2026 GMT
Subject: CN=b732c1991ce0511451c6c04defebef1d203e2964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b2:24:73:c4:23:bf:62:90:03:b7:c4:53:21:
05:94:10:74:96:14:e2:13:5f:1e:1d:6d:64:3d:1c:
db:b1:49:49:d5:97:43:46:62:ae:ef:b8:26:aa:ba:
c8:fa:45:37:33:7e:e4:1c:43:7f:25:87:5d:bc:ce:
06:bf:63:91:51:f8:69:2d:2a:c6:f9:5d:20:08:a6:
e6:ba:50:d3:1a:8b:7d:44:ab:ee:7d:9c:a5:b6:d7:
06:72:24:92:0b:f8:1f:85:15:aa:1f:e6:55:1a:28:
91:2f:73:0c:50:e9:1e:df:81:2a:67:a5:e8:c1:52:
d8:99:b7:4e:b4:e6:6d:62:39:0d:2e:70:70:78:8a:
f0:fe:23:c1:68:ec:61:a9:ea:4b:9b:15:61:20:0b:
77:30:ba:26:40:38:ac:2b:11:f1:5a:9d:d1:c4:d2:
cc:85:9d:f6:3a:1c:9e:83:9d:d4:1c:16:a8:c2:c2:
84:2b:9a:8a:e1:92:c9:ae:5a:8f:a5:3f:03:bc:83:
9e:3e:8a:22:10:20:52:51:8d:13:08:1c:d8:5e:25:
4d:3c:9c:0a:5b:91:bb:fd:19:7c:e3:34:b8:27:6b:
6e:06:5d:38:5d:c7:c5:66:56:31:cb:fc:63:99:ba:
4a:7b:7e:fc:b5:f9:c3:a4:9c:93:a1:ed:97:b6:9d:
36:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:32:C1:99:1C:E0:51:14:51:C6:C0:4D:EF:EB:EF:1D:20:3E:29:64
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d0:6f:e2:92:2f:b0:76:7e:39:58:c4:0b:8a:e2:42:95:60:
e6:0b:fb:9e:d2:48:cb:1f:48:88:0f:a2:a2:26:47:85:8a:d7:
09:40:40:59:05:83:73:76:22:2a:1b:06:27:a6:bc:06:61:36:
50:25:cc:71:df:9f:d7:bc:32:44:68:91:08:4c:07:e0:b5:0d:
56:0b:f2:92:55:7d:05:ab:87:95:68:47:93:0a:a6:94:6d:3a:
52:1a:ec:68:1a:4e:84:b2:1e:d1:3a:e1:08:a6:d5:97:a3:9c:
f6:e5:74:a2:a8:c6:88:69:60:1b:8f:95:ef:67:06:86:5c:b0:
92:5d:fd:86:ae:87:37:93:46:81:5c:a4:cd:21:ab:4a:8f:25:
b8:9b:89:98:8b:ff:08:f2:5b:57:e5:db:94:fc:2d:5a:1c:d2:
44:21:57:a0:2c:03:f3:8a:65:39:36:0a:00:a3:25:98:66:23:
53:63:c4:fc:12:fb:fc:75:19:75:cb:87:4c:e3:ae:75:87:4a:
11:d2:31:e3:7a:54:4b:3e:e6:e5:d7:89:b6:5d:5f:90:b1:97:
38:ed:89:44:a5:c5:e9:39:13:97:c1:2e:0f:06:23:70:d8:f5:
3b:1d:8a:e3:f9:f2:bc:e2:9d:a6:d6:0c:c0:68:b6:8f:9c:26:
8d:5b:47:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4oS4LS6tTlwcj3KOsIfZJcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjBiNzdkMDM1YjkxMmZmYTQwNmRmZGRmMjllM2EyOTYz
ZTY5MDQwHhcNMjYwNTE0MjEwMTM3WhcNMjYwNTE1MjEwMTM3WjAzMTEwLwYDVQQD
EyhiNzMyYzE5OTFjZTA1MTE0NTFjNmMwNGRlZmViZWYxZDIwM2UyOTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobIkc8Qjv2KQA7fEUyEFlBB0lhTi
E18eHW1kPRzbsUlJ1ZdDRmKu77gmqrrI+kU3M37kHEN/JYddvM4Gv2ORUfhpLSrG
+V0gCKbmulDTGot9RKvufZylttcGciSSC/gfhRWqH+ZVGiiRL3MMUOke34EqZ6Xo
wVLYmbdOtOZtYjkNLnBweIrw/iPBaOxhqepLmxVhIAt3MLomQDisKxHxWp3RxNLM
hZ32Ohyeg53UHBaowsKEK5qK4ZLJrlqPpT8DvIOePooiECBSUY0TCBzYXiVNPJwK
W5G7/Rl84zS4J2tuBl04XcfFZlYxy/xjmbpKe378tfnDpJyToe2Xtp02KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLcywZkc4FEUUcbATe/r7x0gPilkMB8GA1UdIwQY
MBaAFIUgt30DW5Ev+kBt/d8p46KWPmkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAt
MWFmMjc5NjI1ZmQwLzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAtMWFmMjc5NjI1ZmQw
LzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX9Bv4pIv
sHZ+OVjEC4riQpVg5gv7ntJIyx9IiA+ioiZHhYrXCUBAWQWDc3YiKhsGJ6a8BmE2
UCXMcd+f17wyRGiRCEwH4LUNVgvyklV9BauHlWhHkwqmlG06UhrsaBpOhLIe0Trh
CKbVl6Oc9uV0oqjGiGlgG4+V72cGhlywkl39hq6HN5NGgVykzSGrSo8luJuJmIv/
CPJbV+XblPwtWhzSRCFXoCwD84plOTYKAKMlmGYjU2PE/BL7/HUZdcuHTOOudYdK
EdIx43pUSz7m5deJtl1fkLGXOO2JRKXF6TkTl8EuDwYjcNj1Ox2K4/nyvOKdptYM
wGi2j5wmjVtHAw==
-----END CERTIFICATE-----
Generated at Fri May 15 07:03:18 2026 by rpki-client